debian: enable automatic upgrades only for virtual machines
And factor out VM stuff into a separate file.
This commit is contained in:
parent
6a5ebfe5b5
commit
2f02f1eb2c
2 changed files with 15 additions and 13 deletions
|
|
@ -89,19 +89,6 @@
|
||||||
include_tasks: firewall.yml
|
include_tasks: firewall.yml
|
||||||
when: not is_proxmox # proxmox has its own firewall configuration
|
when: not is_proxmox # proxmox has its own firewall configuration
|
||||||
|
|
||||||
- name: Install automatic upgrade package
|
|
||||||
package:
|
|
||||||
name: unattended-upgrades
|
|
||||||
|
|
||||||
- name: Configure automatic upgrades
|
|
||||||
lineinfile:
|
|
||||||
path: /etc/apt/apt.conf.d/20auto-upgrades
|
|
||||||
create: yes
|
|
||||||
line: '{{ item }}'
|
|
||||||
loop:
|
|
||||||
- 'APT::Periodic::Update-Package-Lists "1";'
|
|
||||||
- 'APT::Periodic::Unattended-Upgrade "1";'
|
|
||||||
|
|
||||||
- name: Run SSH instance in management VRF
|
- name: Run SSH instance in management VRF
|
||||||
when: interfaces | selectattr('vrf') | selectattr('vrf.name', '==', 'mgmt')
|
when: interfaces | selectattr('vrf') | selectattr('vrf.name', '==', 'mgmt')
|
||||||
block:
|
block:
|
||||||
|
|
@ -124,3 +111,6 @@
|
||||||
name: sshd@mgmt
|
name: sshd@mgmt
|
||||||
enabled: yes
|
enabled: yes
|
||||||
notify: reboot
|
notify: reboot
|
||||||
|
|
||||||
|
- when: is_virtual
|
||||||
|
include_tasks: vm.yml
|
||||||
|
|
|
||||||
12
roles/debian/tasks/vm.yml
Normal file
12
roles/debian/tasks/vm.yml
Normal file
|
|
@ -0,0 +1,12 @@
|
||||||
|
- name: Install automatic upgrade package
|
||||||
|
package:
|
||||||
|
name: unattended-upgrades
|
||||||
|
|
||||||
|
- name: Configure automatic upgrades
|
||||||
|
lineinfile:
|
||||||
|
path: /etc/apt/apt.conf.d/20auto-upgrades
|
||||||
|
create: yes
|
||||||
|
line: '{{ item }}'
|
||||||
|
loop:
|
||||||
|
- 'APT::Periodic::Update-Package-Lists "1";'
|
||||||
|
- 'APT::Periodic::Unattended-Upgrade "1";'
|
||||||
Loading…
Add table
Add a link
Reference in a new issue