46 lines
1.7 KiB
YAML
46 lines
1.7 KiB
YAML
---
|
|
# This playbook deploys the kerberox server.
|
|
|
|
- name: apply configuration to the installbox
|
|
hosts: all
|
|
remote_user: ansible
|
|
become: yes
|
|
vars:
|
|
## This interface provides the default route:
|
|
if_wan: "{{ ansible_default_ipv4.interface }}"
|
|
## Use the first remaining interface for the LAN:
|
|
if_lan: "{{ ansible_interfaces | difference([if_wan, 'lo']) | first }}"
|
|
## Add 'hostname=XXX' to the installer boot parameters if necessary:
|
|
hostname: "{{ ansible_hostname }}"
|
|
ipaddr_lan: 192.168.0.10
|
|
dhcp_range: 192.168.0.50,192.168.0.150,2h
|
|
dhcp_list: "{{ lookup('sequence', 'start=50 end=150 format=192.168.0.%d', wantlist=True) }}"
|
|
tftp_root: "/var/lib/tftpboot"
|
|
deb_mirror: "deb.debian.org"
|
|
di_dist: "{{ ansible_distribution_release }}"
|
|
di_version: "{{ ansible_distribution_version }}"
|
|
di_pkg: "debian-installer-{{ di_version }}-netboot-amd64"
|
|
ansible_user: ansible
|
|
repo_dir: "/home/{{ ansible_user }}/debian-lan"
|
|
ansible_python_interpreter: "/usr/bin/python3" ## needed for firewalld module
|
|
|
|
vars_prompt:
|
|
- name: "foo_pwd"
|
|
prompt: "Provide a non-empty password for the test user 'foo'.\nLeave empty to continue without test user"
|
|
private: yes
|
|
|
|
pre_tasks:
|
|
- name: validate if interfaces are available
|
|
fail:
|
|
msg: "Interfaces {{ ansible_interfaces }} found. WAN: '{{ if_wan }}', LAN: '{{ if_lan }}'. Two NICs needed."
|
|
when: (if_lan not in ansible_interfaces) or (if_wan not in ansible_interfaces) or (if_lan == if_wan)
|
|
|
|
roles:
|
|
- up2date-debian
|
|
- two-interface-firewalld
|
|
- dhcp-dns-dnsmasq
|
|
- tftp-netboot-installer
|
|
- preseed-installer
|
|
- apt-cacher
|
|
- krb5-kdc-ldap
|
|
- nfs-server
|