fedora-infra_ansible/playbooks/groups/bastion.yml

---
- import_playbook: "/srv/web/infra/ansible/playbooks/include/virt-create.yml"
  vars:
    myhosts: "bastion"

- name: Make the boxen be real for real
  hosts: bastion
  user: root
  gather_facts: true

  vars_files:
    - /srv/web/infra/ansible/vars/global.yml
    - "/srv/private/ansible/vars.yml"
    - /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml

  roles:
  - base
  - rkhunter
  - openvpn/server
  - ipa/client
  - nagios_client
  - hosts
  - sudo
  - collectd/base
  - packager_alias
  - opendkim
  - fasjson

  pre_tasks:
  - import_tasks: "{{ tasks_path }}/yumrepos.yml"

  handlers:
  - import_tasks: "{{ handlers_path }}/restart_services.yml"