2020-05-03 18:45:07 +02:00
|
|
|
#!/usr/bin/env ansible-playbook
|
2019-07-22 19:17:54 +02:00
|
|
|
---
|
2020-04-06 16:31:32 +02:00
|
|
|
# Set up DHCP servers.
|
2020-09-11 15:05:57 +02:00
|
|
|
- hosts: dhcp-*.adm.auro.re
|
2021-11-27 22:16:29 +01:00
|
|
|
vars:
|
|
|
|
update_motd:
|
|
|
|
unbound: isc-dhcp-server est déployé.
|
2020-04-06 16:31:32 +02:00
|
|
|
roles:
|
2020-11-04 19:36:40 +01:00
|
|
|
- isc_dhcp_server
|
2021-11-27 22:16:29 +01:00
|
|
|
- update_motd
|
2020-04-13 16:35:09 +02:00
|
|
|
|
|
|
|
# Deploy unbound DNS server (recursive).
|
2020-07-06 18:40:54 +02:00
|
|
|
- hosts: dns-*.adm.auro.re,!dns-aurore*.adm.auro.re
|
2021-11-27 22:16:29 +01:00
|
|
|
vars:
|
|
|
|
update_motd:
|
|
|
|
unbound: Unbound est déployé.
|
2020-05-09 10:15:28 +02:00
|
|
|
roles:
|
|
|
|
- unbound
|
2021-11-27 22:16:29 +01:00
|
|
|
- update_motd
|
2020-05-08 15:54:54 +02:00
|
|
|
|
|
|
|
# Déploiement du service re2o aurore-firewall et keepalived
|
2020-08-01 14:22:30 +02:00
|
|
|
# radvd: IPv6 SLAAC (/64 subnets, private IPs).
|
|
|
|
# Must NOT be on routeur-aurore-*, or will with DHCPv6!
|
2020-11-09 18:15:29 +01:00
|
|
|
- hosts: ~routeur-(pacaterie|edc|fleming|gs|rives).*\.adm\.auro\.re
|
2021-11-27 22:16:29 +01:00
|
|
|
vars:
|
2021-11-27 22:30:58 +01:00
|
|
|
update_motd:
|
2021-11-27 22:16:29 +01:00
|
|
|
unbound: Le routage (avec radvd) est déployé.
|
2020-05-09 10:15:28 +02:00
|
|
|
roles:
|
|
|
|
- router
|
2020-08-01 12:56:23 +02:00
|
|
|
- radvd
|
2021-11-27 22:16:29 +01:00
|
|
|
- update_motd
|
2020-05-07 19:24:02 +02:00
|
|
|
|
2020-08-08 17:10:01 +02:00
|
|
|
# No radvd here
|
|
|
|
- hosts: ~routeur-aurore.*\.adm\.auro\.re
|
2021-11-27 22:16:29 +01:00
|
|
|
vars:
|
2021-11-27 22:30:58 +01:00
|
|
|
update_motd:
|
2021-11-27 22:16:29 +01:00
|
|
|
unbound: Le routage (avec DHCPv6) est déployé.
|
2020-08-08 17:10:01 +02:00
|
|
|
roles:
|
|
|
|
- router
|
2020-11-04 19:36:40 +01:00
|
|
|
- ipv6_edge_router
|
2021-11-27 22:16:29 +01:00
|
|
|
- update_motd
|
2020-04-13 16:35:09 +02:00
|
|
|
|
2020-05-16 21:43:23 +02:00
|
|
|
# Radius (backup only for now)
|
2020-09-09 23:17:15 +02:00
|
|
|
- hosts: radius-*.adm.auro.re
|
2021-11-27 22:16:29 +01:00
|
|
|
vars:
|
2021-11-27 22:30:58 +01:00
|
|
|
update_motd:
|
2021-11-27 22:16:29 +01:00
|
|
|
unbound: FreeRADIUS est déployé.
|
2020-05-16 21:43:23 +02:00
|
|
|
roles:
|
|
|
|
- radius
|
2021-11-27 22:16:29 +01:00
|
|
|
- update_motd
|
2020-05-16 21:43:23 +02:00
|
|
|
|
2020-04-13 16:35:09 +02:00
|
|
|
# WIP: Deploy authoritative DNS servers
|
|
|
|
# - hosts: authoritative_dns
|
|
|
|
# vars:
|
|
|
|
# service_repo: https://gitlab.crans.org/nounous/re2o-dns.git
|
|
|
|
# service_name: dns
|
|
|
|
# service_version: crans
|
|
|
|
# service_config:
|
|
|
|
# hostname: re2o-server.adm.auro.re
|
|
|
|
# username: service-user
|
|
|
|
# password: "{{ vault_serviceuser_passwd }}"
|
|
|
|
# roles:
|
2021-02-07 17:39:04 +01:00
|
|
|
# - re2o_service
|
2020-04-13 16:35:09 +02:00
|
|
|
|
2019-07-22 19:17:54 +02:00
|
|
|
|
|
|
|
# Deploy Unifi Controller
|
2020-11-04 20:08:51 +01:00
|
|
|
# - hosts: unifi-fleming.adm.auro.re,unifi-pacaterie.adm.auro.re
|
|
|
|
# roles:
|
|
|
|
# - unifi-controller
|
2019-07-26 22:47:10 +02:00
|
|
|
|
|
|
|
# Deploy Re2o switch service
|
2020-11-04 20:08:51 +01:00
|
|
|
# - hosts: switchs-manager.adm.auro.re
|
|
|
|
# vars:
|
|
|
|
# service_repo: https://gitlab.federez.net/re2o/switchs.git
|
|
|
|
# service_name: switchs
|
|
|
|
# service_version: master
|
|
|
|
# service_config:
|
|
|
|
# hostname: re2o-server.adm.auro.re
|
|
|
|
# username: service-user
|
|
|
|
# password: "{{ vault_serviceuser_passwd }}"
|
|
|
|
# roles:
|
2021-02-07 17:39:04 +01:00
|
|
|
# - re2o_service
|