suppresion utilisation role db-user

Mise à jour de 'r-vp1.yml'
Mise à jour de 'roles/firewall-vpn-r/tasks/main.yml'
2021-03-31 09:02:15 +02:00 · 2021-03-30 16:34:31 +02:00 · 2021-03-30 16:20:40 +02:00 · 2021-03-30 15:55:38 +02:00 · 2021-03-30 15:50:11 +02:00 · 2021-03-30 15:48:00 +02:00
10 changed files with 32 additions and 31 deletions
--- a/1
+++ b/1
@ -0,0 +1 @@
+/etc/nginx/sites-availables/proxy
--- a/r-vp1.yml
+++ b/r-vp1.yml
@ -12,9 +12,9 @@
   - base
   - goss
   - snmp-agent
-#   - vpn-stg-r
+   - firewall-vpn-r
+#  - vpn-stg-r
   - x509-r
-#   - firewall-vpn-r
   - ssh-cli
   - syslog-cli
   - post
--- a/r-vp2.yml
+++ b/r-vp2.yml
@ -15,9 +15,9 @@
   - dns-agence
   - ssh-root-access
   - snmp-agent
-#   - vpn-stg-l
+   - firewall-vpn-l
+#  - vpn-stg-l
   - x509-l
-#   - firewall-vpn-l
   - ssh-cli
   - syslog-cli
   - post
--- a/roles/dns-master/files/db.gsb.lan
+++ b/roles/dns-master/files/db.gsb.lan
@ -21,6 +21,8 @@ s-proxy         IN      A       172.16.0.2
 s-appli    	IN      A       172.16.0.3
 s-win    	IN      A       172.16.0.6
 s-mess   	IN      A       172.16.0.7
+s-nxec		IN	A	172.16.0.7
+s-docker	IN	A	172.16.0.7
 s-mon    	IN      A       172.16.0.8
 s-itil		IN	A	172.16.0.9
 r-int    	IN      A       172.16.0.254
--- a/roles/docker-nextcloud/files/docker-compose.yml
+++ b/roles/docker-nextcloud/files/docker-compose.yml
@ -16,7 +16,7 @@ services:
      - MYSQL_PASSWORD=root
      - MYSQL_DATABASE=nextcloud
      - MYSQL_USER=nextcloud
-      TZ: Europe/Paris
+      - TZ=Europe/Paris

  app:
    image: nextcloud
@ -32,4 +32,4 @@ services:
      - MYSQL_DATABASE=nextcloud
      - MYSQL_USER=nextcloud
      - MYSQL_HOST=db
-      TZ: Europe/Paris
+      - TZ=Europe/Paris
--- a/roles/docker-nextcloud/tasks/main.yml
+++ b/roles/docker-nextcloud/tasks/main.yml
@ -48,7 +48,9 @@
 - name: Creation de lien symbolique avec /etc/nginx/sites-available/proxy dans /etc/nginx/sites-enabled/proxy
  file:
    src: /etc/nginx/sites-available/proxy
-    dest: /etc/nginx/sites-enabled
+    dest: /etc/nginx/sites-enabled/proxy
+    owner: root
+    group: root
    state: link

 - name: Redemmarage de Nginx
--- a/roles/firewall-vpn-l/files/ferm.conf
+++ b/roles/firewall-vpn-l/files/ferm.conf
@ -7,9 +7,9 @@
@def $DEV_VPN	= enp0s8;
@def $DEV_EXT	= enp0s9;

-@def $NET_ADM=192.168.99.0/24;
-@def $NET_VPN=192.168.0.0/24;
-@def $NET_EXT=192.168.1.0/30;
+@def $NET_ADM=192.168.99.102/24;
+@def $NET_VPN=172.16.128.254/24;
+@def $NET_EXT=192.168.0.52/30;

 table filter {
    chain INPUT {
--- a/roles/firewall-vpn-r/files/ferm.conf
+++ b/roles/firewall-vpn-r/files/ferm.conf
@ -7,9 +7,9 @@
@def $DEV_VPN	= enp0s8;
@def $DEV_EXT	= enp0s9;

-@def $NET_ADM=192.168.99.0/24;
-@def $NET_VPN=192.168.0.0/24;
-@def $NET_EXT=192.168.1.0/30;
+@def $NET_ADM=192.168.99.112/24;
+@def $NET_VPN=192.168.0.51/24;
+@def $NET_EXT=192.168.1.2/30;

 table filter {
    chain INPUT {
--- a/roles/firewall-vpn-r/tasks/main.yml
+++ b/roles/firewall-vpn-r/tasks/main.yml
@ -1,15 +1,10 @@
 ---
-  - name: redemarrer interfaces
-    command: ifdown enp0s8
-  - name: redemarrer interfaces
-    command: ifup enp0s8
-  - name: redemarrer interfaces
-    command: ifdown enp0s9
-  - name: redemarrer interfaces
-    command: ifup enp0s9
-  - name: redemarrer interfaces
+- name : installer ferm
    apt: name=ferm state=present
+
  - name: fichier parefeu pour VPN
    copy: src=ferm.conf dest=/etc/ferm/ferm.conf
-    notify:
-      - Restart ferm
+  
+  - name: Restart ferm
+      name: ferm
+      state: restarted
--- a/s-lb-bd.yml
+++ b/s-lb-bd.yml
@ -11,13 +11,14 @@
   roles:
     - base
     - goss
+     - post
     #- s-lb-bd-ab
     - mariadb-ab
-     - role: db-user
-       cli_ip: "192.168.102.1"
-     - role: db-user
-       cli_ip: "192.168.102.2"
-     - role: db-user
-       cli_ip: "192.168.102.3"     
+#     - role: db-user
+#       cli_ip: "192.168.102.1"
+#     - role: db-user
+#       cli_ip: "192.168.102.2"
+#     - role: db-user
+#       cli_ip: "192.168.102.3"     
     - snmp-agent
-     - post
+#     - post
Author	SHA1	Message	Date
TL	dab3b43db1	suppresion utilisation role db-user	2021-03-31 09:02:15 +02:00
gadmin	4f417a892e	Mise à jour de 'r-vp1.yml'	2021-03-30 16:34:31 +02:00
gadmin	bd89e3a964	Mise à jour de 'roles/firewall-vpn-r/tasks/main.yml'	2021-03-30 16:20:40 +02:00
gadmin	61ae1027a2	Mise à jour de 'roles/firewall-vpn-r/tasks/main.yml'	2021-03-30 15:55:38 +02:00
gadmin	d60dcb613b	Mise à jour de 'roles/firewall-vpn-r/tasks/main.yml'	2021-03-30 15:50:11 +02:00
gadmin	d9e0959cc4	Mise à jour de 'r-vp1.yml'	2021-03-30 15:48:00 +02:00
gadmin	4fe6f9f8f7	Mise à jour de 'r-vp2.yml'	2021-03-30 15:47:18 +02:00
gadmin	4db4c8e719	Mise à jour de 'r-vp2.yml'	2021-03-30 14:16:33 +02:00
gadmin	a0a8ec62bd	Mise à jour de 'r-vp1.yml'	2021-03-30 14:16:09 +02:00
gadmin	699ddddaba	Mise à jour de 'r-vp2.yml'	2021-03-30 13:45:43 +02:00
gadmin	1943b172d3	Mise à jour de 'r-vp1.yml'	2021-03-30 13:45:15 +02:00
gadmin	84c2e68cc8	Mise à jour de 'roles/firewall-vpn-r/files/ferm.conf'	2021-03-29 11:26:44 +02:00
gadmin	74e723896c	Mise à jour de 'roles/firewall-vpn-l/files/ferm.conf'	2021-03-29 11:26:16 +02:00
am	b8c681c4bb	ajout de s-nxec et s-docker	2021-03-29 11:03:36 +02:00
bb	28f1560add	Merge branch 'master' of https://gitea.lyc-lecastel.fr/gadmin/gsb2021	2021-02-01 11:50:32 +01:00
bb	b04bbbe7d1	secret partagé install en priorité	2021-02-01 11:49:54 +01:00
am	8e602c15a6	modif main.yml et docker compose	2021-02-01 11:32:56 +01:00