This Playbook is a just compilation of different roles what needed to install on "each server".
Contains:
- tersmitten.locales - to prevent i18n-based errors. Like as, when PostgreSQL discard the import SQL-file if encoding does not match.
- galexrt.ansible-ntpdate - to prevent errors if servers are in the cluster (one of variant of usage). However, this role and so useful.
- dev-sec.ssh-hardening - provides numerous security-related ssh configurations, providing all-round base protection
- geerlingguy.docker - Docker. Without him you can no longer live :)
Warning: Ansible role dev-sec.ssh-hardening disables root-login on the target server!
Please make sure you have another user with su or sudo permissions
that can login into the server.
- Clone repo and jump to directory
ansible-galaxy install -r requirements.ymlcp inventory/production-example inventory/production- make sure what
hostsfile in theinventory/productiondirectory contains existing hosts. - make sure for server connection via ssh key
- make sure what you read the Warning message above
- edit
playbooks/configure.ymlas your needs ansible-playbook -i inventory/production playbooks/configure.yml
ansible-playbook -i inventory/production playbooks/configure.yml- will be installed all of things in requirements file.ansible-playbook -i inventory/production playbooks/configure.yml --tags=base_configure- without Dockeransible-playbook -i inventory/production playbooks/configure.yml --tags=docker- only Docker
firewall
Any PR are welcome!
vagrant up
MIT.