From a0bee46545354930e84cc80512eef0556a1d74b4 Mon Sep 17 00:00:00 2001 From: Timo Makinen Date: Sun, 4 Feb 2024 17:05:16 +0000 Subject: [PATCH] Remove zm hosts --- group_vars/zm.yml | 23 --------- host_vars/zm02.home.foo.sh.yml | 13 ----- hosts.yml | 4 -- playbooks/zm.yml | 92 ---------------------------------- 4 files changed, 132 deletions(-) delete mode 100644 group_vars/zm.yml delete mode 100644 host_vars/zm02.home.foo.sh.yml delete mode 100644 playbooks/zm.yml diff --git a/group_vars/zm.yml b/group_vars/zm.yml deleted file mode 100644 index 03177dc..0000000 --- a/group_vars/zm.yml +++ /dev/null @@ -1,23 +0,0 @@ ---- -mem_size: 4096 -num_cpus: 2 -datadisks: - - {size: 500} - -network_vip_interfaces: - - device: eth1 - vhid: 26 - ipaddr: 172.20.26.1 - netmask: 255.255.0.0 - pass: "{{ vip26_pass }}" - -zm_mysql_host: sqldb02.home.foo.sh -dhcpd_template: dhcpd.conf.cam.j2 - -firewall_in: - - {proto: tcp, port: 22, from: [172.20.20.0/22]} - - {proto: tcp, port: 443, from: [172.20.20.0/22]} - - {proto: tcp, port: 9100, from: [172.20.20.0/22]} -firewall_raw: - - "-A INPUT -i eth1 -d 224.0.0.0/8 -j ACCEPT" - - "-A INPUT -i eth1 -p vrrp -j ACCEPT" diff --git a/host_vars/zm02.home.foo.sh.yml b/host_vars/zm02.home.foo.sh.yml deleted file mode 100644 index 340464a..0000000 --- a/host_vars/zm02.home.foo.sh.yml +++ /dev/null @@ -1,13 +0,0 @@ ---- -vmhost: vmhost02.home.foo.sh -network_interfaces: - - device: eth0 - vlan: 20 - mac: "52:54:00:ac:dc:4c" - nameservers: [] - - device: eth1 - vlan: 26 - ipaddr: 172.20.26.3 - netmask: 255.255.255.0 - proto: static - nameservers: [172.20.26.1, 172.20.26.3] diff --git a/hosts.yml b/hosts.yml index a1b91f0..5931786 100644 --- a/hosts.yml +++ b/hosts.yml @@ -117,9 +117,6 @@ vmhost: hosts: vmhost01.home.foo.sh: vmhost02.home.foo.sh: -zm: - hosts: - zm02.home.foo.sh: sftpbackup: children: @@ -154,7 +151,6 @@ rocky8: nms: print: shell: - zm: rocky9: children: adm: diff --git a/playbooks/zm.yml b/playbooks/zm.yml deleted file mode 100644 index 8dd9964..0000000 --- a/playbooks/zm.yml +++ /dev/null @@ -1,92 +0,0 @@ ---- -- name: Deploy KVM virtual machines - ansible.builtin.import_playbook: include/deploy-kvm-guest.yml - vars: - myhosts: zm - -- name: Configure instance - hosts: zm - user: root - gather_facts: true - - vars_files: - - "{{ ansible_private }}/vars.yml" - - pre_tasks: - - name: Mount /export - ansible.posix.mount: - name: /export - src: LABEL=/export - fstype: xfs - opts: noatime,noexec,nosuid,nodev - passno: "0" - dump: "0" - state: mounted - - roles: - - base - - mod_auth_gssapi - - role: keytab - keytab_path: /etc/httpd/httpd.keytab - keytab_principals: HTTP/zm.foo.sh@FOO.SH - keytab_group: apache - - tasks: - - name: Run handlers to get interfaces configured - ansible.builtin.meta: flush_handlers - - # TODO: this should really be fixed - - name: Put selinux in permissive state - ansible.posix.selinux: - policy: targeted - state: permissive - - - name: Copy DNS zone files - ansible.builtin.copy: - dest: "/var/lib/unbound/{{ item }}" - src: "/srv/dns/{{ item }}" - mode: "0644" - owner: root - group: "{{ ansible_wheel }}" - tags: dns - notify: Restart unbound - with_items: - - 26.20.172.in-addr.arpa - - cam.foo.sh - - - name: Include unbound role - ansible.builtin.import_role: - name: unbound - - - name: Include dhcpd and zoneminder roles - ansible.builtin.include_role: - name: "{{ item }}" - with_items: - - dhcpd - - zoneminder - - - name: Install extra packages for debugging - ansible.builtin.package: - name: rtmpdump - state: installed - - - name: Require authentication for zoneminder - ansible.builtin.copy: - dest: /etc/httpd/conf.local.d/zoneminder-auth.conf - content: | - - AuthType GSSAPI - GssapiBasicAuth Off - AuthName "Password Required" - Require valid-user - - mode: "0644" - owner: root - group: "{{ ansible_wheel }}" - notify: Restart apache - - - name: Enable NTP server for cam network - ansible.builtin.lineinfile: - path: /etc/chrony.conf - regexp: "^#?allow .*" - line: "allow 172.20.26.0/24"