Pour tout problème contactez-nous par mail : support@froggit.fr | La FAQ :grey_question: | Rejoignez-nous sur le Chat :speech_balloon:

Skip to content
Snippets Groups Projects
Commit b9963dc2 authored by freezed's avatar freezed :mountain:
Browse files

:twisted_rightwards_arrows: Merge branch 'system'

parents b379938b a3aaab14
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 36 additions and 11 deletions
tasks/files/sshd_config
+ 1
1
View file @ b9963dc2
...@@ -4,7 +4,7 @@ ...@@ -4,7 +4,7 @@
# This file is managed by Ansible # # This file is managed by Ansible #
# Manual edition will be overridden # # Manual edition will be overridden #
# # # #
# https://lab.frogg.it/fcode/ansible/debian # # https://lab.frogg.it/freezed/ansible-debian #
# # # #
# ############################################# # # ############################################# #
......
tasks/system_cfg/firewall.yml
+ 20
0
View file @ b9963dc2
...@@ -23,6 +23,26 @@ ...@@ -23,6 +23,26 @@
direction: outgoing direction: outgoing
policy: allow policy: allow
- name: UFW | allow local IPs on port 22 IN
when: inventory_hostname in groups.station
loop: "{{ groups['station'] }}"
community.general.ufw:
direction: in
port: '22'
proto: tcp
rule: allow
src: "{{hostvars[item]['ansible_host']}}"
- name: "UFW | allow {{gateway}} IP on port 22 IN"
when: (inventory_hostname in groups.production) or
(inventory_hostname in groups.devel)
community.general.ufw:
direction: in
port: '22'
proto: tcp
rule: allow
src: "{{gateway}}"
- name: UFW | limit tcp port 22 IN - name: UFW | limit tcp port 22 IN
community.general.ufw: community.general.ufw:
direction: in direction: in
......
tasks/system_cfg/main.yml
+ 4
0
View file @ b9963dc2
...@@ -6,6 +6,10 @@ ...@@ -6,6 +6,10 @@
tasks: tasks:
- name: HOSTNAME | setup
ansible.builtin.hostname:
name: "{{ ansible_hostname }}"
- name: IMPORT_TASKS | firewall - name: IMPORT_TASKS | firewall
ansible.builtin.import_tasks: firewall.yml ansible.builtin.import_tasks: firewall.yml
......
tasks/system_cfg/shell.yml
+ 1
0
View file @ b9963dc2
--- ---
- name: "SHELL | set zsh for {{ my_user }}" - name: "SHELL | set zsh for {{ my_user }}"
when: inventory_hostname in groups.station
ansible.builtin.user: ansible.builtin.user:
name: "{{ my_user }}" name: "{{ my_user }}"
shell: /bin/zsh shell: /bin/zsh
......
tasks/system_cfg/templates/ntpd.conf.j2
+ 1
1
View file @ b9963dc2
...@@ -5,7 +5,7 @@ ...@@ -5,7 +5,7 @@
# This file is managed by Ansible # # This file is managed by Ansible #
# Manual edition will be overridden # # Manual edition will be overridden #
# # # #
# https://lab.frogg.it/fcode/ansible/debian # # https://lab.frogg.it/freezed/ansible-debian #
# # # #
# ############################################# # # ############################################# #
......
tasks/user_cfg/files/dotfiles/gitconfig
+ 1
1
View file @ b9963dc2
...@@ -4,7 +4,7 @@ ...@@ -4,7 +4,7 @@
# This file is managed by Ansible # # This file is managed by Ansible #
# Manual edition will be overridden # # Manual edition will be overridden #
# # # #
# https://lab.frogg.it/fcode/ansible/debian # # https://lab.frogg.it/freezed/ansible-debian #
# # # #
# ############################################# # # ############################################# #
......
tasks/user_cfg/files/dotfiles/vimrc
+ 2
2
View file @ b9963dc2
...@@ -4,7 +4,7 @@ ...@@ -4,7 +4,7 @@
" This file is managed by Ansible " " This file is managed by Ansible "
" Manual edition will be overridden " " Manual edition will be overridden "
" " " "
" https://lab.frogg.it/fcode/ansible/debian " " https://lab.frogg.it/freezed/ansible-debian "
