crans
/
ansible
mirror of http://gitlab.adm.crans.org/nounous/ansible.git
19
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,749 Commits
12 Branches
0 Tags
7.9 MiB
Commit Graph

279 Commits (9d161f18e6936761c567ac7062a661a83990fe2f)

Author SHA1 Message Date
Yohann D'ANELLO ddb2850adc
[bird] Add configuration for ViaRézo 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-07-26 22:18:52 +02:00
_shirenn fe4eab31da [autoconfig] Deploy config-v1.1.xml 2021-07-23 12:19:24 +02:00
_shirenn bf6d10d568 [bird] specify source address 2021-07-19 16:51:54 +02:00
_shirenn 91220c5238 [routeurs] lets fix everything 2021-07-11 00:11:25 +02:00
_shirenn 24243c9acb [keepalived] routeur-daniel should burn in hell 2021-07-10 20:41:22 +02:00
_shirenn a7e9d992d1 [routeur-sam] Reinstallation 2021-07-10 20:41:22 +02:00
_shirenn cdc7648f04 [bird] Changing role syntax to permit mutliple bgp clients 2021-07-10 20:41:22 +02:00
Yohann D'ANELLO 70fe903a11
[ntp] Add NTP server on Terenez because switches are configurated to query terenez instead of charybde 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-07-10 13:52:11 +02:00
Yohann D'ANELLO 70d335e1b8
[wireguard] Refactor role 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-26 01:04:37 +02:00
_shirenn fa8c430a53 [inspircd] PEPCRANS + prevent diffs 2021-06-25 14:52:06 +02:00
_shirenn de62e5777c [zephir] backup locally not remotly 2021-06-25 12:43:00 +02:00
_shirenn 62a00a877e [ethercalc] PEPCRANSED 2021-06-25 11:29:14 +02:00
_shirenn 0fedc8cf42 [cameron] deploys backup and home service scripts 2021-06-25 11:18:42 +02:00
_shirenn 23768ec2bc [ntp] allow multiple whitelists 2021-06-25 10:40:05 +02:00
Yohann D'ANELLO 0c031759dc
Drop postfix configuration on Boeing 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-25 00:39:33 +02:00
Yohann D'ANELLO 97ab17b852
[prefix_delegation] Fix configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-24 23:18:23 +02:00
Yohann D'ANELLO 0a5836e824
Terenez has no more APT proxy 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-24 22:37:19 +02:00
Yohann D'ANELLO f6b2ff4804
[ntp_server] Update adm restriction for Cachan 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-24 21:51:52 +02:00
Yohann D'ANELLO 20ba82fa4e
[nfs_mount] Fix configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-24 21:39:42 +02:00
Yohann D'ANELLO 7e23337032
[horde] Fix IPv6 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-24 17:09:50 +02:00
Yohann D'ANELLO 55c46352f9
[re2o] Select optional apps 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 15:26:05 +02:00
Yohann D'ANELLO 16cf470df5
[re2o] Fix Re2o configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 15:20:38 +02:00
Yohann D'ANELLO f6ebbbe5de
[ptf] Add more nginx hosts 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 14:46:50 +02:00
Yohann D'ANELLO 213f618848
[prometheus] Update configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 13:58:28 +02:00
Yohann D'ANELLO c7bf246b2b
[network_interfaces] Add zamok-tmtc, put MTU of san to 9000 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 13:58:28 +02:00
Yohann D'ANELLO 587dd7614a
[network_interfaces] I forgot fyre 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 13:58:28 +02:00
Yohann D'ANELLO 239a95c1de
Add cachan group to factorize configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 13:58:28 +02:00
Yohann D'ANELLO 1c23ef255d
[apt] Use custom Proxmox mirror 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 13:58:28 +02:00
Yohann D'ANELLO 3b43708a17 [reverseproxy] intranet, not intranet-cachan 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 11:56:38 +00:00
Yohann D'ANELLO 87af08abf1 [reverseproxy] ftps -> ptf, mirrors -> charybde 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 11:56:38 +00:00
Yohann D'ANELLO bf1b944fa5 [reverseproxy] Reorder entries 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 11:56:38 +00:00
Yohann D'ANELLO 0cdd43facb [nginx] Fix subnets for real_ip_from 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 11:56:38 +00:00
Yohann D'ANELLO 06498604ac [reverseproxy] ftps.crans.org points to charybde 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-22 11:56:38 +00:00
_shirenn 5c76d526d2 [borgmatic] Don't backup this 2021-06-21 12:29:24 +00:00
_shirenn f053558e07
[hosts] charybde reste à chanca 2021-06-21 10:53:57 +02:00
_shirenn d0ff9cc204
[apt] MàJ 2021-06-21 10:53:55 +02:00
_shirenn 37ea941a8d
[keepalived] https://www.youtube.com/watch?v=fNFzfwLM72c please dont die 2021-06-21 10:53:12 +02:00
_shirenn f4b4c51f30
welcome back routeur-daniel and routeur-jack, we missed you <3 2021-06-21 10:53:12 +02:00
_shirenn 2299dbd8f4
[service] make cron optional 2021-06-21 10:53:12 +02:00
_shirenn f37d195543
[eclat] fix interfaces 2021-06-21 10:53:11 +02:00
_shirenn 9238f91235
[rsync] deploy videolan module to eclat 2021-06-21 10:53:11 +02:00
_shirenn a881116676
[nginx] charybde and ptf installation 2021-06-21 10:53:11 +02:00
_shirenn f76aaa84f4
[vsftpd] deployed on ptf and eclat 2021-06-21 10:53:11 +02:00
_shirenn 6fa8f17d0c
[nfs-mount] generic systemd nfs mount service 2021-06-21 10:53:11 +02:00
_shirenn 6491256620
[ptf] nginx installation 2021-06-21 10:53:11 +02:00
_shirenn 53994596e8
[hosts] o/ ptf 2021-06-21 10:53:11 +02:00
_shirenn 833f4a3afb
[postgres] 2021-06-21 10:53:10 +02:00
_shirenn 3468f6a7ca
[mirror] 2021-06-21 10:53:10 +02:00
_shirenn 3fa8c60c6d
[mirror_backend] 2021-06-21 10:53:10 +02:00
Yohann D'ANELLO 4b70700526
[mtail] More configuration to select what should be monitored 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 10:53:10 +02:00
Yohann D'ANELLO 0f59004446
[monitoring] Monitor logs on gulp 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 10:53:10 +02:00
Yohann D'ANELLO 610bcfbe23
[re2o-ldap] Deploy re2o-ldap-replica on re2o-dev, use terenez as main server 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 10:53:09 +02:00
_shirenn b14fd01ce0
migration routage 2021-06-21 10:53:09 +02:00
_shirenn 9e5d931b06
[rsyslog-client] PEPCRANS + cachan 2021-06-21 10:53:09 +02:00
_shirenn 2095ae8f19
[rsyslog_server] pep-cransified + gulp 2021-06-21 10:53:09 +02:00
_shirenn 44f7e0285c
[prefix_delegation] adds a service for prefix_delegation on routeur-gulp 2021-06-21 10:53:08 +02:00
_shirenn 317bf148b6
[routeur-gulp] routage 2021-06-21 10:53:08 +02:00
_shirenn f7347e41d2
[monitoring] PEPCRANS + monitoring of cachan infra 2021-06-21 10:53:08 +02:00
_shirenn 3d528a1891
[borg] Migration of zephir and omnomnom 2021-06-21 10:53:08 +02:00
_shirenn 1837a8a90d
[crans-scripts] move the scripts to /usr/local/src/scripts 2021-06-21 10:53:08 +02:00
_shirenn 86fd61878c
airbus + routeur-gulp variables 2021-06-21 10:53:08 +02:00
_shirenn 0e396ce23b
[radius] update 2021-06-21 10:53:07 +02:00
_shirenn 068d2b6759
[c3po] o/ 2021-06-21 10:53:07 +02:00
_shirenn c9a07fa3e0
[routeur-gulp] radvd and dhcp 2021-06-21 10:53:07 +02:00
Yohann D'ANELLO ea85a83401
[unifi] Deploy root playbook on unifi 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 10:53:07 +02:00
Yohann D'ANELLO 13da885708
[rodauh] Add reverse-proxy in Cachan 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 10:53:07 +02:00
_shirenn 7c08cfa551
[hosts] re2o-ldap o/ 2021-06-21 10:53:07 +02:00
_shirenn 9190313690
[postgresql] dont restart postgres, only reload it 2021-06-21 10:53:07 +02:00
_shirenn 57b72e53cc
[re2o] updating variables 2021-06-21 10:53:07 +02:00
_shirenn 7c997ff445
[gulp] has re2o 2021-06-21 10:53:06 +02:00
_shirenn 5096de1a6a
[psql] Refactoring 2021-06-21 10:53:06 +02:00
Yohann D'ANELLO 97a0bc4451 [re2o] Add re2o configuration for re2o.cachan-adm 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 08:52:01 +00:00
Yohann D'ANELLO 1cdc7f5a70 [re2o-ldap] Change hosts for re2o on gulp 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 08:52:01 +00:00
