WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-05-04 16:13:08 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
15aa64b80784bbd34d7b6f85e3a9ce43cfc94de4
fedora-infra_ansible/roles/openvpn/client/tasks/main.yml
Kevin Fenzi fc484f796c drop some old openvpn stuff
2017-11-25 21:44:59 +00:00

102 lines
2.9 KiB
YAML
Raw Blame History

---
# OpenVpn server
- name: Install needed packages
package: name={{ item }} state=present
with_items:
- openvpn
tags:
- packages
- openvpn
when: ansible_distribution_major_version|int < 8
- name: Install needed packages
dnf: pkg={{ item }} state=present
with_items:
- openvpn
tags:
- packages
- openvpn
when: ansible_distribution_major_version|int > 7 and ansible_cmdline.ostree is not defined
- name: Install configuration files (rhel7 and fedora)
copy: src={{ item.file }}
dest={{ item.dest }}
owner=root group=root mode={{ item.mode }}
with_items:
- { file: client.conf,
dest: /etc/openvpn/client/openvpn.conf,
mode: '0644' }
- { file: "{{ private }}/files/vpn/openvpn/keys/{{ inventory_hostname }}.crt",
dest: "/etc/openvpn/client/client.crt",
mode: '0600' }
- { file: "{{ private }}/files/vpn/openvpn/keys/{{ inventory_hostname }}.key",
dest: "/etc/openvpn/client/client.key",
mode: '0600' }
tags:
- install
- openvpn
# notify:
# - restart openvpn (Fedora)
# - restart openvpn (RHEL7)
# - restart openvpn (RHEL6)
when: ( ansible_distribution_major_version|int != 6 and ansible_distribution_major_version|int != 24) and ansible_cmdline.ostree is not defined
- name: Install configuration files (rhel6)
copy: src={{ item.file }}
dest={{ item.dest }}
owner=root group=root mode={{ item.mode }}
with_items:
- { file: client.conf,
dest: /etc/openvpn/openvpn.conf,
mode: '0644' }
- { file: "{{ private }}/files/vpn/openvpn/keys/{{ inventory_hostname }}.crt",
dest: "/etc/openvpn/client.crt",
mode: '0600' }
- { file: "{{ private }}/files/vpn/openvpn/keys/{{ inventory_hostname }}.key",
dest: "/etc/openvpn/client.key",
mode: '0600' }
tags:
- install
- openvpn
# notify:
# - restart openvpn (Fedora)
# - restart openvpn (RHEL7)
# - restart openvpn (RHEL6)
when: ( ansible_distribution_major_version|int == 6 or ansible_distribution_major_version|int == 24) and ansible_cmdline.ostree is not defined
- name: enable openvpn service for rhel 6
service: name=openvpn state=started enabled=true
when: ansible_distribution_major_version|int == 6
tags:
- service
- openvpn
- name: enable openvpn service for fedora 24
service: name=openvpn@openvpn state=started enabled=true
when: ansible_distribution_major_version|int == 24
tags:
- service
- openvpn
- name: Make sure old openvpn is not running in rhel 7
service: name=openvpn@openvpn state=stopped enabled=false
when: ansible_distribution_major_version|int == 7
tags:
- service
- openvpn
- name: Make sure openvpn is running in rhel 7
service: name=openvpn-client@openvpn state=started enabled=true
when: ansible_distribution_major_version|int == 7
tags:
- service
- openvpn
- name: enable openvpn service for Fedora
service: name=openvpn-client@openvpn state=started enabled=true
when: is_fedora is defined
tags:
- service
- openvpn
Reference in New Issue View Git Blame Copy Permalink