" http://formation-debian.via.ecp.fr/ " " http://formation-debian.via.ecp.fr/ "
" " " "
" """"""""""""""""""""""""""""""""""""""""""""" " " """"""""""""""""""""""""""""""""""""""""""""" "
...@@ -98,4 +98,4 @@ set incsearch ...@@ -98,4 +98,4 @@ set incsearch
"set hlsearch "set hlsearch
" Décommentez la ligne suivante si vous voulez afficher les numéros de ligne " Décommentez la ligne suivante si vous voulez afficher les numéros de ligne
"set number set number relativenumber
tasks/user_cfg/files/dotfiles/zlogin
+ 1
1
View file @ b9963dc2
...@@ -4,7 +4,7 @@ ...@@ -4,7 +4,7 @@
# This file is managed by Ansible # # This file is managed by Ansible #
# Manual edition will be overridden # # Manual edition will be overridden #
# # # #
# https://lab.frogg.it/fcode/ansible/debian # # https://lab.frogg.it/freezed/ansible-debian #
# # # #
# ############################################# # # ############################################# #
......
tasks/user_cfg/files/dotfiles/zlogout
+ 1
1
View file @ b9963dc2
...@@ -4,7 +4,7 @@ ...@@ -4,7 +4,7 @@
# This file is managed by Ansible # # This file is managed by Ansible #
# Manual edition will be overridden # # Manual edition will be overridden #
# # # #
# https://lab.frogg.it/fcode/ansible/debian # # https://lab.frogg.it/freezed/ansible-debian #
# # # #
# ############################################# # # ############################################# #
......
tasks/user_cfg/files/dotfiles/zshenv
+ 1
1
View file @ b9963dc2
...@@ -4,7 +4,7 @@ ...@@ -4,7 +4,7 @@
# This file is managed by Ansible # # This file is managed by Ansible #
# Manual edition will be overridden # # Manual edition will be overridden #
# # # #
# https://lab.frogg.it/fcode/ansible/debian # # https://lab.frogg.it/freezed/ansible-debian #
# # # #
# ############################################# # # ############################################# #
......
tasks/user_cfg/files/dotfiles/zshrc
+ 1
1
View file @ b9963dc2
...@@ -4,7 +4,7 @@ ...@@ -4,7 +4,7 @@
# This file is managed by Ansible # # This file is managed by Ansible #
# Manual edition will be overridden # # Manual edition will be overridden #
# # # #
# https://lab.frogg.it/fcode/ansible/debian # # https://lab.frogg.it/freezed/ansible-debian #
# from http://formation-debian.via.ecp.fr # # from http://formation-debian.via.ecp.fr #
# # # #
# ############################################# # # ############################################# #
......
tasks/user_cfg/templates/pruneconfig.j2
+ 1
1
View file @ b9963dc2
...@@ -5,7 +5,7 @@ ...@@ -5,7 +5,7 @@
# This file is managed by Ansible # # This file is managed by Ansible #
# Manual edition will be overridden # # Manual edition will be overridden #
# # # #
# https://lab.frogg.it/fcode/ansible/debian # # https://lab.frogg.it/freezed/ansible-debian #
# # # #
# ############################################# # # ############################################# #
......
tasks/user_cfg/templates/ssh_config.j2
+ 1
1
View file @ b9963dc2
...@@ -6,7 +6,7 @@ ...@@ -6,7 +6,7 @@
# This file is managed by Ansible # # This file is managed by Ansible #
# Manual edition will be overridden # # Manual edition will be overridden #
# # # #
# https://lab.frogg.it/fcode/ansible/debian # # https://lab.frogg.it/freezed/ansible-debian #
# # # #
# ############################################# # # ############################################# #
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment

Froggit est fièrement fabriqué avec amour par Lydra avec des Logiciels Libres et hébergé en France chez Scaleway | Status du service