index
:
infra-ansible
master
Common Ansible roles
Egor Tensin
about
summary
refs
log
tree
commit
diff
stats
homepage
log msg
author
committer
range
path:
root
/
roles
(
follow
)
Commit message (
Collapse
)
Author
Age
...
*
docker: configure logging driver
Egor Tensin
2023-08-14
|
*
docker: use community.docker.docker_prune
Egor Tensin
2023-08-14
|
*
letsencrypt: split tasks into different files
Egor Tensin
2023-08-14
|
*
update task names & add more logging
Egor Tensin
2023-08-14
|
*
letsencrypt: fix manual token prompts
Egor Tensin
2023-08-14
|
*
add a bunch of READMEs for roles
Egor Tensin
2023-08-14
|
*
workspace: show docker-compose up output
Egor Tensin
2023-08-14
|
*
workspace: ignore missing Makefile/docker-compose.yml
Egor Tensin
2023-08-14
|
*
workspace: run make when available
Egor Tensin
2023-08-13
|
*
workspace: refactoring
Egor Tensin
2023-08-12
|
*
apt: unattended upgrades are optional
Egor Tensin
2023-08-12
|
*
fix some ansible-lint warnings
Egor Tensin
2023-08-11
|
*
apt: configure unattended-upgrades
Egor Tensin
2023-08-11
|
*
journald: parametrize the log level
Egor Tensin
2023-08-11
|
*
firewall: don't put invalid rules in /etc/iptables/
Egor Tensin
2023-08-10
|
*
cloud_init_wait: factor out to file_wait
Egor Tensin
2023-08-10
|
*
cloud_init_wait: tolerate reboots
Egor Tensin
2023-08-10
|
|
|
|
|
|
This insanity comes from RedHat themselves: https://www.ansible.com/blog/tolerable-ansible
*
cloud_init_wait: wait for SSH connection first
Egor Tensin
2023-08-10
|
*
cloud_init_wait: parametrize
Egor Tensin
2023-08-09
|
*
add cloud_init_wait role
Egor Tensin
2023-08-09
|
*
letsencrypt: update certificates on subdomain changes
Egor Tensin
2023-08-09
|
*
wireguard: fix indentation
Egor Tensin
2023-08-09
|
*
systemd_requires_mount_for: fix a systemd key name
Egor Tensin
2023-08-09
|
*
firewall: fail on malformed rule files
Egor Tensin
2023-08-09
|
*
journald: set default level to warning
Egor Tensin
2023-08-09
|
|
|
|
My journals are still too messy.
*
firewall: make SSH port go first in rules
Egor Tensin
2023-08-08
|
*
add router role
Egor Tensin
2023-08-08
|
*
wireguard: optionally set iptables rules
Egor Tensin
2023-08-08
|
*
firewall: reboot on rule changes
Egor Tensin
2023-08-08
|
|
|
|
|
|
|
|
Just restaring netfilter-persistent could break other services depending on iptables, like Docker. Also, I'm not sure why I need a wait_for_connection after a reboot call, so get rid of those.
*
add firewall role
Egor Tensin
2023-08-08
|
*
wireguard: persistent_keepalive can be set to false
Egor Tensin
2023-08-07
|
*
wireguard: explicitly set SaveConfig=false
Egor Tensin
2023-08-07
|
*
wireguard: don't forget to enable the wg-quick service
Egor Tensin
2023-08-07
|
*
wireguard: refactoring, support peer endpoints
Egor Tensin
2023-08-07
|
*
factor out systemd service editing
Egor Tensin
2023-08-07
|
*
linux_status: factor out PPA set up to a separate role
Egor Tensin
2023-08-06
|
*
linux_status: support disabling power mgmt
Egor Tensin
2023-08-06
|
*
workspace: install make
Egor Tensin
2023-08-04
|
*
apt: add a parameter to install packages
Egor Tensin
2023-08-04
|
*
add wireguard role
Egor Tensin
2023-08-04
|
*
import a couple more roles
Egor Tensin
2023-08-04
|
*
import letsencrypt role
Egor Tensin
2023-08-04
|
*
import workspace role
Egor Tensin
2023-08-04
|
*
import some common roles
Egor Tensin
2023-08-04
[prev]