vlad/ansible_cache
vlad/ansible_cache
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Added NFS service configuration to the SERVICES role to allow DNAC backups

Browse Source
This commit is contained in:
Vlad Raducanu 2022-07-08 14:59:11 +01:00
parent 0677bd0255
commit 89b377bfde
4 changed files with 54 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
dnaclab_linux/prestage.yml
View File

@ -10,6 +10,8 @@
- common - common
- services - services
become: yes become: yes
vars_files:
- global_vars/main.yml
tasks: tasks:

49
dnaclab_linux/roles/services/tasks/main.yml
View File

@ -10,6 +10,7 @@
- tftpd-hpa - tftpd-hpa
- syslog-ng - syslog-ng
- vsftpd - vsftpd
- nfs-kernel-server
- name: Configure UFW to allow inbound NTP, SSH, SYSLOG, FTP and TFTP connections - name: Configure UFW to allow inbound NTP, SSH, SYSLOG, FTP and TFTP connections
community.general.ufw: community.general.ufw:
@ -36,6 +37,19 @@
proto: tcp proto: tcp
- port: '5142' - port: '5142'
proto: tcp proto: tcp
- port: '111'
proto: tcp
- port: '111'
proto: udp
- port: '2049'
proto: tcp
- port: '2049'
proto: udp
- port: '32767'
proto: tcp
- port: '32767'
proto: udp
- name: Deny all other incoming IPv4 traffic - name: Deny all other incoming IPv4 traffic
community.general.ufw: community.general.ufw:
@ -93,6 +107,38 @@
mode: '0644' mode: '0644'
backup: yes backup: yes
- name: Create FTP directory
ansible.builtin.file:
path: "/home/{{ ansible_user }}/Desktop/SFTP"
state: directory
owner: "{{ ansible_user }}"
group: "{{ ansible_user }}"
mode: '0755'
- name: Create NFS directories
ansible.builtin.file:
path: "{{ item.path }}"
state: directory
owner: "{{ item.owner }}"
group: "{{ item.group }}"
mode: '0755'
loop:
- path: "/home/{{ ansible_user }}/Desktop/DNAC-NFS-BACKUP"
owner: "nobody"
group: "nogroup"
- path: "/home/{{ ansible_user }}/Desktop/DNAC-SSH-BACKUP"
owner: "{{ ansible_user }}"
group: "{{ ansible_user }}"
- name: Apply NFS configuration lines
ansible.builtin.lineinfile:
path: /etc/exports
line: "/home/{{ ansible_user }}/Desktop/DNAC-NFS-BACKUP *(rw,all_squash,sync,no_subtree_check) "
state: present
- name: Export file system to NFS server
ansible.builtin.command: sudo exportfs -a
- name: Enable installed services - name: Enable installed services
ansible.builtin.service: ansible.builtin.service:
name: "{{ item }}" name: "{{ item }}"
@ -101,4 +147,5 @@
- ntp - ntp
- tftpd-hpa - tftpd-hpa
- syslog-ng - syslog-ng
- vsftpd - vsftpd
- nfs-kernel-server

2
ios_devices/device_audit.yml
View File

@ -3,7 +3,7 @@
## for devices which feature VRFs or multi-instance capabilities. ## for devices which feature VRFs or multi-instance capabilities.
- name: Audit devices and print key information - name: Audit devices and print key information
hosts: baguleykit hosts: evengkit
gather_facts: false gather_facts: false
connection: network_cli connection: network_cli
roles: roles:

3
ios_devices/inventory.yml
View File

@ -5,3 +5,6 @@ baguleykit:
homekit: homekit:
hosts: hosts:
192.168.1.60: 192.168.1.60:
evengkit:
hosts:
172.16.1.239: