commit | author | age
|
da4ace
|
1 |
--- |
GC |
2 |
# TODO: split into different files. Possible since 2.6 thanks to this commit: |
|
3 |
# https://github.com/ansible/ansible/commit/95ce00ff00e2907e89f4106747abaf9d4e4ccd7f |
|
4 |
|
|
5 |
cloudformation_retries: 1 |
|
6 |
aws_comment: "Created by Ansible Agnostic Deployer" |
|
7 |
|
|
8 |
################################################################# |
|
9 |
# VPC |
|
10 |
################################################################# |
|
11 |
|
fc2bc8
|
12 |
aws_vpc_cidr: 192.168.0.0/16 |
da4ace
|
13 |
aws_vpc_name: "{{ subdomain_base }}" |
GC |
14 |
|
|
15 |
################################################################# |
|
16 |
# Subnet |
|
17 |
################################################################# |
|
18 |
|
fc2bc8
|
19 |
aws_public_subnet_cidr: 192.168.0.0/24 |
da4ace
|
20 |
|
GC |
21 |
################################################################# |
|
22 |
# Security Groups |
|
23 |
################################################################# |
|
24 |
|
|
25 |
default_security_groups: |
|
26 |
- name: BastionSG |
|
27 |
rules: |
|
28 |
- name: MoshPublic |
|
29 |
description: "Public Mosh Access for bastions" |
|
30 |
from_port: 60000 |
|
31 |
to_port: 61000 |
|
32 |
protocol: udp |
|
33 |
cidr: "0.0.0.0/0" |
|
34 |
rule_type: Ingress |
|
35 |
- name: SSHPublic |
|
36 |
description: "Public Access for bastions" |
|
37 |
from_port: 22 |
|
38 |
to_port: 22 |
|
39 |
protocol: tcp |
|
40 |
cidr: "0.0.0.0/0" |
|
41 |
rule_type: Ingress |
|
42 |
|
|
43 |
- name: DefaultSG |
|
44 |
rules: |
|
45 |
- name: FromBastionTCP |
|
46 |
description: "Allow everything from Bastion" |
|
47 |
from_port: 0 |
|
48 |
to_port: 65535 |
|
49 |
protocol: tcp |
|
50 |
from_group: BastionSG |
|
51 |
rule_type: Ingress |
|
52 |
- name: FromBastionUDP |
|
53 |
description: "Allow everything from Bastion" |
|
54 |
from_port: 0 |
|
55 |
to_port: 65535 |
|
56 |
protocol: tcp |
|
57 |
from_group: BastionSG |
|
58 |
rule_type: Ingress |
|
59 |
|
|
60 |
# Environment specific security groups |
|
61 |
security_groups: [] |
|
62 |
|
|
63 |
################################################################# |
|
64 |
# DNS zones |
|
65 |
################################################################# |
|
66 |
|
|
67 |
# The top level DNS zone you want to update |
|
68 |
aws_dns_zone_root: "{{ subdomain_base_suffix | regex_replace('^\\.', '') }}." |
|
69 |
|
|
70 |
# Private DNS Zone dedicated to the environment |
|
71 |
aws_dns_zone_private: "{{ guid }}.internal." |
632288
|
72 |
aws_dns_zone_private_chomped: "{{ aws_dns_zone_private | regex_replace('\\.$', '') }}" |
da4ace
|
73 |
|
6708f6
|
74 |
# Public DNS Zone dedicated to the environment |
GC |
75 |
aws_dns_zone_public: "{{ guid }}.{{ aws_dns_zone_root }}" |
|
76 |
|
da4ace
|
77 |
aws_dns_ttl_public: 900 |
GC |
78 |
aws_dns_ttl_private: 3600 |
|
79 |
|
|
80 |
################################################################# |
|
81 |
# Volumes |
|
82 |
################################################################# |
|
83 |
|
|
84 |
# default size for /dev/sda1 |
|
85 |
aws_default_rootfs_size: 50 |
|
86 |
|
|
87 |
# default Volume type |
|
88 |
aws_default_volume_type: gp2 |
|
89 |
|
|
90 |
################################################################# |
|
91 |
# Images |
|
92 |
################################################################# |
|
93 |
|
16c4d7
|
94 |
# changed to GOLD to save money via Red Hat Cloud Access program |
e337c9
|
95 |
aws_default_image: RHEL75 |
JM |
96 |
|
da4ace
|
97 |
|
GC |
98 |
aws_ami_region_mapping: |
|
99 |
ap-south-1: |
|
100 |
RHEL75GOLD: ami-0c6ec6988a8df3acc # RHEL-7.5_HVM-20180813-x86_64-0-Access2-GP2 |
|
101 |
RHEL74GOLD: ami-952879fa # RHEL-7.4_HVM-20180122-x86_64-1-Access2-GP2 |
|
102 |
RHEL75: ami-0aa4317636e016115 # RHEL-7.5_HVM-20180813-x86_64-0-Hourly2-GP2 |
|
103 |
RHEL74: ami-5c2f7e33 # RHEL-7.4_HVM-20180122-x86_64-1-Hourly2-GP2 |
|
104 |
WIN2012R2: ami-03087b28576b37511 # Windows_Server-2012-R2_RTM-English-Deep-Learning-2018.09.15 |
420e4b
|
105 |
RHEL81: ami-0dfd6c47961875b86 # RHEL-8.1.0_HVM-20191029-x86_64-0-Hourly2-GP2 |
da4ace
|
106 |
eu-west-3: |
GC |
107 |
RHEL75GOLD: ami-0a0167e3e2a1d1d9b # RHEL-7.5_HVM-20180813-x86_64-0-Access2-GP2 |
|
108 |
RHEL74GOLD: ami-69d06614 # RHEL-7.4_HVM-20180122-x86_64-1-Access2-GP2 |
|
109 |
RHEL75: ami-039346fed23fb53ad # RHEL-7.5_HVM-20180813-x86_64-0-Hourly2-GP2 |
|
110 |
RHEL74: ami-66d0661b # RHEL-7.4_HVM-20180122-x86_64-1-Hourly2-GP2 |
|
111 |
WIN2012R2: ami-080d3d8def91e4f44 # Windows_Server-2012-R2_RTM-English-Deep-Learning-2018.09.15 |
420e4b
|
112 |
RHEL81: ami-0b9d191a8259d92e2 # RHEL-8.1.0_HVM-20191029-x86_64-0-Hourly2-GP2 |
da4ace
|
113 |
eu-west-2: |
GC |
114 |
RHEL75GOLD: ami-01f010afd559615b9 # RHEL-7.5_HVM-20180813-x86_64-0-Access2-GP2 |
|
115 |
RHEL74GOLD: ami-55bca731 # RHEL-7.4_HVM-20180122-x86_64-1-Access2-GP2 |
|
116 |
RHEL75: ami-0ac5fae255ddac6f6 # RHEL-7.5_HVM-20180813-x86_64-0-Hourly2-GP2 |
|
117 |
RHEL74: ami-b4b3a8d0 # RHEL-7.4_HVM-20180122-x86_64-1-Hourly2-GP2 |
|
118 |
WIN2012R2: ami-0699aabf510a3f2f8 # Windows_Server-2012-R2_RTM-English-Deep-Learning-2018.09.15 |
420e4b
|
119 |
RHEL81: ami-0964d8bb6ca66d551 # RHEL-8.1.0_HVM-20191029-x86_64-0-Hourly2-GP2 |
da4ace
|
120 |
eu-west-1: |
GC |
121 |
RHEL75GOLD: ami-0c51cd02617947143 # RHEL-7.5_HVM-20180813-x86_64-0-Access2-GP2 |
|
122 |
RHEL74GOLD: ami-b7b6d3ce # RHEL-7.4_HVM-20180122-x86_64-1-Access2-GP2 |
|
123 |
RHEL75: ami-092acf20fad7f7795 # RHEL-7.5_HVM-20180813-x86_64-0-Hourly2-GP2 |
|
124 |
RHEL74: ami-ccb7d2b5 # RHEL-7.4_HVM-20180122-x86_64-1-Hourly2-GP2 |
|
125 |
WIN2012R2: ami-0370c806916d2a17f # Windows_Server-2012-R2_RTM-English-64Bit-HyperV-2018.09.15 |
420e4b
|
126 |
RHEL81: ami-0534d3148e3ce93d7 # RHEL-8.1.0_HVM-20191029-x86_64-0-Hourly2-GP2 |
da4ace
|
127 |
ap-northeast-2: |
GC |
128 |
RHEL75GOLD: ami-031161cd3182e012a # RHEL-7.5_HVM-20180813-x86_64-0-Access2-GP2 |
|
129 |
RHEL74GOLD: ami-9fa201f1 # RHEL-7.4_HVM-20180122-x86_64-1-Access2-GP2 |
|
130 |
RHEL75: ami-0d226f15e3e46903a # RHEL-7.5_HVM-20180813-x86_64-0-Hourly2-GP2 |
|
131 |
RHEL74: ami-90a201fe # RHEL-7.4_HVM-20180122-x86_64-1-Hourly2-GP2 |
|
132 |
WIN2012R2: ami-02ee840e33e7c2244 # Windows_Server-2012-R2_RTM-English-Deep-Learning-2018.09.15 |
420e4b
|
133 |
RHEL81: ami-0dbadd8c47cf535fd # RHEL-8.1.0_HVM-20191029-x86_64-0-Hourly2-GP2 |
da4ace
|
134 |
ap-northeast-1: |
GC |
135 |
RHEL75GOLD: ami-0bf9ecb88f5719e17 # RHEL-7.5_HVM-20180813-x86_64-0-Access2-GP2 |
|
136 |
RHEL74GOLD: ami-ccf695aa # RHEL-7.4_HVM-20180122-x86_64-1-Access2-GP2 |
|
137 |
RHEL75: ami-0b517025bb2f0ad4a # RHEL-7.5_HVM-20180813-x86_64-0-Hourly2-GP2 |
|
138 |
RHEL74: ami-36f09350 # RHEL-7.4_HVM-20180122-x86_64-1-Hourly2-GP2 |
|
139 |
WIN2012R2: ami-08e310c576c077de1 # Windows_Server-2012-R2_RTM-English-Deep-Learning-2018.09.15 |
420e4b
|
140 |
RHEL81: ami-0302fadfb901ae198 # RHEL-8.1.0_HVM-20191029-x86_64-0-Hourly2-GP2 |
da4ace
|
141 |
sa-east-1: |
GC |
142 |
RHEL75GOLD: ami-93b693ff # RHEL-7.5_HVM_GA-JBEAP-7.1.2-20180629-x86_64-1-Access2-GP2 |
|
143 |
RHEL74GOLD: ami-dc014db0 # RHEL-7.4_HVM-20180122-x86_64-1-Access2-GP2 |
|
144 |
