Commit c4a1eed3 authored by David Nowell's avatar David Nowell
Browse files

Initial Commit

parents
---
# Any / all of these can be overridden in group_vars or host_vars
fs_full_alert_pct: 96
swap_use_alert_pct: 20
slack_username: "fsSpaceCheck"
slack_channel: "app-alerts"
# slack_uri is encrypted by Ansible Vault (because the URI is effectively
# a set of authentication credentals to post messages).
slack_uri: http://example.slack.com/APIKEY
#slack_uri: !vault |
# $ANSIBLE_VAULT;1.1;AES256
# 39373439636238313435336466393862643464343935383432366438333665316362656130396430
# 6231633363316266616431646635363635643830396232300a386561343230306335313061346461
# 33323335306266356134393438353739623265636561666636303934313862373231613734303939
# 3466623966336131380a636334393662373134303764653766363131623638346339616530313266
# 66353765336665353866336138633464626362346162626266383134383432363239663062623336
# 63643130636662643864306266663238333037383661356536353063373964343932383536386463
# 61616238636135313338363030613836666532666233656664376563343833363539393366663037
# 35636430353365663032
<html>
<h2>
I am a "Cattle" Server<p>
Welcome to my important application<br>
Built with Ansible!</p></h2>
<IMG SRC="220px-Cow_female_black_white.jpg">
</html>
<?xml version="1.0" encoding="utf-8"?>
<zone>
<short>umich</short>
<description>This is everything but M-Guest. Use Security Group for more granular rules, this is just a fallback in case someone makes a mistake at that level</description>
<source address="10.0.0.0/8"/>
<source address="35.1.0.0/16"/>
<source address="35.2.0.0/16"/>
<source address="35.3.0.0/16"/>
<source address="67.194.0.0/16"/>
<source address="141.211.0.0/16"/>
<source address="141.212.0.0/16"/>
<source address="141.213.0.0/17"/>
<source address="141.213.128.0/17"/>
<source address="141.214.0.0/16"/>
<source address="141.215.0.0/16"/>
<source address="141.216.0.0/16"/>
<source address="192.12.80.0/24"/>
<source address="192.231.253.0/24"/>
<source address="198.108.200.0/22"/>
<source address="198.110.84.0/24"/>
<source address="198.111.224.0/22"/>
<source address="198.111.181.0/25"/>
<source address="207.75.144.0/20"/>
<source address="67.194.176.0/22"/>
<source address="67.194.192.0/20"/>
<source address="198.108.0.0/16"/>
<service name="nrpe"/>
<service name="ssh"/>
<service name="http"/>
</zone>
---
- name: restart ntpd
service: name=ntpd state=restarted
---
# tasks file for sample-app-role
- name: Install LVM
yum:
name: lvm2
state: present
- name: Create VG
lvg:
vg: uservg00
pvs: "{{ device_name | regex_replace('sd','xvd') }}"
- name: Create Logical Volume 1
lvol:
vg: uservg00
lv: lv-sample-app-1
size: 1g
- name: Create filesystem 1
filesystem:
fstype: xfs
dev: /dev/uservg00/lv-sample-app-1
- name: Create mount point for filesystem 1
file:
path: /usr/local/sample-app-1
state: directory
- name: Mount filesystem 1
mount:
fstype: xfs
path: /usr/local/sample-app-1
src: /dev/uservg00/lv-sample-app-1
state: mounted
- name: Create Logical Volume 2
lvol:
vg: uservg00
lv: lv-sample-app-2
size: 2g
- name: Create filesystem 2
filesystem:
fstype: xfs
dev: /dev/uservg00/lv-sample-app-2
- name: Create mount point for filesystem 2
file:
path: /usr/local/sample-app-2
state: directory
- name: Mount filesystem 2
mount:
fstype: xfs
path: /usr/local/sample-app-2
src: /dev/uservg00/lv-sample-app-2
state: mounted
- name: Install Apache
yum:
name: "{{ item }}"
state: present
with_items:
- httpd
- name: Start Apache
service:
name: httpd
state: started
enabled: yes
- name: Copy website files
copy:
src: "{{ item }}"
mode: '644'
dest: "/var/www/html/{{ item }}"
with_items:
- index.html
- 220px-Cow_female_black_white.jpg
- name: Update firewall rules
copy:
src: umich.xml
dest: /etc/firewalld/zones/umich.xml
mode: '644'
register: firewall
- name: Reload Firewalld if changed
service:
name: firewalld
state: reloaded
when: firewall.changed
************************************************************************
* Tivoli Storage Manager *
************************************************************************
SErvername Normal
COMMMethod TCPip
TCPPort {{ tsm_port }}
TCPServeraddress {{ tsm_server }}
NODENAME {{ ansible_hostname }}
Passwordaccess generate
Managedservices schedule
changingretries 1
compression no
schedlogn /var/log/dsmsched.log
errorlogn /var/log/dsmerror.log
schedlogr 4 D
inclexcl /usr/local/etc/tsm_incl_excl.system
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment