Compare commits
13 Commits
v0.0.7u-ak
...
v0.1.0a-jc
| Author | SHA1 | Date | |
|---|---|---|---|
| be4f3b9030 | |||
| c590edb875 | |||
| 3cd52a230e | |||
| 8dd65d65eb | |||
| aac0f13134 | |||
| ea60c89bf1 | |||
| 272867304a | |||
| b53cd8c848 | |||
| 8ed9ebe6f8 | |||
| c1fe781ca2 | |||
| c2c1e8acb7 | |||
| 5176ad216c | |||
| e45118eef1 |
13
README.md
13
README.md
@ -1,5 +1,6 @@
|
|||||||
# gsb2024
|
# gsb2024
|
||||||
|
|
||||||
|
2024-04-12 8h55 ps
|
||||||
2024-01-19 11h45 ps
|
2024-01-19 11h45 ps
|
||||||
|
|
||||||
Environnement et playbooks **ansible** pour le projet **GSB 2024**
|
Environnement et playbooks **ansible** pour le projet **GSB 2024**
|
||||||
@ -11,8 +12,8 @@ Prérequis :
|
|||||||
* VirtualBox
|
* VirtualBox
|
||||||
* git
|
* git
|
||||||
* fichier machines virtuelles **ova** :
|
* fichier machines virtuelles **ova** :
|
||||||
* **debian-bookworm-gsb-2023c.ova**
|
* **debian-bookworm-gsb-2024a.ova**
|
||||||
* **debian-bullseye-gsb-2024a.ova**
|
* **debian-bullseye-gsb-2024b.ova**
|
||||||
|
|
||||||
|
|
||||||
## Les machines
|
## Les machines
|
||||||
@ -49,12 +50,12 @@ Il existe un playbook ansible pour chaque machine à installer, nommé comme la
|
|||||||
## Installation
|
## Installation
|
||||||
|
|
||||||
On utilisera les images de machines virtuelle suivantes :
|
On utilisera les images de machines virtuelle suivantes :
|
||||||
* **debian-bookworm-gsb-2023c.ova** (2023-12-18)
|
* **debian-bookworm-gsb-2024a.ova** (2024-04-11)
|
||||||
* Debian Bookworm 12.4 - 2 cartes - 1 Go - Stockage 20 Go
|
* Debian Bookworm 12.5 - 2 cartes - 1 Go - Stockage 20 Go
|
||||||
|
|
||||||
et pour **s-fog** :
|
et pour **s-fog** :
|
||||||
* **debian-bullseye-2024a.ova** (2024-01-06)
|
* **debian-bullseye-2024b.ova** (2024-04-11)
|
||||||
* Debian Bullseye 11.8 - 2 cartes - 1 Go - stockage 20 Go
|
* Debian Bullseye 11.9 - 2 cartes - 1 Go - stockage 20 Go
|
||||||
|
|
||||||
Les images **.ova** doivent etre stockées dans le répertoire habituel de téléchargement de l'utilisateur courant.
|
Les images **.ova** doivent etre stockées dans le répertoire habituel de téléchargement de l'utilisateur courant.