RHEL75: ami-01c56172f9db84834 # RHEL-7.5_HVM-20180813-x86_64-0-Hourly2-GP2 |
|
145 |
RHEL74: ami-1a064a76 # RHEL-7.4_HVM-20180122-x86_64-1-Hourly2-GP2 |
|
146 |
WIN2012R2: ami-079f7c686ba77c199 # Windows_Server-2012-R2_RTM-English-Deep-Learning-2018.09.15 |
420e4b
|
147 |
RHEL81: ami-0bac1917c46ed1418 # RHEL-8.1.0_HVM-20191029-x86_64-0-Hourly2-GP2 |
da4ace
|
148 |
ca-central-1: |
GC |
149 |
RHEL75GOLD: ami-e320ad87 # RHEL-7.5_HVM-20180813-x86_64-0-Access2-GP2 |
|
150 |
RHEL74GOLD: ami-2a00854e # RHEL-7.4_HVM-20180122-x86_64-1-Access2-GP2 |
|
151 |
RHEL75: ami-fc20ad98 # RHEL-7.5_HVM-20180813-x86_64-0-Hourly2-GP2 |
|
152 |
RHEL74: ami-71018415 # RHEL-7.4_HVM-20180122-x86_64-1-Hourly2-GP2 |
|
153 |
WIN2012R2: ami-020be7519c99e8064 # Windows_Server-2012-R2_RTM-English-Deep-Learning-2018.09.15 |
420e4b
|
154 |
RHEL81: ami-0eec8704b9b12656a # RHEL-8.1.0_HVM-20191029-x86_64-0-Hourly2-GP2 |
da4ace
|
155 |
ap-southeast-1: |
GC |
156 |
RHEL75GOLD: ami-0f44e46fa59e902b6 # RHEL-7.5_HVM-20180813-x86_64-0-Access2-GP2 |
|
157 |
RHEL74GOLD: ami-8193eafd # RHEL-7.4_HVM-20180122-x86_64-1-Access2-GP2 |
|
158 |
RHEL75: ami-09fc728e15fbfb535 # RHEL-7.5_HVM-20180813-x86_64-0-Hourly2-GP2 |
|
159 |
RHEL74: ami-8d90e9f1 # RHEL-7.4_HVM-20180122-x86_64-1-Hourly2-GP2 |
|
160 |
WIN2012R2: ami-0906117a55c70d5e7 # Windows_Server-2012-R2_RTM-English-Deep-Learning-2018.09.15 |
420e4b
|
161 |
RHEL81: ami-00d042f59a75c06e7 # RHEL-8.1.0_HVM-20191029-x86_64-0-Hourly2-GP2 |
da4ace
|
162 |
ap-southeast-2: |
GC |
163 |
RHEL75GOLD: ami-0066ef2f9c72fad96 # RHEL-7.5_HVM-20180813-x86_64-0-Access2-GP2 |
|
164 |
RHEL74GOLD: ami-dd9668bf # RHEL-7.4_HVM-20180122-x86_64-1-Access2-GP2 |
|
165 |
RHEL75: ami-0a61d60bde3940420 # RHEL-7.5_HVM-20180813-x86_64-0-Hourly2-GP2 |
|
166 |
RHEL74: ami-e1996783 # RHEL-7.4_HVM-20180122-x86_64-1-Hourly2-GP2 |
|
167 |
WIN2012R2: ami-09fb195e1d6625aab # Windows_Server-2012-R2_RTM-English-Deep-Learning-2018.09.15 |
420e4b
|
168 |
RHEL81: ami-0e3696cc3d156dd22 # RHEL-8.1.0_HVM-20191029-x86_64-0-Hourly2-GP2 |
da4ace
|
169 |
eu-central-1: |
GC |
170 |
RHEL75GOLD: ami-07d3f0705bebac978 # RHEL-7.5_HVM-20180813-x86_64-0-Access2-GP2 |
|
171 |
RHEL74GOLD: ami-b3d841dc # RHEL-7.4_HVM-20180122-x86_64-1-Access2-GP2 |
|
172 |
RHEL75: ami-05ba90b00a46d83fa # RHEL-7.5_HVM-20180813-x86_64-0-Hourly2-GP2 |
|
173 |
RHEL74: ami-8a21bfe5 # RHEL-7.4_HVM-20180122-x86_64-1-Hourly2-GP2 |
|
174 |
