-changes to ssh key deployment
-simplified instructions -attempt to prevent connman from installing - causes multiple ip's -cleanup some unused tasks -move openvpn to separate role
This commit is contained in:
Michael Pellegrino
@@ -20,6 +20,16 @@
|
||||
content: "{{ lookup('template', '{{ role_path }}/templates/hosts.j2') }}"
|
||||
state: present
|
||||
tags: update_hosts
|
||||
- name: update package cache
|
||||
become: true
|
||||
ansible.builtin.apt:
|
||||
update_cache: yes
|
||||
- name: hold connman - using netplan
|
||||
become: true
|
||||
dpkg_selections:
|
||||
name: connman
|
||||
selection: hold
|
||||
|
||||
- name: install required packages
|
||||
become: true
|
||||
package:
|
||||
@@ -30,29 +40,6 @@
|
||||
hostname:
|
||||
name: '{{ inventory_hostname }}'
|
||||
tags: set_hostname
|
||||
- name: enable openvpn
|
||||
become: true
|
||||
service:
|
||||
name: openvpn
|
||||
enabled: yes
|
||||
tags: enable_openvpn
|
||||
register: openvpn_enabled
|
||||
- name: enable openvpn config
|
||||
become: true
|
||||
lineinfile:
|
||||
path: /etc/default/openvpn
|
||||
state: present
|
||||
regexp: '^#AUTOSTART="all"'
|
||||
line: 'AUTOSTART="all"'
|
||||
tags: enable_openvpn
|
||||
- name: start openvpn
|
||||
become: true
|
||||
systemd:
|
||||
daemon_reload: yes
|
||||
name: openvpn
|
||||
state: restarted
|
||||
tags: enable_openvpn
|
||||
when: openvpn_enabled
|
||||
- name: allow pi to sudo without pw
|
||||
lineinfile:
|
||||
path: /etc/sudoers
|
||||
|
||||
@@ -7,4 +7,3 @@ dependency_packages:
|
||||
- screen
|
||||
- cockpit-storaged
|
||||
- cockpit
|
||||
- openvpn
|
||||
|
||||
@@ -16,7 +16,6 @@ dependency_packages:
|
||||
- smbclient
|
||||
- ncurses-dev
|
||||
- build-essential
|
||||
- openvpn
|
||||
- lightdm
|
||||
- lxde
|
||||
- realvnc-vnc-server
|
||||
|
||||
@@ -16,7 +16,6 @@ dependency_packages:
|
||||
- smbclient
|
||||
- ncurses-dev
|
||||
- build-essential
|
||||
- openvpn
|
||||
- lightdm
|
||||
- lxde
|
||||
- realvnc-vnc-server
|
||||
|
||||
@@ -16,7 +16,6 @@ dependency_packages:
|
||||
- smbclient
|
||||
- ncurses-dev
|
||||
- build-essential
|
||||
- openvpn
|
||||
- lightdm
|
||||
- lxde
|
||||
- realvnc-vnc-server
|
||||
|
||||
@@ -3,7 +3,6 @@ dependency_packages:
|
||||
- vim
|
||||
- mc
|
||||
- build-essential
|
||||
- openvpn
|
||||
- aptitude
|
||||
- mtr
|
||||
- screen
|
||||
|
||||
@@ -3,7 +3,6 @@ dependency_packages:
|
||||
- vim
|
||||
- mc
|
||||
- build-essential
|
||||
- openvpn
|
||||
- aptitude
|
||||
- mtr
|
||||
- screen
|
||||
|
||||
@@ -3,7 +3,6 @@ dependency_packages:
|
||||
- vim
|
||||
- mc
|
||||
- build-essential
|
||||
- openvpn
|
||||
- aptitude
|
||||
- mtr
|
||||
- screen
|
||||
|
||||
30
roles/openvpn/taks/main.yaml
Normal file
30
roles/openvpn/taks/main.yaml
Normal file
@@ -0,0 +1,30 @@
|
||||
---
|
||||
- name: install openvpn
|
||||
ansible.builtin.apt:
|
||||
name: openvpn
|
||||
state: present
|
||||
update_cache: yes
|
||||
|
||||
- name: enable openvpn
|
||||
become: true
|
||||
service:
|
||||
name: openvpn
|
||||
enabled: yes
|
||||
tags: enable_openvpn
|
||||
register: openvpn_enabled
|
||||
- name: enable openvpn config
|
||||
become: true
|
||||
lineinfile:
|
||||
path: /etc/default/openvpn
|
||||
state: present
|
||||
regexp: '^#AUTOSTART="all"'
|
||||
line: 'AUTOSTART="all"'
|
||||
tags: enable_openvpn
|
||||
- name: start openvpn
|
||||
become: true
|
||||
systemd:
|
||||
daemon_reload: yes
|
||||
name: openvpn
|
||||
state: restarted
|
||||
tags: enable_openvpn
|
||||
when: openvpn_enabled
|
||||
Reference in New Issue
Block a user