Ansible/README.md

54 lines
1.3 KiB
Markdown
Raw Normal View History

2021-10-16 16:26:14 +00:00
# Ansible
2022-05-25 23:24:56 +00:00
Catalogue of Ansible playbooks and helper scripts for server management
## TODO
Migrate OMV6 installation process to the OMV-Extras script and disable network configuration step
https://github.com/OpenMediaVault-Plugin-Developers/installScript#to-skip-network-setup
2022-05-25 23:24:56 +00:00
## Node configuration process
### Setup user configuration
- Create provisioning user without password and sudo
- Create tanguy user with password
- Disable root login (passwd --lock root)
### SSH Setup
- Install fail2ban
- Disable SSH password login
- Change SSH port
### Miscellaneous
- Test if unattended-upgrade is installed
2023-04-11 08:23:23 +00:00
- Disable if true
2022-05-25 23:24:56 +00:00
- Disable IPv6
- Setup hostname
### Softwares
- Install k3s with token
- Install OMV for NAS node*(s)
## Update system
- General package manager update
2022-06-11 00:27:58 +00:00
# Additional configuration
- Add label to output node on k3s to enable load balancer
2022-05-25 23:24:56 +00:00
# Notes
Running the configuration for a node without inventory
```
ansible-playbook init.yml -i <ips-separated-by-commas> -u creator --private-key <path-to-ssh-key> --ask-become --extra-vars '{"hostname": "foo"}'
```
Running the configuration for a node with inventory
- Add node to inventory
- Add node to `virgin` group
- Run following command
```
ansible-playbook init.yml -i inventory --limit virgin
```
2022-11-16 22:53:26 +00:00
Initiate the cluster from scratch
```
make all
```