commit | author | age
|
63e2b0
|
1 |
Role for configuring Bastion hosts |
BT |
2 |
========= |
|
3 |
This role is used to configure bastion hosts for the cloud suite environments. |
|
4 |
More details will follow as needed. |
|
5 |
|
|
6 |
Requirements |
|
7 |
------------ |
|
8 |
Any pre-requisites that may not be covered by Ansible itself or the role, should/will be mentioned here. |
|
9 |
|
|
10 |
Role Variables |
|
11 |
-------------- |
|
12 |
This section contains a list of variables used by the role and their defult values. |
|
13 |
Those which should/can be changed will be marked as such followed by a short explanation. |
|
14 |
All these variables can be overriden anywhere, since they have the lowest priority. |
|
15 |
|
|
16 |
- **setup_bastion** - Type: bool. Should be set to yes (it is needed for package setup/install) |
|
17 |
- **bastion_packages** - Type: list. Contains the list of packages yum should install on the Bastion host |
|
18 |
- **exports_url** - Type: string, Contains the path to the 'exports' file for NFS on Bastion |
|
19 |
- **rhel_repositories** - Type: hash, Contains the required key-value pairs for the yum_repository module. |
|
20 |
- **internal_network** - Type: string. The IP address range in CIDR notation (eg. 192.168.1.1/24) |
|
21 |
- **enabled_repositories** - Type: string. The comma-separated list of repositories to enable on the remote system. |
|
22 |
|
|
23 |
|
|
24 |
Dependencies |
|
25 |
------------ |
|
26 |
Depends on the following roles: |
|
27 |
- packages |
|
28 |
|
|
29 |
Example Playbook |
|
30 |
---------------- |
|
31 |
An example of how to use the role (for instance, with variables passed in as parameters): |
|
32 |
```yaml |
|
33 |
- hosts: group or hostname from inventory |
|
34 |
roles: |
|
35 |
- { role: bastion, exports_url: some_new_url } |
|
36 |
``` |
|
37 |
|
|
38 |
A simple way calling of the role is included in the *bastion.yml* file in the tests directory. |
|
39 |
|
|
40 |
|