mirror of
https://github.com/iiab/iiab.git
synced 2025-02-13 19:52:06 +00:00
181 lines
4.6 KiB
YAML
181 lines
4.6 KiB
YAML
- name: Disable dhcpd service
|
|
service:
|
|
name: dhcpd
|
|
enabled: no
|
|
when: not dhcpd_enabled and dhcpd_install
|
|
|
|
# service is restarted with NM dispatcher.d script
|
|
- name: Enable dhcpd service
|
|
service:
|
|
name: dhcpd
|
|
enabled: yes
|
|
when: dhcpd_enabled and dhcpd_install
|
|
|
|
- name: Copy /etc/sysconfig/dhcpd file
|
|
template:
|
|
src: "{{ item.src }}"
|
|
dest: "{{ item.dest }}"
|
|
owner: root
|
|
group: root
|
|
mode: "{{ item.mode }}"
|
|
with_items:
|
|
- { src: 'dhcp/dhcpd-env.j2', dest: '/etc/sysconfig/dhcpd', mode: '0644' }
|
|
- { src: 'dhcp/dhcpd-iiab.conf.j2', dest: '/etc/dhcpd-iiab.conf', mode: '0644' }
|
|
when: dhcpd_enabled and dhcpd_install
|
|
|
|
- name: Copy named file
|
|
template:
|
|
src: "{{ item.src }}"
|
|
dest: "{{ item.dest }}"
|
|
owner: root
|
|
group: root
|
|
mode: "{{ item.mode }}"
|
|
with_items:
|
|
- { src: 'named/named-iiab.conf.j2', dest: '/etc/named-iiab.conf', mode: '0644' }
|
|
- { src: 'named/school.local.zone.db', dest: '/var/named-iiab/', mode: '0644' }
|
|
- { src: 'named/school.internal.zone.db', dest: '/var/named-iiab/', mode: '0644' }
|
|
|
|
- name: Enable named service
|
|
service:
|
|
name: "{{ dns_service }}"
|
|
enabled: yes
|
|
when: named_enabled and named_install
|
|
|
|
- name: Disable named service
|
|
service:
|
|
name: "{{ dns_service }}"
|
|
enabled: no
|
|
when: not named_enabled and named_install
|
|
|
|
- name: Disable dnsmasq
|
|
service:
|
|
name: dnsmasq
|
|
enabled: no
|
|
when: not dnsmasq_enabled and dnsmasq_install
|
|
|
|
- name: Copy dnsmasq.conf to /etc
|
|
template:
|
|
src: network/dnsmasq.conf.j2
|
|
dest: /etc/dnsmasq.conf
|
|
when: dnsmasq_enabled and dnsmasq_install
|
|
|
|
- name: Enable dnsmasq
|
|
service:
|
|
name: dnsmasq
|
|
enabled: yes
|
|
when: dnsmasq_enabled and dnsmasq_install
|
|
|
|
- name: Enable DansGuardian
|
|
service:
|
|
name: dansguardian
|
|
enabled: yes
|
|
when: dansguardian_enabled and dansguardian_install
|
|
|
|
- name: Disable DansGuardian
|
|
service:
|
|
name: dansguardian
|
|
enabled: no
|
|
when: not dansguardian_enabled and dansguardian_install
|
|
|
|
- name: Create xs_httpcache flag
|
|
lineinfile:
|
|
dest: "{{ iiab_env_file }}"
|
|
regexp: '^HTTPCACHE_ON=*'
|
|
line: 'HTTPCACHE_ON=True'
|
|
state: present
|
|
when: squid_enabled and squid_install
|
|
|
|
- name: Enable Squid service
|
|
service:
|
|
name: "{{ proxy }}"
|
|
enabled: yes
|
|
when: squid_enabled and squid_install
|
|
|
|
- name: Copy init script and config file
|
|
template:
|
|
src: "{{ item.src }}"
|
|
dest: "{{ item.dest }}"
|
|
owner: "{{ item.owner }}"
|
|
group: "{{ item.group }}"
|
|
mode: "{{ item.mode }}"
|
|
with_items:
|
|
- src: squid/squid-iiab.conf.j2
|
|
dest: "/etc/{{ proxy }}/squid-iiab.conf"
|
|
owner: "{{ proxy_user }}"
|
|
group: "{{ proxy_user }}"
|
|
mode: 0644
|
|
when: squid_enabled and squid_install
|
|
|
|
- name: Point to Squid config file from startup file
|
|
lineinfile:
|
|
regexp: '^CONFIG'
|
|
line: "CONFIG=/etc/{{ proxy }}/squid-iiab.conf"
|
|
dest: "/etc/init.d/{{ proxy }}"
|
|
when: squid_enabled and squid_install and is_debuntu
|
|
|
|
- name: Disable Squid service
|
|
service:
|
|
name: "{{ proxy }}"
|
|
enabled: no
|
|
when: not squid_enabled and squid_install
|
|
|
|
- name: Remove xs_httpcache flag
|
|
lineinfile:
|
|
dest: "{{ iiab_env_file }}"
|
|
regexp: '^HTTPCACHE_ON=*'
|
|
line: 'HTTPCACHE_ON=False'
|
|
state: present
|
|
when: not squid_enabled
|
|
|
|
- name: Enable Wondershaper service
|
|
service:
|
|
name: wondershaper
|
|
enabled: yes
|
|
when: wondershaper_enabled and wondershaper_install
|
|
|
|
- name: Disable Wondershaper service
|
|
service:
|
|
name: wondershaper
|
|
enabled: no
|
|
when: not wondershaper_enabled and wondershaper_install
|
|
|
|
# check-LAN should be iptables.yml remove later
|
|
- name: Grab clean copy of iiab-gen-iptables
|
|
template:
|
|
src: "{{ item.0 }}"
|
|
dest: "{{ item.1 }}"
|
|
owner: root
|
|
group: root
|
|
mode: 0755
|
|
with_items:
|
|
- { 0: 'gateway/iiab-gen-iptables', 1: '/usr/bin/iiab-gen-iptables' }
|
|
|
|
- name: Add 'squid' to list of services at {{ iiab_ini_file }}
|
|
ini_file:
|
|
dest: "{{ iiab_ini_file }}"
|
|
section: squid
|
|
option: "{{ item.option }}"
|
|
value: "{{ item.value }}"
|
|
with_items:
|
|
- option: enabled
|
|
value: "{{ squid_enabled }}"
|
|
|
|
- name: Add 'dansguardian' to list of services at {{ iiab_ini_file }}
|
|
ini_file:
|
|
dest: "{{ iiab_ini_file }}"
|
|
section: dansguardian
|
|
option: "{{ item.option }}"
|
|
value: "{{ item.value }}"
|
|
with_items:
|
|
- option: enabled
|
|
value: "{{ dansguardian_enabled }}"
|
|
|
|
- name: Add 'wondershaper' to list of services at {{ iiab_ini_file }}
|
|
ini_file:
|
|
dest: "{{ iiab_ini_file }}"
|
|
section: wondershaper
|
|
option: "{{ item.option }}"
|
|
value: "{{ item.value }}"
|
|
with_items:
|
|
- option: enabled
|
|
value: "{{ wondershaper_enabled }}"
|