2020-12-12 23:03:33 +01:00
|
|
|
---
|
2022-10-11 20:39:03 +02:00
|
|
|
- name: Check if ansible is not to old
|
2021-01-14 22:29:57 +01:00
|
|
|
hosts: localhost
|
|
|
|
|
roles:
|
2023-10-29 22:28:04 +01:00
|
|
|
- {role: do1jlr.ansible_version, tags: [default, version, default, always]}
|
2021-01-14 22:29:57 +01:00
|
|
|
|
2022-10-11 20:39:03 +02:00
|
|
|
- name: General roles for all hosts
|
2020-12-12 23:03:33 +01:00
|
|
|
hosts: all
|
|
|
|
|
roles:
|
2024-02-15 03:18:03 +01:00
|
|
|
- {role: l3d.users.user, tags: [test, users, user]}
|
|
|
|
|
- {role: l3d.users.admin, tags: [test, users, admin]}
|
|
|
|
|
- {role: l3d.users.sshd, tags: [test, users, sshd]}
|
2023-08-04 00:43:03 +02:00
|
|
|
- {role: l3d.packages, tags: [packages, general]}
|
2022-05-31 23:47:17 +02:00
|
|
|
- {role: do1jlr.ranger, tags: [packages, ranger]}
|
2024-02-18 15:12:44 +01:00
|
|
|
- {role: gantsign.bat, tags: [packages, bat], when: [ansible_os_family == 'Debian' and "ansible_architecture" == "x86_64"]}
|
2021-01-31 16:50:41 +01:00
|
|
|
- {role: unattended_upgrades, tags: [default, unattended, unattended_upgrades, security], become: true, when: ansible_distribution == 'Debian'}
|
2021-09-01 03:13:26 +02:00
|
|
|
- {role: do1jlr.rtl_nic_firmware, tags: [apu, rtl_nic, firmware]}
|
2021-09-17 00:02:30 +02:00
|
|
|
- {role: do1jlr.avahi_client, tags: [avahi, avahi_client]}
|
2023-12-13 01:01:13 +01:00
|
|
|
- {role: l3d.time.ntp, tags: [ntp]}
|
2023-10-31 16:34:45 +01:00
|
|
|
- {role: prometheus.prometheus.node_exporter, tags: [monitoring, node_exporter]}
|
2020-12-22 23:53:15 +01:00
|
|
|
|
2022-10-11 20:39:03 +02:00
|
|
|
- name: User specific roles for all hosts
|
2020-12-22 23:53:15 +01:00
|
|
|
hosts: all
|
|
|
|
|
roles:
|
2024-02-20 11:16:44 +01:00
|
|
|
# - {role: do1jlr.admin_base, tags: [default, init, users, accounts, dotfiles]}
|
|
|
|
|
# - {role: do1jlr.dotfiles, tags: [default, dotfiles]}
|
2021-01-31 16:50:41 +01:00
|
|
|
- {role: geerlingguy.firewall, tags: [default, firewall], become: true}
|
|
|
|
|
- {role: robertdebock.fail2ban, tags: [default, fail2ban], become: true}
|
2020-12-23 01:17:14 +01:00
|
|
|
|
2022-11-12 21:21:23 +01:00
|
|
|
- name: Setup Webserver
|
2023-11-25 02:11:38 +01:00
|
|
|
hosts: all
|
2020-12-23 01:17:14 +01:00
|
|
|
roles:
|
2021-05-09 03:06:44 +02:00
|
|
|
- {role: do1jlr.webhost, tags: [web, webhost], become: true}
|
|
|
|
|
- {role: do1jlr.acmetool, tags: [web, acmetool], become: true}
|
2021-02-06 17:48:53 +01:00
|
|
|
- {role: do1jlr.nginx, tags: [web, nginx]}
|
2023-11-25 02:35:52 +01:00
|
|
|
- {role: l3d.nginx_exporter, tags: [monitoring, nginx, prometheus, exporter]}
|
2022-11-12 21:21:23 +01:00
|
|
|
|
|
|
|
|
|
|
|
|
|
- name: Deploy web config
|
|
|
|
|
hosts: web
|
|
|
|
|
roles:
|
2023-06-14 02:39:04 +02:00
|
|
|
# - {role: geerlingguy.mysql, tags: [web, git, mysql], become: true}
|
2023-05-10 00:22:07 +02:00
|
|
|
- {role: l3d.git.gitea, tags: [web, gitea, git]}
|
2021-01-01 02:52:42 +01:00
|
|
|
|
2022-10-11 20:39:03 +02:00
|
|
|
- name: Deploy dns resolver
|
2021-07-16 19:55:33 +02:00
|
|
|
hosts: resolver
|
|
|
|
|
roles:
|
2021-09-30 00:51:43 +02:00
|
|
|
- {role: do1jlr.unbound, tags: [mail, unbound]}
|
2021-07-16 19:55:33 +02:00
|
|
|
|
2022-11-11 00:39:06 +01:00
|
|
|
- name: Deploy services
|
|
|
|
|
hosts: services
|
|
|
|
|
roles:
|
2024-02-12 22:41:14 +01:00
|
|
|
- {role: l3d.etebase, tags: [etebase, etesync, calendar, kalender, contacts, kontakte]}
|
2023-11-08 00:42:23 +01:00
|
|
|
- {role: grafana.grafana.grafana, tags: [grafana. monitoring]}
|
2023-11-23 17:14:47 +01:00
|
|
|
- {role: prometheus.prometheus.prometheus, tags: [monitoring, prometheus]}
|
2024-01-12 03:21:43 +01:00
|
|
|
- {role: l3d.homebox, tags: [homebox]}
|
2024-02-18 15:12:44 +01:00
|
|
|
- {role: l3d.rustdesk, tags: [rustdesk]}
|
2022-11-11 00:39:06 +01:00
|
|
|
|
2024-02-12 01:46:38 +01:00
|
|
|
- name: Deploy legacy mail config
|
|
|
|
|
hosts: mail01.l3d.space
|
2021-01-02 02:03:34 +01:00
|
|
|
roles:
|
2023-06-14 02:39:04 +02:00
|
|
|
# - {role: do1jlr.mysql, tags: [mail, mysql, mariadb], become: true}
|
2021-01-31 16:50:41 +01:00
|
|
|
- {role: do1jlr.mailserver_preperation, tags: [mail, mailserver_preperation, prep, mailserver]}
|
|
|
|
|
- {role: do1jlr.dovecot, tags: [mail, dovecot, mailserver_dovecot]}
|
|
|
|
|
- {role: postfix, tags: [mail, postfix]}
|
|
|
|
|
- {role: do1jlr.rspamd, tags: [mail, rspamd]}
|
2021-05-27 16:19:52 +02:00
|
|
|
- {role: do1jlr.weechat, tags: [irc, weechat]}
|
2021-08-13 01:46:22 +02:00
|
|
|
|
2022-10-11 20:39:03 +02:00
|
|
|
- name: Setup luna.l3d.ch host
|
2021-08-13 01:46:22 +02:00
|
|
|
hosts: luna.l3d.ch
|
|
|
|
|
roles: []
|
