adrien/ansible-role-crowdsec
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
ansible-role-crowdsec/tasks/add_bouncer.yml
Adrien Reslinger 21a784cc63
Some checks failed
continuous-integration/drone/push Build is failing
Details
WIP
2022-03-26 00:30:49 +01:00

37 lines
1 KiB
YAML
Raw Blame History

---
- name: Install bouncer (currently only firewall)
ansible.builtin.apt:
name:
- crowdsec-firewall-bouncer
- crowdsec-firewall-bouncer-iptables
when:
- ansible_os_family == "Debian"
- name: Install crowdsec
ansible.builtin.dnf:
name:
- crowdsec-firewall-bouncer-nftables
state: present
when:
- ansible_os_family == "RedHat"
#- name: Register new bouncer
# command: cscli bouncers add {{ inventory_hostname }} -o raw
# register: _csbouncer
# delegate_to: "{{ crowdsec_delegate_server_hostname }}"
# changed_when: _csbouncer.stderr is not search("already exists")
#
#- name: Deploy bouncer config
# lineinfile:
# regex: "{{ item.regex }}"
# line: "{{ item.line }}"
# dest: /etc/crowdsec/bouncers/crowdsec-firewall-bouncer.yaml
# with_items:
# - regex: "^api_url"
# line: "api_url: {{ crowdsec_lapi_url }}"
# - regex: "^api_key"
# line: "api_key: {{ _csbouncer.stdout }}"
# when: _csbouncer.changed
# notify: restart crowdsec-firewall-bouncer
# loop_control:
# label: "{{ item.regex }}"
Reference in a new issue View git blame Copy permalink