Загрузить файлы в «provisioning»

2026-04-04 16:30:35 +03:00
parent 5036b9d541
commit f85a150e25
5 changed files with 137 additions and 0 deletions
--- a/provisioning/playbook.yml
+++ b/provisioning/playbook.yml
@@ -0,0 +1,78 @@
+---
+- hosts: all
+  become: yes
+  tasks:
+
+  - name: update centos repo
+    shell: |
+      sed -i s/mirror.centos.org/vault.centos.org/g /etc/yum.repos.d/CentOS*
+      sed -i s/^#.*baseurl=http/baseurl=http/g /etc/yum.repos.d/CentOS*
+      sed -i s/^mirrorlist=http/#mirrorlist=http/g /etc/yum.repos.d/CentOS*
+
+  - name: install packages
+    yum: name={{ item }} state=latest 
+    with_items:
+      - bind
+      - bind-utils
+      - ntp
+
+  - name: copy transferkey to all servers and the client
+    copy: src=named.zonetransfer.key dest=/etc/named.zonetransfer.key owner=root group=named mode=0644
+
+- hosts: ns01
+  become: yes
+  tasks:
+  - name: copy named.conf
+    copy: src=master-named.conf dest=/etc/named.conf owner=root group=named mode=0640
+  - name: copy zones
+    copy: src={{ item }} dest=/etc/named/ owner=root group=named mode=0660
+    with_fileglob:
+      - named.d*
+      - named.new*
+  - name: copy resolv.conf to the servers
+    copy: src=servers-resolv.conf dest=/etc/resolv.conf owner=root group=root mode=0644
+
+  - name: set /etc/named permissions
+    file: path=/etc/named owner=root group=named mode=0670
+
+  - name: SELinux /etc/named
+    file:
+      path: /etc/named
+      setype: named_zone_t
+      recurse: yes
+
+  - name: ensure named is running and enabled
+    service: name=named state=restarted enabled=yes
+
+
+
+- hosts: ns02
+  become: yes
+  tasks:
+  - name: copy named.conf
+    copy: src=slave-named.conf dest=/etc/named.conf owner=root group=named mode=0640
+  - name: copy resolv.conf to the servers
+    copy: src=servers-resolv.conf dest=/etc/resolv.conf owner=root group=root mode=0644
+
+  - name: set /etc/named permissions
+    file: path=/etc/named owner=root group=named mode=0670
+
+  - name: SELinux /etc/named
+    file:
+      path: /etc/named
+      setype: named_zone_t
+      recurse: yes
+
+  - name: ensure named is running and enabled
+    service: name=named state=restarted enabled=yes
+
+
+- hosts: client
+  become: yes
+  tasks:
+  - name: copy resolv.conf to the client
+    copy: src=client-resolv.conf dest=/etc/resolv.conf owner=root group=root mode=0644
+  - name: copy rndc conf file
+    copy: src=rndc.conf dest=/home/vagrant/rndc.conf owner=vagrant group=vagrant mode=0644
+  - name: copy motd to the client
+    copy: src=client-motd dest=/etc/motd owner=root group=root mode=0644