---
- name: Deploy KVM virtual machines
  ansible.builtin.import_playbook: include/deploy-kvm-guest.yml
  vars:
    myhosts: fsolgw

- name: Configure instance
  hosts: fsolgw
  user: root
  gather_facts: true

  vars_files:
    - "{{ ansible_private }}/vars.yml"

  tasks:
    - name: Enable IP forwarding
      ansible.posix.sysctl:
        name: "{{ item }}"
        sysctl_set: true
        value: "1"
      with_items:
        - net.inet.ip.forwarding
        - net.inet6.ip6.forwarding
    - name: Manually set DNS servers
      ansible.builtin.copy:
        dest: /etc/dhcpleased.conf
        content: |
          interface vio2 {
            ignore dns
          }
        mode: "0644"
        owner: root
        group: "{{ ansible_wheel }}"
    - name: Create pfsync interface
      ansible.builtin.copy:
        dest: /etc/hostname.pfsync0
        content: "up syncdev vio1\n"
        mode: "0600"
        owner: root
        group: "{{ ansible_wheel }}"

  roles:
    - base
    - openbgpd
    - openvpn
    - ifstated