ansible/network.yml

70 lines
1.7 KiB
YAML
Raw Normal View History

2020-05-03 18:45:07 +02:00
#!/usr/bin/env ansible-playbook
2019-07-22 19:17:54 +02:00
---
2020-04-06 16:31:32 +02:00
# Set up DHCP servers.
- hosts: dhcp-*.adm.auro.re, !dhcp-aurore*.adm.auro.re
vars:
service_repo: https://gitlab.federez.net/re2o/dhcp.git
service_name: dhcp
service_version: master
service_config:
hostname: re2o.auro.re
username: service-user
password: "{{ vault_serviceuser_passwd }}"
2020-04-06 16:31:32 +02:00
roles:
- re2o-service
2020-04-06 16:31:32 +02:00
- isc-dhcp-server
2019-07-22 19:17:54 +02:00
2020-04-13 16:35:09 +02:00
# Deploy unbound DNS server (recursive).
- hosts: dns-*.adm.auro.re,!dns-aurore*.adm.auro.re
roles:
- unbound
2020-04-13 16:35:09 +02:00
2020-05-08 15:54:54 +02:00
# Déploiement du service re2o aurore-firewall et keepalived
2020-08-01 14:22:30 +02:00
# radvd: IPv6 SLAAC (/64 subnets, private IPs).
# Must NOT be on routeur-aurore-*, or will with DHCPv6!
- hosts: ~routeur-(pacaterie|edc|fleming|gs).*\.adm\.auro\.re
roles:
- router
2020-08-01 12:56:23 +02:00
- radvd
2020-04-13 16:35:09 +02:00
2020-05-16 21:43:23 +02:00
# Radius (backup only for now)
2020-05-21 19:45:35 +02:00
- hosts: ~radius-(edc|fleming|pacaterie|gs).*
2020-05-16 21:43:23 +02:00
roles:
- radius
2020-04-13 16:35:09 +02:00
# WIP: Deploy authoritative DNS servers
# - hosts: authoritative_dns
# vars:
# service_repo: https://gitlab.crans.org/nounous/re2o-dns.git
# service_name: dns
# service_version: crans
# service_config:
# hostname: re2o-server.adm.auro.re
# username: service-user
# password: "{{ vault_serviceuser_passwd }}"
# roles:
# - re2o-service
2019-07-22 19:17:54 +02:00
# Deploy Unifi Controller
2020-02-15 21:33:57 +01:00
#- hosts: unifi-fleming.adm.auro.re,unifi-pacaterie.adm.auro.re
# roles:
# - unifi-controller
2019-07-26 22:47:10 +02:00
# Deploy Re2o switch service
2020-02-15 21:33:57 +01:00
#- hosts: switchs-manager.adm.auro.re
# vars:
# service_repo: https://gitlab.federez.net/re2o/switchs.git
# service_name: switchs
# service_version: master
# service_config:
# hostname: re2o-server.adm.auro.re
# username: service-user
# password: "{{ vault_serviceuser_passwd }}"
# roles:
# - re2o-service