---
- import_playbook: "include/deploy-kvm-guest.yml myhosts=gw"

- name: configure instance
  hosts: gw
  user: root
  gather_facts: true

  vars_files:
    - "{{ ansible_private }}/vars.yml"

  roles:
    - base
    - ifstated

  tasks:
    - name: use configured dns servers and domain name
      copy:
        dest: /etc/dhclient.conf
        content: "ignore domain-name-servers, domain-name;"
        mode: 0644
        owner: root
        group: "{{ ansible_wheel }}"

    - name: enable ip forwarding
      sysctl:
        name: "{{ item }}"
        sysctl_set: true
        value: "1"
      with_items:
        - net.inet.ip.forwarding
        - net.inet6.ip6.forwarding

    - name: copy dns zone files
      copy:
        dest: "/var/unbound/db/{{ item }}"
        src: "/srv/dns/{{ item }}"
        mode: 0644
        owner: root
        group: "{{ ansible_wheel }}"
      notify: restart unbound
      with_items:
        - 20.172.in-addr.arpa
        - home.foo.sh
    - import_role:
        name: unbound