2021-10-16 16:26:14 +00:00
|
|
|
# Ansible
|
|
|
|
|
2022-05-25 23:24:56 +00:00
|
|
|
Catalogue of Ansible playbooks and helper scripts for server management
|
|
|
|
|
2023-04-11 08:22:52 +00:00
|
|
|
## TODO
|
|
|
|
Migrate OMV6 installation process to the OMV-Extras script and disable network configuration step
|
|
|
|
https://github.com/OpenMediaVault-Plugin-Developers/installScript#to-skip-network-setup
|
|
|
|
|
2022-05-25 23:24:56 +00:00
|
|
|
## Node configuration process
|
|
|
|
### Setup user configuration
|
|
|
|
- Create provisioning user without password and sudo
|
|
|
|
- Create tanguy user with password
|
|
|
|
- Disable root login (passwd --lock root)
|
|
|
|
|
|
|
|
### SSH Setup
|
|
|
|
- Install fail2ban
|
|
|
|
- Disable SSH password login
|
|
|
|
- Change SSH port
|
|
|
|
|
|
|
|
### Miscellaneous
|
|
|
|
- Test if unattended-upgrade is installed
|
|
|
|
- Disable if true
|
|
|
|
- Disable IPv6
|
|
|
|
- Setup hostname
|
|
|
|
|
|
|
|
### Softwares
|
|
|
|
- Install k3s with token
|
|
|
|
- Install OMV for NAS node*(s)
|
|
|
|
|
|
|
|
## Update system
|
|
|
|
- General package manager update
|
|
|
|
|
2022-06-11 00:27:58 +00:00
|
|
|
# Additional configuration
|
|
|
|
- Add label to output node on k3s to enable load balancer
|
2022-05-25 23:24:56 +00:00
|
|
|
|
|
|
|
# Notes
|
|
|
|
Running the configuration for a node without inventory
|
|
|
|
```
|
|
|
|
ansible-playbook init.yml -i <ips-separated-by-commas> -u creator --private-key <path-to-ssh-key> --ask-become --extra-vars '{"hostname": "foo"}'
|
|
|
|
```
|
|
|
|
|
|
|
|
Running the configuration for a node with inventory
|
|
|
|
- Add node to inventory
|
|
|
|
- Add node to `virgin` group
|
|
|
|
- Run following command
|
|
|
|
```
|
|
|
|
ansible-playbook init.yml -i inventory --limit virgin
|
|
|
|
```
|
2022-11-16 22:53:26 +00:00
|
|
|
|
|
|
|
Initiate the cluster from scratch
|
|
|
|
```
|
|
|
|
make all
|
|
|
|
```
|