blob: fc3b760b64cb2e428a283aecb888f55ad477cf0d (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
|
---
# ansible overrides
ansible_hostname: "{{ ansible_host }}"
ansible_become_method: su
# roles overrides
wireguard_domain_controller: "{{ __global_domain_controller }}"
relayd_domain_name: "{{ __global_domain_name }}"
acme_domain_name: "{{ __global_domain_name }}"
nfsclient_server: stack0
httpd_use_nfs: true
relayd_rules: "{{ __services }}"
pf_rules: "[
{% for rule in __services if
'port' in rule and 'protocol' in rule and 'name' in rule %}
{{ {'name': rule.name, 'port': rule.port, 'protocol': rule.protocol} }},
{% endfor %}
]"
acme_rules: "{{ __services }}"
# playbook specific
__is_vm: false
__ip:
external:
internal:
__services: {}
__global_domain_controller: dc0
__global_domain_name: rgoncalves.se
__global_domain_name_hosts: owo
__global_domain_name_servers:
- 8.8.8.8
- 1.1.1.1
__global_services:
- name: ssh
protocol: tcp
port: 22
- name: healthcheck
protocol: tcp
port: 8000
is_public: true
|
