Premier commit
This commit is contained in:
phil
13
roles/docker-iredmail-ab/files/fstab
Normal file
13
roles/docker-iredmail-ab/files/fstab
Normal file
@@ -0,0 +1,13 @@
|
||||
# /etc/fstab: static file system information.
|
||||
#
|
||||
# Use 'blkid' to print the universally unique identifier for a
|
||||
# device; this may be used with UUID= as a more robust way to name devices
|
||||
# that works even if disks are added and removed. See fstab(5).
|
||||
#
|
||||
# <file system> <mount point> <type> <options> <dump> <pass>
|
||||
/dev/mapper/stretch64--vg-root / ext4 errors=remount-ro 0 1
|
||||
# /boot was on /dev/sda1 during installation
|
||||
UUID=8f340ef0-94a1-4730-8da3-81ce5e38d666 /boot ext2 defaults 0 2
|
||||
/dev/mapper/stretch64--vg-swap_1 none swap sw 0 0
|
||||
/dev/sr0 /media/cdrom0 udf,iso9660 user,noauto 0 0
|
||||
/dev/sdb1 /var/lib/containers ext4 defaults 0 0
|
||||
2
roles/docker-iredmail-ab/files/https_proxy.conf
Normal file
2
roles/docker-iredmail-ab/files/https_proxy.conf
Normal file
@@ -0,0 +1,2 @@
|
||||
[Service]
|
||||
Environment="HTTPS_PROXY=http://192.168.99.99:8080/"
|
||||
14
roles/docker-iredmail-ab/files/iredmail.sh
Normal file
14
roles/docker-iredmail-ab/files/iredmail.sh
Normal file
@@ -0,0 +1,14 @@
|
||||
#!/bin/bash
|
||||
|
||||
docker run --privileged -p 80:80 -p 443:443 \
|
||||
-h s-mess.sio.lan \
|
||||
-e "DOMAIN=sio.lan" \
|
||||
-e "MYSQL_ROOT_PASSWORD=iredmail" \
|
||||
-e "SOGO_WORKERS=1" \
|
||||
-e "TIMEZONE=Europe/Paris" \
|
||||
-e "POSTMASTER_PASSWORD=Azertyuiop1+" \
|
||||
-e "IREDAPD_PLUGINS=['reject_null_sender', 'reject_sender_login_mismatch', 'greylisting', 'throttle', 'amavisd_wblist', 'sql_alias_access_policy']" \
|
||||
-v /root/mysql:/var/lib/mysql \
|
||||
-v /root/vmail:/var/vmail \
|
||||
-v /root/clamav:/var/lib/clamav \
|
||||
--name=iredmail lejmr/iredmail:mysql-latest
|
||||
3
roles/docker-iredmail-ab/handlers/main.yml
Normal file
3
roles/docker-iredmail-ab/handlers/main.yml
Normal file
@@ -0,0 +1,3 @@
|
||||
---
|
||||
- name: restart docker
|
||||
service: name=docker state=restarted
|
||||
83
roles/docker-iredmail-ab/tasks/main.yml
Normal file
83
roles/docker-iredmail-ab/tasks/main.yml
Normal file
@@ -0,0 +1,83 @@
|
||||
---
|
||||
- name: Installation de apt-transport-https
|
||||
apt: name=apt-transport-https state=present
|
||||
|
||||
- name: Installation de ca-certificates
|
||||
apt: name=ca-certificates state=present
|
||||
|
||||
- name: Installation de gnupg2
|
||||
apt: name=gnupg2 state=present
|
||||
|
||||
- name: Installation de software-properties-common
|
||||
apt: name=software-properties-common state=present
|
||||
|
||||
- name: Installation de sudo
|
||||
apt: name=sudo state=present
|
||||
|
||||
- name: Installation de docker
|
||||
shell: export https_proxy=http://192.168.99.99:8080 && curl -fsSL https://download.docker.com/linux/debian/gpg | sudo apt-key add -
|
||||
|
||||
- name: Récupération des paquets docker-ce et docker-compose
|
||||
shell: sudo add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/debian $(lsb_release -cs) stable"
|
||||
|
||||
- name: Création du répertoire docker.service.d
|
||||
file:
|
||||
path: /etc/systemd/system/docker.service.d
|
||||
state: directory
|
||||
owner: root
|
||||
group: root
|
||||
mode: 0775
|
||||
recurse: yes
|
||||
|
||||
- name: Copie https_proxy.conf
|
||||
copy: src=https_proxy.conf dest=/etc/systemd/system/docker.service.d/
|
||||
notify:
|
||||
- restart docker
|
||||
|
||||
- name: Vérification des nouveaux paquets
|
||||
shell: sudo apt-get update
|
||||
|
||||
- name: Installation de docker-ce
|
||||
shell: sudo apt-get install -y docker-ce
|
||||
|
||||
- name: Installation de docker-compose
|
||||
shell: export https_proxy=http://192.168.99.99:8080 && curl -L "https://github.com/docker/compose/releases/download/1.23.1/docker-compose-$(uname -s)-$(uname -m)" -o /usr/local/bin/docker-compose
|
||||
|
||||
- name: Modification des droits de docker-compose
|
||||
shell: chmod +x /usr/local/bin/docker-compose
|
||||
|
||||
- name: Copie du fichier fstab
|
||||
copy: src=fstab dest=/etc/
|
||||
|
||||
- name: Copie du script bash Iredmail
|
||||
copy: src=iredmail.sh dest=/root/tools/ansible
|
||||
|
||||
- name: Changement du système de fichier de /dev/sdb1 en ext4
|
||||
shell: mkfs.ext4 /dev/sdb1
|
||||
|
||||
- name: Montage /dev/sdb1 sur /var/lib/docker
|
||||
shell: mount /dev/sdb1 /var/lib/docker
|
||||
|
||||
- name: Droit pour le script Iredmail
|
||||
shell: chmod a+x /root/tools/ansible/iredmail.sh
|
||||
|
||||
- name: Création du répertoire mysql
|
||||
shell: mkdir /root//mysql
|
||||
|
||||
- name: Création du répertoire vmail
|
||||
shell: mkdir /root/vmail
|
||||
|
||||
- name: Création du répertoire clamav
|
||||
shell: mkdir /root/clamav
|
||||
|
||||
- name: Exécution du script Iredmail
|
||||
debug: msg="Exécuter le script iredmail.sh qui se trouve dans tools/ansible"
|
||||
|
||||
- name: Montage /dev/sdb1
|
||||
debug: msg="Pour vérifier que /dev/sdb1 est bien monté sur le répertoire /var/lib/docker, utiliser la commande df -h"
|
||||
|
||||
- name: Test docker
|
||||
debug: msg="Effectuer la commande docker run hello-world pour vérifier l'installation de docker-ce et effectuer la commande docker-compose --version pour vérifier que la version est bien la 1.23.1"
|
||||
|
||||
- name: Démarrer le container
|
||||
debug: msg="Pour démarrer le container openvas, utiliser la commande docker start nom_du_container_ (/var/lib/docker/containers), accéder à la page via l'adresse https://172.16.0.19:443"
|
||||
Reference in New Issue
Block a user