_shirenn fb317587d6 [hosts] o/ pleins de gens de cachan 2021-06-21 08:52:01 +00:00
_shirenn 02054492ca [hosts] o/ vol447 please dont crash 2021-06-21 08:52:01 +00:00
Yohann D'ANELLO 3c21b2e385 [galene] VM setup 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 08:49:52 +00:00
Yohann D'ANELLO 712b421075 [wiki] Kiwi need good interfaces 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-06-21 08:47:22 +00:00
_shirenn eacbef7917 nounou → _nounou 2021-05-12 16:14:29 +02:00
Yohann D'ANELLO 84cb6585d2 [mailman] Mailman has a public IP 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO b085b774ad [mailman] variable postfix.mailman is now useless 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 81ded3ea46 [mailman3] Mailman is reverse-proxyfied 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 23a02adf11 [mailman3] Pepcransification 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 4b76b1a7bf [mailman] Use pepcransification of certbot 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 64a4bbcdd6 [mailman] declare interface 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-04-12 14:38:03 +00:00
Yohann D'ANELLO 91d777ffba
[certbot] Generate wildcard certificates by default 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 11:45:17 +01:00
_benjamin 6957939ffc [anope] Deploy Anope on irc 2021-03-02 11:44:08 +00:00
Yohann D'ANELLO 80b42fcb62 [network_interfaces] boeing has no interface on srv 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO d85650a586 [network_interfaces] Add missing interfaces for fluxx and re2o 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
_benjamin 6026f8d84e [inspircd] Deploy InspIRCd on irc 2021-02-28 09:10:21 +01:00
_shirenn 5661bb4bf6 [dhcp] Restart isc-dhcp-server only if it is already running 2021-02-23 23:28:20 +01:00
Yohann D'ANELLO 85afe1fd32
[gitlab] Fix reverse proxy configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:29:58 +01:00
Yohann D'ANELLO e6c4b70efd
(gitlab] Configure nginx reverse-proxy to manage multiple certificates 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:29:57 +01:00
_shirenn b152c48ed3
[gitlab] smtp server and https push 2021-02-22 23:29:56 +01:00
ynerant 63d4164ba0
Cransible Gitlab configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:29:55 +01:00
Yohann D'ANELLO 6d35dcd7e8 [nginx/mailman] Fix configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 661682c550 [nginx/moinmoin] Fix moinmoin configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 978c265c03 [nginx/statping] Extract nginx configuration from statping and gitea 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 6b8fb0916f [nginx/moinmoin] Extract nginx configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 3b79c0177c [nginx] Don't deploy SSL configuration if we don't need one 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 8d8c212f49 [nginx/roundcube] Factorize configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 4c115a8b34 [thelounge] Don't load ldap configuration if it is disabled 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 72238d79ed [nginx] Add feature to manage multiple certificates, for example for crans.org and for adm.crans.org 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 7c1abf3aee [thelounge/nginx] Return is not redirect 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 9d5a080fc5 [thelounge] Support zamok configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 3f4a66eb7c [thelounge] Copy ldap configuration for zamok 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO f039121e21 [thelounge] Download the Debian package and install it, and deploy 
configuration

Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO e3763a7121 [irc] Add redirections 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO 70a78d06d1 [irc] Configure nginx for the lounge 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO c3d58d9ca9 [nginx] Fix default configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO c0fbe6d000 Cransible charybde nginx configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 22:26:31 +00:00
