- name: Disable stock dhcp_service service: name={{ dhcp_service }} enabled=no state=stopped when: dhcpd_install and first_run and is_debuntu - name: Disable dhcpd service service: name=dhcpd enabled=no when: not dhcpd_enabled and dhcpd_install # service is restarted with NM dispatcher.d script - name: Enable dhcpd service service: name=dhcpd enabled=yes when: dhcpd_enabled and dhcpd_install - name: Copy /etc/sysconfig/dhcpd file template: src={{ item.src }} dest={{ item.dest }} owner=root group=root mode={{ item.mode }} with_items: - { src: 'dhcp/dhcpd-env.j2' , dest: '/etc/sysconfig/dhcpd' , mode: '0644' } when: dhcpd_enabled and dhcpd_install - name: Copy named file template: src={{ item.src }} dest={{ item.dest }} owner=root group=root mode={{ item.mode }} with_items: - { src: 'named/school.local.zone.db' , dest: '/var/named-iiab/' , mode: '0644' } - { src: 'named/school.internal.zone.db' , dest: '/var/named-iiab/' , mode: '0644' } - name: Enable named service service: name={{ dns_service }} enabled=yes when: named_enabled and named_install - name: Disable named service service: name={{ dns_service }} enabled=no when: not named_enabled and named_install - name: Disable dnsmasq service: name=dnsmasq enabled=no when: not dnsmasq_enabled and dnsmasq_install - name: dnsmasq copy config file to /etc template: src=network/dnsmasq.conf dest=/etc/ when: dnsmasq_enabled and dnsmasq_install - name: Enable dnsmasq service: name=dnsmasq enabled=yes when: dnsmasq_enabled and dnsmasq_install - name: Enable dansguardian service: name=dansguardian enabled=yes when: dansguardian_enabled and dansguardian_install - name: Disable DansGuardian service: name=dansguardian enabled=no when: not dansguardian_enabled and dansguardian_install - name: Create xs_httpcache flag shell: echo 1 > /etc/sysconfig/xs_httpcache_on creates=/etc/sysconfig/xs_httpcache_on when: squid_enabled and squid_install - name: Enable Squid service service: name={{ proxy }} enabled=yes when: squid_enabled and squid_install - name: Copy init script and config file template: src={{ item.src }} dest={{ item.dest }} owner={{ item.owner }} group={{ item.group }} mode={{ item.mode }} with_items: - src: 'squid/squid-iiab.conf.j2' dest: '/etc/{{ proxy }}/squid-iiab.conf' owner: '{{ proxy_user }}' group: '{{ proxy_user }}' mode: '0644' when: squid_enabled and squid_install - name: Point to Squid config file from startup file lineinfile: regexp='^CONFIG' line='CONFIG=/etc/{{ proxy }}/squid-iiab.conf' dest=/etc/init.d/{{ proxy }} when: squid_enabled and squid_install and is_debuntu - name: Disable Squid service service: name={{ proxy }} enabled=no when: not squid_enabled and squid_install - name: Remove xs_httpcache flag file: path=/etc/sysconfig/xs_httpcache_on state=absent when: not squid_enabled - name: Enable Wondershaper service service: name=wondershaper enabled=yes when: wondershaper_enabled and wondershaper_install - name: Disable Wondershaper service service: name=wondershaper enabled=no when: not wondershaper_enabled and wondershaper_install # check-LAN should be iptables.yml remove later - name: Grab clean copy of iiab-gen-iptables template: src={{ item.0 }} dest={{ item.1 }} owner='root' group='root' mode='0755' with_items: - { 0: 'gateway/iiab-gen-iptables', 1: '/usr/bin/iiab-gen-iptables' } - { 0: 'gateway/check-LAN', 1: '/usr/bin/check-LAN' } - name: Add 'squid' to service list ini_file: dest='{{ service_filelist }}' section=squid option='{{ item.option }}' value='{{ item.value }}' with_items: - option: enabled value: "{{ squid_enabled }}" - name: Add 'dansguardian' to service list ini_file: dest='{{ service_filelist }}' section=dansguardian option='{{ item.option }}' value='{{ item.value }}' with_items: - option: enabled value: "{{ dansguardian_enabled }}" - name: Add 'wondershaper' to service list ini_file: dest='{{ service_filelist }}' section=wondershaper option='{{ item.option }}' value='{{ item.value }}' with_items: - option: enabled value: "{{ wondershaper_enabled }}"