|
||||||
|
|
||||||
|
|||||||
@ -5,7 +5,11 @@
|
|||||||
name: awx
|
name: awx
|
||||||
groups: sudo
|
groups: sudo
|
||||||
append: yes
|
append: yes
|
||||||
shell: /bin/bash
|
|
||||||
|
- name: Cration d'un mdp pour user awx
|
||||||
|
user:
|
||||||
|
name: awx
|
||||||
|
password: '$5$1POIEvs/Q.DHI4/6$RT6nl42XkekxTPKA/dktbnCMxL8Rfk8GAK7NxqL9D70'
|
||||||
|
|
||||||
- name: Get awx key_pub
|
- name: Get awx key_pub
|
||||||
get_url:
|
get_url:
|
||||||
|
|||||||
@ -7,6 +7,12 @@
|
|||||||
shell: /bin/bash
|
shell: /bin/bash
|
||||||
generate_ssh_key: yes
|
generate_ssh_key: yes
|
||||||
|
|
||||||
|
#- name: Creation mdp user awx
|
||||||
|
# ansible.builtin.user:
|
||||||
|
#name:
|
||||||
|
#user: awx
|
||||||
|
# password: '$5$1POIEvs/Q.DHI4/6$RT6nl42XkekxTPKA/dktbnCMxL8Rfk8GAK7NxqL9D70'
|
||||||
|
|
||||||
- name: Copie cle publique dans gsbstore
|
- name: Copie cle publique dans gsbstore
|
||||||
copy:
|
copy:
|
||||||
src: /home/awx/.ssh/id_rsa.pub
|
src: /home/awx/.ssh/id_rsa.pub
|
||||||
|
|||||||
@ -10,6 +10,21 @@
|
|||||||
csr_path: /etc/haproxy/crt/csr/haproxy.csr
|
csr_path: /etc/haproxy/crt/csr/haproxy.csr
|
||||||
provider: selfsigned
|
provider: selfsigned
|
||||||
|
|
||||||
|
- name: parametre global
|
||||||
|
blockinfile:
|
||||||
|
path: /etc/haproxy/haproxy.cfg
|
||||||
|
block: |
|
||||||
|
global
|
||||||
|
log /dev/log local0
|
||||||
|
log /dev/log local1 notice
|
||||||
|
chroot /var/lib/haproxy
|
||||||
|
stats socket /run/haproxy/admin.sock mode 660 level admin
|
||||||
|
stats timeout 30s
|
||||||
|
user haproxy
|
||||||
|
group haproxy
|
||||||
|
daemon
|
||||||
|
ssl-server-verify none
|
||||||
|
|
||||||
- name: parametre backend et fontend
|
- name: parametre backend et fontend
|
||||||
blockinfile:
|
blockinfile:
|
||||||
path: /etc/haproxy/haproxy.cfg
|
path: /etc/haproxy/haproxy.cfg
|
||||||
|
|||||||
@ -7,12 +7,12 @@
|
|||||||
roles:
|
roles:
|
||||||
- base
|
- base
|
||||||
- s-ssh
|
- s-ssh
|
||||||
|
#- zabbix-cli
|
||||||
- dnsmasq
|
- dnsmasq
|
||||||
- squid
|
- squid
|
||||||
- ssh-backup-key-gen
|
- ssh-backup-key-gen
|
||||||
- awx-user
|
# awx-user
|
||||||
# - local-store
|
# - local-store
|
||||||
# - zabbix-cli
|
|
||||||
## - syslog-cli
|
## - syslog-cli
|
||||||
- post
|
- post
|
||||||
# - goss
|
# - goss
|
||||||
|
|||||||
@ -6,7 +6,7 @@
|
|||||||
- base
|
- base
|
||||||
- goss
|
- goss
|
||||||
- ssh-cli
|
- ssh-cli
|
||||||
- awx-user
|
- awx-user-cli
|
||||||
#- awx
|
#- awx
|
||||||
# - zabbix-cli
|
# - zabbix-cli
|
||||||
- journald-snd
|
- journald-snd
|
||||||
|
|||||||
@ -6,12 +6,13 @@
|
|||||||
|
|
||||||
roles:
|
roles:
|
||||||
- base
|
- base
|
||||||
- zabbix-cli
|
#- zabbix-cli
|
||||||
- goss
|
- goss
|
||||||
- dns-master
|
- dns-master
|
||||||
- webautoconf
|
- webautoconf
|
||||||
# - elk-filebeat-cli
|
# - elk-filebeat-cli
|
||||||
# - journald-snd
|
- journald-snd
