2020-05-03 18:45:07 +02:00
|
|
|
#!/usr/bin/env ansible-playbook
|
2019-07-22 19:17:54 +02:00
|
|
|
---
|
2020-04-06 16:31:32 +02:00
|
|
|
# Set up DHCP servers.
|
2020-07-06 18:40:54 +02:00
|
|
|
- hosts: dhcp-*.adm.auro.re, !dhcp-aurore*.adm.auro.re
|
2020-04-06 16:49:14 +02:00
|
|
|
vars:
|
|
|
|
service_repo: https://gitlab.federez.net/re2o/dhcp.git
|
|
|
|
service_name: dhcp
|
|
|
|
service_version: master
|
|
|
|
service_config:
|
2020-04-06 16:54:20 +02:00
|
|
|
hostname: re2o.auro.re
|
2020-04-06 16:49:14 +02:00
|
|
|
username: service-user
|
|
|
|
password: "{{ vault_serviceuser_passwd }}"
|
2020-04-06 16:31:32 +02:00
|
|
|
roles:
|
2020-04-06 16:49:14 +02:00
|
|
|
- re2o-service
|
2020-04-06 16:31:32 +02:00
|
|
|
- isc-dhcp-server
|
2019-07-22 19:17:54 +02:00
|
|
|
|
2020-04-13 16:35:09 +02:00
|
|
|
|
|
|
|
# Deploy unbound DNS server (recursive).
|
2020-07-06 18:40:54 +02:00
|
|
|
- hosts: dns-*.adm.auro.re,!dns-aurore*.adm.auro.re
|
2020-05-09 10:15:28 +02:00
|
|
|
roles:
|
|
|
|
- unbound
|
2020-04-13 16:35:09 +02:00
|
|
|
|
2020-05-08 15:54:54 +02:00
|
|
|
|
|
|
|
# Déploiement du service re2o aurore-firewall et keepalived
|
2020-08-01 14:22:30 +02:00
|
|
|
# radvd: IPv6 SLAAC (/64 subnets, private IPs).
|
|
|
|
# Must NOT be on routeur-aurore-*, or will with DHCPv6!
|
2020-07-06 18:40:54 +02:00
|
|
|
- hosts: ~routeur-(pacaterie|edc|fleming|gs).*\.adm\.auro\.re
|
2020-05-09 10:15:28 +02:00
|
|
|
roles:
|
|
|
|
- router
|
2020-08-01 12:56:23 +02:00
|
|
|
- radvd
|
2020-05-07 19:24:02 +02:00
|
|
|
|
2020-04-13 16:35:09 +02:00
|
|
|
|
2020-05-16 21:43:23 +02:00
|
|
|
# Radius (backup only for now)
|
2020-05-21 19:45:35 +02:00
|
|
|
- hosts: ~radius-(edc|fleming|pacaterie|gs).*
|
2020-05-16 21:43:23 +02:00
|
|
|
roles:
|
|
|
|
- radius
|
|
|
|
|
|
|
|
|
2020-04-13 16:35:09 +02:00
|
|
|
# WIP: Deploy authoritative DNS servers
|
|
|
|
# - hosts: authoritative_dns
|
|
|
|
# vars:
|
|
|
|
# service_repo: https://gitlab.crans.org/nounous/re2o-dns.git
|
|
|
|
# service_name: dns
|
|
|
|
# service_version: crans
|
|
|
|
# service_config:
|
|
|
|
# hostname: re2o-server.adm.auro.re
|
|
|
|
# username: service-user
|
|
|
|
# password: "{{ vault_serviceuser_passwd }}"
|
|
|
|
# roles:
|
|
|
|
# - re2o-service
|
|
|
|
|
2019-07-22 19:17:54 +02:00
|
|
|
|
|
|
|
# Deploy Unifi Controller
|
2020-02-15 21:33:57 +01:00
|
|
|
#- hosts: unifi-fleming.adm.auro.re,unifi-pacaterie.adm.auro.re
|
|
|
|
# roles:
|
|
|
|
# - unifi-controller
|
2019-07-26 22:47:10 +02:00
|
|
|
|
|
|
|
# Deploy Re2o switch service
|
2020-02-15 21:33:57 +01:00
|
|
|
#- hosts: switchs-manager.adm.auro.re
|
|
|
|
# vars:
|
|
|
|
# service_repo: https://gitlab.federez.net/re2o/switchs.git
|
|
|
|
# service_name: switchs
|
|
|
|
# service_version: master
|
|
|
|
# service_config:
|
|
|
|
# hostname: re2o-server.adm.auro.re
|
|
|
|
# username: service-user
|
|
|
|
# password: "{{ vault_serviceuser_passwd }}"
|
|
|
|
# roles:
|
|
|
|
# - re2o-service
|