Yohann D'ANELLO d83613c514
[belenios] Use proper network interface names 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 12:31:30 +01:00
ynerant 359b6a4553
[belenios] Deploy belenios 
Signed-off-by: ynerant <ynerant@crans.org>
 2021-02-22 12:31:30 +01:00
_shirenn 6e6dd56e4d [borg] lets filter-out shit and backup cameron 2021-02-22 12:13:23 +01:00
_shirenn 59bc91dc9d [vault] Changing cranspasswords to pass crans 2021-02-22 12:01:03 +01:00
Yohann D'ANELLO 289f0c6865 Remove dead servers 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 11:51:44 +01:00
Yohann D'ANELLO cd2be1fb73 [network_interfaces] Register missing network interfaces 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 11:51:44 +01:00
_shirenn a82d770043 [slapd] Filter ipv4s responsibly 2021-02-22 09:45:13 +01:00
_shirenn 02df5674b1 [slapd] soyouz, query and regex 2021-02-22 01:30:02 +01:00
ynerant 009e7b42cb
[certbot] Generate multiple certificates (useful for adm) 
Signed-off-by: ynerant <ynerant@crans.org>
 2021-02-16 15:35:07 +01:00
_shirenn f5cf25c9b7 [dhcp] dont clone git from /tmp 2021-02-11 09:57:10 +01:00
_shirenn 7cd62269a3 pepcrans :) 2021-02-08 15:02:14 +01:00
pa 28fa6e0a94 [keepalived] Rafraichissement de la conf 2021-01-17 20:13:30 +01:00
_pollion 854f483af7 Enable configuring network interfaces 2021-01-10 21:34:47 +01:00
_pollion 32e0c220f0 configure re2o-ldap and re2o-dev 2021-01-10 14:15:41 +01:00
Alexandre Iooss acfedec590
Add bornes 2021-01-05 16:08:24 +01:00
_benjamin 79215d2201 [re2o] fix re2o role 2021-01-02 15:55:19 +01:00
_pollion 4f4e0e4b22 backup MySQL db on Zamok 2021-01-01 23:15:30 +01:00
Alexandre Iooss 628485a24c
Configure zephir network 2020-12-31 13:00:06 +01:00
_pollion ca0cb52cc1 Merge branch 'owncloud' into 'newinfra' 
Owncloud is on !

See merge request nounous/ansible!139
 2020-12-29 02:21:06 +01:00
_pollion 9dc5f3fefb Owncloud is on ! 2020-12-29 02:05:18 +01:00
_michael 3ae7ca8011 cert_path is back madafaka 2020-12-28 19:21:56 +01:00
Alexandre Iooss 31e52892fc
Add owl 2020-12-28 18:31:50 +01:00
_pollion 559935d983 Merge branch 'owl' into 'newinfra' 
Owl

See merge request nounous/ansible!127
 2020-12-28 17:22:46 +01:00
Alexandre Iooss ee0295c18e
Fruitensmix happend 2020-12-28 11:30:44 +01:00
Michaël Paulon 4251074bc0 dovecot is now in ansible 2020-12-27 13:04:57 -05:00
Alexandre Iooss cb7952bd2d Add srv_nat on codimd and reverse proxy 2020-12-23 12:18:22 +01:00
Alexandre Iooss b202dcffd1 Add support for bullseye and add codichotomie 2020-12-18 17:26:26 +01:00
_pollion d2a6501b9e Merge branch 'newinfra' into 'borgbackup' 
# Conflicts:
#   group_vars/crans_server/vars.yml
#   plays/backup.yml
 2020-12-06 02:25:53 +01:00
_pollion 8e678435f5 [Borg] Conf Zephir 2020-12-06 01:45:21 +01:00
Alexandre Iooss 8a2ee0d6a8
Configure bigbluebutton vm network 2020-12-01 11:21:49 +01:00
_pollion bc80702bea Horde, welcome to new infra 2020-11-29 00:25:13 +01:00
Alexandre Iooss 13f9b9b15e
Moinmoin backup config 2020-11-28 23:10:56 +01:00
Alexandre Iooss 1920740649
Configure network if for monitoring 2020-11-28 17:11:09 +01:00
_pollion d45fff9176 [Certbot] Praise new infra 2020-10-12 18:34:46 +02:00
_pollion c888c56093 ethercalc on new infra 2020-09-22 22:48:50 +02:00
_benjamin aad9c52720 [interfaces] Deploy interfaces on kiwi 2020-09-22 15:35:40 +02:00
_benjamin 4089fa4ebd [interfaces] Configure fluxx interfaces 2020-08-28 18:53:54 +02:00
_benjamin cf8ae4f5b7 Add boeing interfaces 2020-08-24 09:27:08 +02:00
_benjamin 22dee4e764 Merge branch 'newinfra' into 'interfaces' 
# Conflicts:
#   lookup_plugins/ldap.py
 2020-08-23 19:57:41 +02:00
_benjamin 83d52d6c85 [firewall] Deploy firewall on gulp 2020-08-19 16:05:50 +02:00