b06b09d054
ansible-host: Install configured git
2021-04-24 13:17:02 +00:00
179154ce12
git: Store settings in config and not in environment variables
2021-04-24 12:53:58 +00:00
9f86ecc099
Rename gw01.home.foo.sh to dna-gw01.home.foo.sh
2021-04-23 08:48:46 +00:00
4044c2a706
Allow TFTP to gw hosts
2021-04-22 20:41:25 +00:00
7c2522a8fb
unbound: Add secondry DHCP server and fix interface binding
...
Unbound can't bind to CARP interfaces without explicit definition.
2021-04-22 20:38:59 +00:00
d4a29bb758
dhcpd: Initial version of role.
...
Currently works only for main DHCP server.
2021-04-22 20:37:28 +00:00
4634a9687b
tftp: Fix startup arguments ordering
2021-04-22 20:36:38 +00:00
b8af7bbf8e
tftp: Add OpenBSD support
2021-04-22 16:42:52 +00:00
0d07163059
Use OSPF more properly in fsol-gw hosts
2021-04-14 19:53:16 +00:00
cdf3d3cd2e
munin-server: Fix permissions from runtime directory
2021-04-14 18:17:55 +00:00
3ca1e7fce8
zoneminder: Move data directory under /export
2021-04-05 15:19:55 +00:00
525b3cbe99
Add unbound to zm hosts
2021-04-01 22:46:01 +00:00
4ea66f9ece
Revert "openvpn: Lint fixes"
...
This reverts commit afc06c9ccc
2021-04-01 06:18:23 +00:00
847ac32cc2
cups-client: Lint fixes
2021-03-31 22:50:37 +00:00
afc06c9ccc
openvpn: Lint fixes
2021-03-31 22:48:48 +00:00
5094394edd
Lint fixes
2021-03-31 22:46:40 +00:00
6a79379d85
zoneminder: Initial version of role
2021-03-31 22:15:49 +00:00
3f9de759aa
mariadb: Initial version of role
2021-03-31 22:15:29 +00:00
61d4754bf1
rsyslog: Use advanced configuration format for UDP listen
2021-03-31 06:15:56 +00:00
e345e29b19
cups/server: Remove nginx frontend proxy
2021-03-30 16:14:52 +00:00
a7f22619f9
collab: Force install commands to use python2
2021-03-30 14:46:51 +00:00
e21753a7c8
ldap/server: Tighten LDAP TLS settings
2021-03-30 14:20:46 +00:00
caa8a23d13
Add ifstated to home gw hosts
2021-03-26 17:20:55 +00:00
e31769a606
ifstated: Use templating for ifstated configurations
2021-03-26 16:45:26 +00:00
8d234782df
Add unbound to gw hosts
2021-03-25 21:50:09 +00:00
12ec078011
unbound: Add OpenBSD support
2021-03-25 21:49:20 +00:00
c41495066b
unbound: Initial version of role
2021-03-25 17:38:21 +00:00
b776431baf
network: Add support to force DNS servers for interface
...
Previously DNS servers could be set for interface but they were used only
when interface address was set to static. This change allow to set (or
remove) DNS servers for interfaces regardles of IP address method.
2021-03-25 15:38:00 +00:00
4dcb2df22b
nfs-server: ShellCheck fixes
2021-03-24 05:55:14 +00:00
befa371fdc
nfs-server: Allow role/home autocreation run more often
...
1. Implemented locking for scripts so only one instance is running
simultaneously. This will also remove stale lock file if found.
2. Use LDAP contextCSN value to determine if we need to run script
at all. Previous contextCSN is stored in state file which will
be cleaned during reboots. If state file is not found direcotries
are scanned in normal way.
2021-03-24 05:48:04 +00:00
169750eb0e
base: Add S.M.A.R.T disk monitoring to physical hosts
2021-03-23 22:36:52 +00:00
226c624328
base: Add lm_sensors to physical hosts
2021-03-23 22:29:11 +00:00
f7025a7a06
lm_sensors: Initial version of role
2021-03-23 22:28:50 +00:00
7258cb04fd
jenkins: Initial version of role
2021-03-23 21:44:35 +00:00
5c0d6fe84f
munin-node: Fix dependencies for Fedora
2021-03-23 18:15:44 +00:00
5282a19463
nfs-server: Add autocreate support for home/role directories
2021-03-23 17:01:39 +00:00
786b8699ff
network: Fix disabling IPv6 address on RHEL
...
When setting IPv6 addr to none interfaces were still autoconfigured
using router advertisements. This is now fixed.
2021-03-23 16:30:57 +00:00
89eec4e1c5
nginx/site: Disable certificate check when we have multiple backends
...
Nginx requires that all backend certificates need to match name defined
in ProxyPass directive:
https://trac.nginx.org/nginx/ticket/1307
2021-03-23 15:55:01 +00:00
00088239fa
thinlinc-server: Use Let's Encrypt certs if available
2021-03-22 21:04:37 +00:00
ca3270d89b
nginx/server: Use SNI when connecting to backend servers
2021-03-22 20:59:03 +00:00
147c8d4db5
nginx/server: Add plaintext HTTP server support for cert validation
2021-03-22 20:35:38 +00:00
65e34954f0
thinlinc-server: Tighten up TLS settings
2021-03-22 19:51:52 +00:00
480db886ca
thinlinc-server: Add web access configuration
...
Still lacks support for real certificates.
2021-03-22 19:03:09 +00:00
aed88b417b
nginx/server: Verify backend cert when proxying web sites
2021-03-22 19:02:10 +00:00
fbb64c4fb0
nginx/server: Drop xslt module as it's not used anymore
2021-03-22 17:09:27 +00:00
c6a98151ba
cups-client: Initial version of role
2021-03-20 15:26:43 +00:00
730cf1ab09
nginx: Set hsts headers in proxy level and not in backend
2021-03-20 14:29:28 +00:00
d55c77c30f
postfix: Add relay support to specific domains
2021-03-20 14:17:14 +00:00
6f156a91fd
cups: Don't set keytab in role
2021-03-20 14:15:52 +00:00
5c1ff863c7
rsyslog: Add missing udp listener file
2021-03-19 23:52:15 +00:00
