diff options
| author | Trygve Laugstøl <trygvis@inamo.no> | 2018-08-27 20:36:21 +0200 |
|---|---|---|
| committer | Trygve Laugstøl <trygvis@inamo.no> | 2018-08-27 20:37:42 +0200 |
| commit | 1c9619633840a0e7588a5fdf6996faddf32e8090 (patch) | |
| tree | 940c220b53d451d8d3316341c4a111db53ce7bad /ansible/roles/lxc-machine | |
| parent | 9881c25ef9d70c442bf486f85381022432600984 (diff) | |
| download | infra-1c9619633840a0e7588a5fdf6996faddf32e8090.tar.gz infra-1c9619633840a0e7588a5fdf6996faddf32e8090.tar.bz2 infra-1c9619633840a0e7588a5fdf6996faddf32e8090.tar.xz infra-1c9619633840a0e7588a5fdf6996faddf32e8090.zip | |
o Disable IPv6 in LXC containers.
o Create LXC configuration from Ansible vars.
Diffstat (limited to 'ansible/roles/lxc-machine')
| -rw-r--r-- | ansible/roles/lxc-machine/handlers/main.yml | 6 | ||||
| -rw-r--r-- | ansible/roles/lxc-machine/tasks/main.yml | 11 |
2 files changed, 17 insertions, 0 deletions
diff --git a/ansible/roles/lxc-machine/handlers/main.yml b/ansible/roles/lxc-machine/handlers/main.yml new file mode 100644 index 0000000..3f96231 --- /dev/null +++ b/ansible/roles/lxc-machine/handlers/main.yml @@ -0,0 +1,6 @@ +--- +- name: restart sysctl + service: + name: systemd-sysctl.service + state: restarted + diff --git a/ansible/roles/lxc-machine/tasks/main.yml b/ansible/roles/lxc-machine/tasks/main.yml index 24d64c8..626428c 100644 --- a/ansible/roles/lxc-machine/tasks/main.yml +++ b/ansible/roles/lxc-machine/tasks/main.yml @@ -10,5 +10,16 @@ install_recommends: no with_items: - systemd-cron + - ca-certificates + - unzip + - sudo + +- name: disable ipv6 + tags: + - disable-ipv6 + copy: + dest: /etc/sysctl.d/99-disable-ipv6.conf + content: net.ipv6.conf.all.disable_ipv6=1 + notify: restart sysctl # TODO: unattended upgrades, postfix client |