Inicio Explorar Axuda
Iniciar sesión
mark22k
/
ansible-crxn-router
réplica de https://codeberg.org/mark22k/ansible-crxn-router.git
Seguir 1
Destacar 0
Fork 0
Ficheiros Incidencias 0

Sen descrición

Rama: main
Ramas Etiquetas
ansible-crxn...
ZIP TAR.GZ
Marek Küthe 14c9b1256e Adjuct MTU hai 4 meses
group_vars 2243d6f229 Update crazytrace hai 8 meses
host_vars 14c9b1256e Adjuct MTU hai 4 meses
roles 2f1edac66e Update to babel metric hai 4 meses
.ansible-lint e5ed55facc improve style hai 1 ano
.gitignore 9d6e08876b add password file to gitignore hai 1 ano
.yamlfmt e5ed55facc improve style hai 1 ano
LICENSE 4f2c6cfebf Initial commit hai 1 ano
README.md be240ab785 Switch from ufw to nftables hai 9 meses
ansible.cfg 804b9b6718 remove firejail workaround as it seems fixed now; related https://github.com/ansible/ansible/issues/80057, https://github.com/netblue30/firejail/issues/1518 hai 1 ano
inventory.yml b9cbafa0c3 improve style hai 1 ano
pw_file.sh e255636888 outsource pw script hai 1 ano
reseau.mk16.de.yml 2f1edac66e Update to babel metric hai 4 meses
update.yml b37de67f22 Update role name hai 7 meses

README.md

Ansible configuration for a CRXN Router

Roles

  • motd - Removes long motd message
  • packages - Update, upgrade, and autoremove packages. Install a few useful packages.
  • install-nftables - Install firewall
  • config-nftables - Add firewall rules

  • fail2ban - Install fail2ban and configuring it for SSH

  • sysctl-tweaks - Install a few sysctl-tweaks

  • unattended-upgrades - Install and enable unattended-upgrades

  • babeld-compile - Compiles babeld from upstream git repo and install it

  • fastd-compile - Compiles fastd from upstream git repo and install it

  • babelweb2-compile - Fetch and compile babelweb2

  • babelweb2 - Enabled babelweb2 for autostart and setup a nginx reverse proxy for it

  • nginx - Install and enable nginx for autostart

  • dummy-interface - Configures a dummy interface for crxn and a static route in the kernel

  • babeld - babeld configuration files

  • gre - Install GRE peer configurations

  • vxlan - Install VXLAN peer configurations

  • openvpn - Install OpenVPN peer configurations

  • fastd - Install fastd peer configurations

  • wireguard - Install wireguard peer configurations

  • hardening - Disables core dumping and downloads a few packages to improve system security

  • coredns - Install coredns and create a empty configuration file