|
||||||
- ssh-cli
|
- ssh-cli
|
||||||
|
#- awx-user-cli
|
||||||
- post
|
- post
|
||||||
|
|
||||||
|
|||||||
1
s-lb.yml
1
s-lb.yml
@ -6,6 +6,7 @@
|
|||||||
- base
|
- base
|
||||||
- goss
|
- goss
|
||||||
- lb-front
|
- lb-front
|
||||||
|
#- lb-front-ssl
|
||||||
#- zabbix-cli
|
#- zabbix-cli
|
||||||
- ssh-cli
|
- ssh-cli
|
||||||
- post
|
- post
|
||||||
|
|||||||
@ -2,8 +2,8 @@
|
|||||||
|
|
||||||
mkvmrelease="v1.3.3"
|
mkvmrelease="v1.3.3"
|
||||||
|
|
||||||
ovarelease="2023c"
|
ovarelease="2024b"
|
||||||
ovafogrelease="2024a"
|
ovafogrelease="2024b"
|
||||||
#ovafile="$HOME/Téléchargements/debian-bullseye-gsb-${ovarelease}.ova"
|
#ovafile="$HOME/Téléchargements/debian-bullseye-gsb-${ovarelease}.ova"
|
||||||
ovafile="$HOME/Téléchargements/debian-bookworm-gsb-${ovarelease}.ova"
|
ovafile="$HOME/Téléchargements/debian-bookworm-gsb-${ovarelease}.ova"
|
||||||
ovafilefog="$HOME/Téléchargements/debian-bullseye-gsb-${ovafogrelease}.ova"
|
ovafilefog="$HOME/Téléchargements/debian-bullseye-gsb-${ovafogrelease}.ova"
|
||||||
|
|||||||
@ -4,8 +4,8 @@
|
|||||||
#mkvm pour toutes les vms
|
#mkvm pour toutes les vms
|
||||||
|
|
||||||
$mkvmrelease="v1.3.1"
|
$mkvmrelease="v1.3.1"
|
||||||
$ovarelease="2023c"
|
$ovarelease="2024b"
|
||||||
$ovafogrelease="2024a"
|
$ovafogrelease="2024b"
|
||||||
$ovafile="$HOME\Downloads\debian-bookworm-gsb-${ovarelease}.ova"
|
$ovafile="$HOME\Downloads\debian-bookworm-gsb-${ovarelease}.ova"
|
||||||
$ovafilefog="$HOME\Downloads\debian-bullseye-gsb-${ovafogrelease}.ova"
|
$ovafilefog="$HOME\Downloads\debian-bullseye-gsb-${ovafogrelease}.ova"
|
||||||
$vboxmanage="C:\Program Files\Oracle\VirtualBox\VBoxManage.exe"
|
$vboxmanage="C:\Program Files\Oracle\VirtualBox\VBoxManage.exe"
|
||||||
@ -18,18 +18,20 @@ $vmMem = @{
|
|||||||
"s-infra" = "768"
|
"s-infra" = "768"
|
||||||
"s-backup" = "768"
|
"s-backup" = "768"
|
||||||
"s-elk" = "3072"
|
"s-elk" = "3072"
|
||||||
|
"s-awx" = "4096"
|
||||||
|
"s-peertube" = "4096"
|
||||||
}
|
}
|
||||||
|
|
||||||
$vmCpus = @{
|
$vmCpus = @{
|
||||||
"s-awx" = "4096"
|
"s-awx" = "2"
|
||||||
"s-peertube" = "4096"
|
"s-peertube" = "2"
|
||||||
}
|
}
|
||||||
#FONCTIONS
|
#FONCTIONS
|
||||||
|
|
||||||
function create_vm{ param([string]$nomvm)
|
function create_vm{ param([string]$nomvm)
|
||||||
|
|
||||||
if ($vmMem.ContainsKey($nomvm)) {
|
if (($vmMem.ContainsKey($nomvm)) -and ($vmCpus.ContainsKey($nomvm))) {
|
||||||
& "$vboxmanage" import "$ovafile" --vsys 0 --vmname "$nomvm" --memory $vmMem[$nomvm] --cpus $vmCpus[$nomvm}
|
& "$vboxmanage" import "$ovafile" --vsys 0 --vmname "$nomvm" --memory $vmMem[$nomvm] --cpus $vmCpus[$nomvm]
|
||||||
Write-Host "Machine $nomvm importée"
|
Write-Host "Machine $nomvm importée"
|
||||||
} else {
|
} else {
|
||||||
#Importation depuis l'ova
|
#Importation depuis l'ova
|
||||||
|
|||||||
Reference in New Issue
Block a user