文件列表:

.ansible-lint (119, 2023-10-30)
.yamllint (207, 2023-10-30)
LICENSE (11342, 2023-10-30)
defaults/ (0, 2023-10-30)
defaults/main.yml (2460, 2023-10-30)
handlers/ (0, 2023-10-30)
handlers/main.yml (163, 2023-10-30)
meta/ (0, 2023-10-30)
meta/main.yml (330, 2023-10-30)
poetry.lock (59469, 2023-10-30)
pyproject.toml (517, 2023-10-30)
renovate.json (584, 2023-10-30)
tasks/ (0, 2023-10-30)
tasks/ca.yml (2800, 2023-10-30)
tasks/determine_ca.yml (711, 2023-10-30)
tasks/determine_real_ip.yml (207, 2023-10-30)
tasks/download.yml (522, 2023-10-30)
tasks/main.yml (675, 2023-10-30)
tasks/member.yml (3668, 2023-10-30)
tasks/member_preflight.yml (1381, 2023-10-30)
templates/ (0, 2023-10-30)
templates/config.yml.j2 (2742, 2023-10-30)
templates/nebula.service.j2 (321, 2023-10-30)
tests/ (0, 2023-10-30)
tests/ansible.cfg (546, 2023-10-30)
tests/inventories/ (0, 2023-10-30)
tests/inventories/cloud/ (0, 2023-10-30)
tests/inventories/cloud/host_vars/ (0, 2023-10-30)
tests/inventories/cloud/host_vars/ansible-role-nebula-1.yml (487, 2023-10-30)
tests/inventories/cloud/host_vars/ansible-role-nebula-2.yml (56, 2023-10-30)
tests/inventories/cloud/host_vars/ansible-role-nebula-3.yml (29, 2023-10-30)
tests/inventories/cloud/host_vars/ansible-role-nebula-4.yml (424, 2023-10-30)
tests/inventories/cloud/host_vars/ansible-role-nebula-5.yml (29, 2023-10-30)
... ...

Ansible Role: nebula ========= Ansible role to install [Nebula](https://github.com/slackhq/nebula) Mesh. Requirements ------------ The requirements are: - Ansible version >=2.10 - Linux - Systemd as init system This role is tested on: - Ubuntu 20.04 Focal Fossa - Python 3.10 - Ansible 2.10 Role Variables -------------- The following variables are available: | Variable | Default Value | Description | |-----------------------------------------------|--------------------------------------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------| | `nebula_am_lighthouse` | `false` | If member is a lighthouse | | `nebula_arch` | `amd64` | Architecture to use to build the download URL | | `nebula_bin_dir` | `/usr/local/bin` | The directory to install the binaries | | `nebula_ca_duration` | `175200h` (20 years) | The duration of CA | | `nebula_ca_host` | `` | The inventory_hostname of the host which should be used as CA. If not defined, **exactly 1 play host must have `nebula_is_ca` variable set to true. Required to be set if `nebula_am_lighthouse`** | | `nebula_ca_name` | `Nebula CA Org` | The name of the CA | | `nebula_ca_wait_timeout_secs` | `120` | Timeout in seconds for members to wait until the CA is ready to issue certificates | | `nebula_config_dir` | `/etc/nebula` | Directory to keep config and certificates | | `nebula_download_checksum` | `` | If provided, the checksum will be tested before downloading Nebula from the URL | | `nebula_download_dir` | `/opt` | The directory to download the tarball | | `nebula_download_url` | see [defaults/main.yml](defaults/main.yml) | The Nebula download URL | | `nebula_groups` | `[]` | Nebula groups of the member | | `nebula_ip` | `` | The IP required by Nebula. **Needs to contain subnet prefix at the end (e.g. `172.20.0.42/24`). Required**. | | `nebula_is_ca` | `false` | If the host is the certificate authority or not. If `nebula_ca_host` is not defined, **exactly 1 play host must have this variable set to true. Required to be set if `nebula_am_lighthouse`** | | `nebula_is_member` | `true` | If the host should be added to the mesh | | `nebula_name` | `"{{ ansible_facts.hostname }}"` | Name of the Nebula member | | `nebula_routable_ip` | `` | The routable IP required by Nebula. If undefined, the public IP of the host will be determined and used | | `nebula_service_name` | `nebula` | Name of the systemd service | | `nebula_version` | see [defaults/main.yml](defaults/main.yml) | Nebula version to use. See git tags [here](https://github.com/slackhq/nebula/releases) | | | `nebula_additional_member_certs_download_dir` | `/tmp` | Local directory to download any additional member certificates | | `nebula_cert_private_key` | `` | Nebula member private key to use. If defined, no private key will be generated on CA but this one will be used. **Must be defined together with `nebula_cert_public_key`** | | `nebula_cert_public_key` | `` | Nebula member public key to use. If defined, no public key will be generated on CA but this one will be siged and used. **Must be defined together with `nebula_cert_private_key`** | | `nebula_additional_member_certs` | see [defaults/main.yml](defaults/main.yml) | Dict object of additional member certs with each key being the member name and value being the member configuration. Only used to generate additional certificates on CA. Can be useful to issue certificates to devices that are not managed by Ansible (e.g. Windows or mobile devices) | | `nebula_pki_disconnect_invalid` | `` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_lighthouse_interval` | `60` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_listen_host` | `0.0.0.0` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_listen_port` | `4242` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_listen_batch` | `` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_listen_read_buffer` | `` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_listen_write_buffer` | `` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_punchy_punch` | `true` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_punchy_respond` | `` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_punchy_delay` | `` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_cipher` | `` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_tun_disabled` | `false` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_tun_dev` | `nebula1` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_tun_drop_local_broadcast` | `false` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_tun_drop_multicast` | `false` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_tun_tx_queue` | `500` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_tun_mtu` | `1300` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_logging_level` | `info` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_logging_format` | `text` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_logging_disable_timestamp` | `false` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_firewall_conntrack_tcp_timeout` | `12m` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_firewall_conntrack_udp_timeout` | `3m` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_firewall_conntrack_default_timeout` | `10m` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_firewall_conntrack_max_connections` | `100000` | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_firewall_outbound` | see [defaults/main.yml](defaults/main.yml) | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | | `nebula_firewall_inbound` | see [defaults/main.yml](defaults/main.yml) | See Nebula [configuration reference](https://www.defined.net/nebula/config/) and [example config](https://github.com/slackhq/nebula/blob/master/examples/config.yml) | Example Playbook ---------------- Here's a minimalistic example: ... ...

近期下载者：

相关文件：

评论：[我要评论] [举报此文件]

收藏者：