foo.sh/ansible
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Use FQCN and disable resolvd on fsol-gw hosts

Browse source
This commit is contained in:
Timo Makinen 2022-10-25 20:44:18 +00:00
parent db5b6cb379
commit 71f6a2cee2
1 changed files with 10 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
playbooks/fsol-gw.yml
View file

@ -9,9 +9,16 @@
vars_files: vars_files:
- "{{ ansible_private }}/vars.yml" - "{{ ansible_private }}/vars.yml"
pre_tasks:
- name: disable resolvd service
ansible.builtin.service:
name: resolvd
state: stopped
enabled: false
tasks: tasks:
- name: enable ip forwarding - name: enable ip forwarding
sysctl: ansible.posix.sysctl:
name: "{{ item }}" name: "{{ item }}"
sysctl_set: true sysctl_set: true
value: "1" value: "1"
@ -19,14 +26,14 @@
- net.inet.ip.forwarding - net.inet.ip.forwarding
- net.inet6.ip6.forwarding - net.inet6.ip6.forwarding
- name: use manual dns servers - name: use manual dns servers
copy: ansible.builtin.copy:
dest: /etc/dhclient.conf dest: /etc/dhclient.conf
content: "ignore domain-name-servers, domain-name;\n" content: "ignore domain-name-servers, domain-name;\n"
mode: 0644 mode: 0644
owner: root owner: root
group: "{{ ansible_wheel }}" group: "{{ ansible_wheel }}"
- name: create pfsync interface - name: create pfsync interface
copy: ansible.builtin.copy:
dest: /etc/hostname.pfsync0 dest: /etc/hostname.pfsync0
content: "up syncdev vio1\n" content: "up syncdev vio1\n"
mode: 0600 mode: 0600