37 lines
1.0 KiB
YAML
37 lines
1.0 KiB
YAML
- name: Install policyd-rate-limit
|
|
apt:
|
|
update_cache: true
|
|
name:
|
|
- policyd-rate-limit
|
|
register: apt_result
|
|
retries: 3
|
|
until: apt_result is succeeded
|
|
when: postfix.primary
|
|
|
|
|
|
- name: Find the local network
|
|
set_fact:
|
|
limited_networksv6: ["{{ mynetworks.ipv6}}"]
|
|
limited_networksv4: ["{{ mynetworks.ipv4}}"]
|
|
cacheable: True
|
|
|
|
- name: Deploy policyd-rate-limit
|
|
vars:
|
|
exempt_v4: "{{ policyd.exemptions | json_query('servers[].interface[?vlan_id==`2`].ipv4[]') }}"
|
|
exempt_v6: "{{ policyd.exemptions | json_query('servers[].interface[?vlan_id==`2`].ipv6[][].ipv6') }}"
|
|
template:
|
|
src: "{{ item.src }}"
|
|
dest: "{{ item.dest }}"
|
|
chmod: 0640
|
|
loop:
|
|
- { src: policyd/policyd-rate-limit.yaml.j2, dest: /etc/policyd-rate-limit.yaml }
|
|
- { src: policyd/policyd.py.j2, dest: /usr/lib/python3/dist-packages/policyd_rate_limit }
|
|
when: postfix.primary
|
|
|
|
- name: Indicate role in motd
|
|
template:
|
|
src: update-motd.d/05-policyd.j2
|
|
dest: /etc/update-motd.d/05-policyd
|
|
mode: 0755
|
|
when: postfix.primary
|