WIN2012R2: ami-07b8613a03480d559 # Windows_Server-2012-R2_RTM-English-64Bit-HyperV-2018.09.15 |
420e4b
|
175 |
RHEL81: ami-067e4f6fa56351e07 # RHEL-8.1.0_HVM-20191029-x86_64-0-Hourly2-GP2 |
da4ace
|
176 |
us-east-1: |
GC |
177 |
RHEL75GOLD: ami-0456c465f72bd0c95 # RHEL-7.5_HVM-20180813-x86_64-0-Access2-GP2 |
|
178 |
RHEL74GOLD: ami-c5a094bf # RHEL-7.4_HVM-20180122-x86_64-1-Access2-GP2 |
|
179 |
RHEL75: ami-0394fe9914b475c53 # RHEL-7.5_HVM-20180813-x86_64-0-Hourly2-GP2 |
|
180 |
RHEL74: ami-76a3970c # RHEL-7.4_HVM-20180122-x86_64-1-Hourly2-GP2 |
|
181 |
WIN2012R2: ami-003027603b9c132b3 # Windows_Server-2012-R2_RTM-Japanese-64Bit-SQL_2016_SP1_Express-2018.09.15 |
420e4b
|
182 |
RHEL81: ami-09b947b170ccd0dbc # RHEL-8.1.0_HVM-20191029-x86_64-0-Hourly2-GP2 |
da4ace
|
183 |
us-east-2: |
GC |
184 |
RHEL75GOLD: ami-04268981d7c33264d # RHEL-7.5_HVM-20180813-x86_64-0-Access2-GP2 |
|
185 |
RHEL74GOLD: ami-9db09af8 # RHEL-7.4_HVM-20180122-x86_64-1-Access2-GP2 |
|
186 |
RHEL75: ami-0376bbf9be9eac670 # RHEL-7.5_HVM-20180813-x86_64-0-Hourly2-GP2 |
|
187 |
RHEL74: ami-cebe94ab # RHEL-7.4_HVM-20180122-x86_64-1-Hourly2-GP2 |
|
188 |
WIN2012R2: ami-02fa46b8e1a36044b # Windows_Server-2012-R2_RTM-English-P3-2018.09.15 |
420e4b
|
189 |
RHEL81: ami-0fdea47967124a409 # RHEL-8.1.0_HVM-20191029-x86_64-0-Hourly2-GP2 |
da4ace
|
190 |
us-west-1: |
GC |
191 |
RHEL75GOLD: ami-02574210e91c38419 # RHEL-7.5_HVM-20180813-x86_64-0-Access2-GP2 |
|
192 |
RHEL74GOLD: ami-6f030e0f # RHEL-7.4_HVM-20180122-x86_64-1-Access2-GP2 |
|
193 |
RHEL75: ami-0bdc0ff10fb093057 # RHEL-7.5_HVM-20180813-x86_64-0-Hourly2-GP2 |
|
194 |
RHEL74: ami-c8020fa8 # RHEL-7.4_HVM-20180122-x86_64-1-Hourly2-GP2 |
|
195 |
WIN2012R2: ami-0f9c4789993c313f7 # Windows_Server-2012-R2_RTM-English-Deep-Learning-2018.09.15 |
420e4b
|
196 |
RHEL81: ami-008d471ffd812f4b8 # RHEL-8.1.0_HVM-20191029-x86_64-0-Hourly2-GP2 |
da4ace
|
197 |
us-west-2: |
GC |
198 |
RHEL75GOLD: ami-0e6bab6682ec471c0 # RHEL-7.5_HVM-20180813-x86_64-0-Access2-GP2 |
|
199 |
RHEL74GOLD: ami-c405b8bc # RHEL-7.4_HVM-20180122-x86_64-1-Access2-GP2 |
|
200 |
RHEL75: ami-096510cab1b6b2c6d # RHEL-7.5_HVM-20180813-x86_64-0-Hourly2-GP2 |
|
201 |
RHEL74: ami-1607ba6e # RHEL-7.4_HVM-20180122-x86_64-1-Hourly2-GP2 |
|
202 |
WIN2012R2: ami-0d786d5cc800b2456 # Windows_Server-2012-R2_RTM-English-64Bit-HyperV-2018.09.15 |
420e4b
|
203 |
RHEL81: ami-0ae93796700af07d3 # RHEL-8.1.0_HVM-20191029-x86_64-0-Hourly2-GP2 |