rc/servers
2
0
Fork 0
Code Issues Pull requests Actions Packages Projects 1 Releases Wiki Activity
servers/roles/alpine/tasks/main.yml
Timotej Lazar f5e9c7d6dc alpine: add iproute2 to base packages 
Too useful too often not to.
2024-06-05 15:40:59 +02:00

67 lines
1.3 KiB
YAML
Raw Blame History

- name: Set hostname
hostname:
name: '{{ dns_name }}'
- name: Configure hosts
template:
dest: /etc/hosts
src: hosts.j2
- name: Enable community package repo
lineinfile:
path: /etc/apk/repositories
regexp: '^# *(http.*/v[^/]*/community)'
line: '\1'
backrefs: yes
notify: update package cache
- meta: flush_handlers
- name: Install base packages
package:
name:
- git
- iproute2
- nftables
- procps
- rsync
- tmux
- vim
- name: Disable SSH password authentication
lineinfile:
path: /etc/ssh/sshd_config
regexp: '^#?{{ item.key }}'
line: '{{ item.key }} {{ item.value }}'
loop:
- key: PasswordAuthentication
value: 'no'
- key: PermitRootLogin
value: 'prohibit-password'
notify: reload sshd
- name: Set up firewall
template:
dest: /etc/nftables.d/local.nft
src: local.nft.j2
notify: reload nftables
- name: Enable firewall
service:
name: nftables
enabled: yes
state: started
- name: Enable QEMU guest agent
when: is_virtual
block:
- name: Install QEMU guest agent package
package:
name: qemu-guest-agent
- name: Enable QEMU guest agent service
service:
name: qemu-guest-agent
enabled: yes
state: started
Reference in a new issue View git blame Copy permalink