|
|
f7fc9e97c6
|
selinux: Lint fixes
|
2020-09-04 09:28:21 +00:00 |
|
|
|
e117fa23c5
|
postfix: Lint fixes
|
2020-09-04 09:25:55 +00:00 |
|
|
|
9a2cd1e646
|
Add nas02.home.foo.sh host
|
2020-09-04 08:32:31 +00:00 |
|
|
|
f920c8f09a
|
zfs: Initial version of role
|
2020-09-04 08:31:49 +00:00 |
|
|
|
7f63f03ac1
|
Open DoT port 853 for public dns servers
|
2020-09-04 07:00:00 +00:00 |
|
|
|
533b48204f
|
ldap_netdb: Add -v option to cron job and skip localhost
|
2020-09-04 06:58:48 +00:00 |
|
|
|
8ca459430c
|
nsd: Restart nsd after certificate update
|
2020-09-04 06:37:53 +00:00 |
|
|
|
bdb2d9adb9
|
Rework site.yml to include tested groups
|
2020-09-03 20:41:17 +00:00 |
|
|
|
46bdda437d
|
Add nginx to ns group
Used to authenticate certficates from letsencrypt.
|
2020-09-03 20:24:57 +00:00 |
|
|
|
e10d84305a
|
base: Install curl to all hosts
|
2020-09-03 20:24:25 +00:00 |
|
|
|
5edbeef97a
|
Rename certbot.foo.sh to certbot.home.foo.sh
|
2020-09-03 20:23:53 +00:00 |
|
|
|
7de9a9a6ae
|
nsd: Remove secondary dns servers
We run all as masters at the moment.
|
2020-09-03 20:04:17 +00:00 |
|
|
|
b4e260b1e1
|
nsd: Fix typo
|
2020-09-03 20:04:05 +00:00 |
|
|
|
db35937a67
|
Don't lock myself out from external hosts
|
2020-09-03 19:39:42 +00:00 |
|
|
|
4b49e9e486
|
Add atl01.vultr.foo.sh host
|
2020-09-03 19:37:06 +00:00 |
|
|
|
905e7f8485
|
Rename generic vm-create to deploy-kvm-guest
|
2020-09-03 18:13:52 +00:00 |
|
|
|
c9f3b7d0b7
|
Add ns02.home.foo.sh host
|
2020-09-03 17:59:43 +00:00 |
|
|
|
69c17d7e12
|
nsd: Initial version of role (WIP)
|
2020-09-03 17:58:53 +00:00 |
|
|
|
c1c74dc5c4
|
network: Fix type warning from net.inet.carp.preempt
|
2020-09-03 16:09:18 +00:00 |
|
|
|
525d8b72f9
|
Add certbot support for outside server network
|
2020-09-03 07:55:32 +00:00 |
|
|
|
5f17ae2964
|
Add proto=static to proxies network interfaces
|
2020-09-03 07:54:49 +00:00 |
|
|
|
35b1487d2a
|
postfix: Verify peer certificate for stunnel
|
2020-09-03 07:48:42 +00:00 |
|
|
|
63890bcb72
|
opensmtpd: Redirect all local mails to relay
|
2020-09-03 07:34:20 +00:00 |
|
|
|
58aa3e80db
|
Add route to old puppet infra from adm hosts
|
2020-09-03 07:29:31 +00:00 |
|
|
|
108660e297
|
network: Require proto=static for static ip address
|
2020-09-03 06:51:07 +00:00 |
|
|
|
2312e0b038
|
ldap_netdb: Fix typo
|
2020-09-03 06:07:33 +00:00 |
|
|
|
5b24509081
|
postfix: Fix email sending to local addresses
CentOS 7 sendmail and postfix doesn't have support for sending to SMTPs
server on port 465 so use stunnel for those.
|
2020-09-02 21:07:21 +00:00 |
|
|
|
574916dfaf
|
postfix: Fix local mail delivery to relayhost
|
2020-09-02 17:13:13 +00:00 |
|
|
|
8d1fed8695
|
pf: Fix indentation from pf.conf
|
2020-09-01 20:37:00 +00:00 |
|
|
|
6d63bda3ff
|
network: Fix OpenBSD interface with empty settings
|
2020-09-01 20:22:48 +00:00 |
|
|
|
bec7f3a84d
|
base: Use copy instead of file
|
2020-09-01 20:18:14 +00:00 |
|
|
|
f1468b0f1f
|
base: Use explicit package names for OpenBSD
|
2020-09-01 20:16:33 +00:00 |
|
|
|
f60fb7f88c
|
Force python3 install when provisioning OpenBSD
|
2020-09-01 20:15:15 +00:00 |
|
|
|
51aa0a709e
|
selinux: lint fixes
|
2020-09-01 19:21:18 +00:00 |
|
|
|
55d7d954b3
|
ldap_netdb: Initial version of role
|
2020-09-01 18:12:21 +00:00 |
|
|
|
7b201b31da
|
collab: Add missing srcdir and remove swap file
|
2020-08-31 00:21:37 +00:00 |
|
|
|
9dd83a8146
|
Lint fixes
|
2020-08-31 00:20:22 +00:00 |
|
|
|
c9b21a3286
|
Add ansible_certificate custom fact
|
2020-08-29 15:55:51 +00:00 |
|
|
|
0ae634aed2
|
Add vmhost02.home.foo.sh
|
2020-08-29 15:55:16 +00:00 |
|
|
|
aac14db657
|
ansible-host: Publish ansible facts with nginx
|
2020-08-29 13:43:21 +00:00 |
|
|
|
88157dcc91
|
collab: Initial version of role
|
2020-08-28 16:09:53 +00:00 |
|
|
|
99a88e1baa
|
Add temporary ssh config for adm hosts
* Route vmhost01 through ssh until it gets relocated
* Disable ip host key checking until we get ssh host certificates
|
2020-08-28 15:44:29 +00:00 |
|
|
|
acbe47c53f
|
Add make to adm hosts
|
2020-08-28 15:34:03 +00:00 |
|
|
|
13d07b7a6d
|
Rename moin group/hosts to collab
|
2020-08-28 12:58:54 +00:00 |
|
|
|
f6aed5faad
|
Add collab.foo.sh site to proxies
|
2020-08-28 12:56:05 +00:00 |
|
|
|
dd2b5c6a69
|
apache: Remove Procotols option
CentOS 7 doesn't support Protocols definition at all. Also as we
are running Apache only behind proxies all requests are HTTP/1.1
anyway.
|
2020-08-28 10:57:39 +00:00 |
|
|
|
fbc8fa55c5
|
Add moin host group
|
2020-08-28 10:41:27 +00:00 |
|
|
|
5c62106142
|
ansible-host: Use ssh pipelining
|
2020-08-28 10:40:57 +00:00 |
|
|
|
e7aa1c9b73
|
apache: Drop back to Mozilla intermediate
Looks like our proxies don't support modern settings yet.
|
2020-08-28 10:13:29 +00:00 |
|
|
|
47da9470a6
|
apache: Allow access to web root
|
2020-08-28 10:10:57 +00:00 |
|
