69 lines
1.7 KiB
YAML
69 lines
1.7 KiB
YAML
---
|
|
- name: write systemd unit ffmwu-static-routes.service
|
|
template:
|
|
src: ffmwu-static-routes.service.j2
|
|
dest: /etc/systemd/system/ffmwu-static-routes.service
|
|
owner: root
|
|
group: root
|
|
mode: 0644
|
|
notify: reload systemd
|
|
|
|
- name: write static route scripts
|
|
template:
|
|
src: "{{ item }}.j2"
|
|
dest: "/usr/local/bin/{{ item }}"
|
|
owner: root
|
|
group: root
|
|
mode: 0750
|
|
loop:
|
|
- ffmwu-add-static-routes.sh
|
|
- ffmwu-del-static-routes.sh
|
|
notify: restart systemd unit ffmwu-static-routes
|
|
|
|
- name: enable systemd unit ffmwu-static-routes.service
|
|
systemd:
|
|
name: ffmwu-static-routes
|
|
enabled: yes
|
|
state: started
|
|
|
|
- name: write systemd unit ffmwu-ip-rules.service
|
|
template:
|
|
src: ffmwu-ip-rules.service.j2
|
|
dest: /etc/systemd/system/ffmwu-ip-rules.service
|
|
owner: root
|
|
group: root
|
|
mode: 0644
|
|
notify: reload systemd
|
|
|
|
- name: write ip rule scripts
|
|
template:
|
|
src: "{{ item }}.j2"
|
|
dest: "/usr/local/bin/{{ item }}"
|
|
owner: root
|
|
group: root
|
|
mode: 0750
|
|
loop:
|
|
- ffmwu-add-ip-rules.sh
|
|
- ffmwu-del-ip-rules.sh
|
|
notify: restart systemd unit ffmwu-ip-rules
|
|
|
|
- name: enable systemd unit ffmwu-ip-rules.service
|
|
systemd:
|
|
name: ffmwu-ip-rules
|
|
enabled: yes
|
|
state: started
|
|
|
|
- name: set basic sysctl settings for routing
|
|
sysctl:
|
|
name: "{{ item.name }}"
|
|
value: "{{ item.value }}"
|
|
state: present
|
|
loop: "{{ sysctl_settings_routing_basic }}"
|
|
|
|
- name: set sysctl settings for ip forwarding
|
|
when: server_type == "gateway" or server_type == "service" or server_type == "monitoring"
|
|
sysctl:
|
|
name: "{{ item.name }}"
|
|
value: "{{ item.value }}"
|
|
state: present
|
|
loop: "{{ sysctl_settings_routing_forwarding }}"
|