Ansible playbook初始化配置Linux Centos7(一.DNS)
Ansible playbook初始化配置Linux Centos7(二.YUM)
Ansible playbook初始化配置Linux Centos7(三.时钟同步)
一.防火墙配置
1.1.目录结构
├── hosts
├── roles
│ ├── DNS
│ │ ├── handlers
│ │ │ └── main.yml
│ │ └── tasks
│ │ └── main.yml
│ ├── yum
│ │ └── tasks
│ │ └── main.yml
│ ├────── time
│ │ └─── handlers
│ │ └── main.yml
│ │ └── tasks
│ │ └── main.yml
│ └── firewall
│ └── tasks
│ └── main.yml
└── site.yml
1.2.firewall下任务主文件
/roles/firewall/tasks/main.yml
#获取系统内服务信息
- name: checking service
ansible.builtin.service_facts:
#当Firewalls服务存在时,关闭Firewall服务
- name: stop firewalld
service:
name: firewalld
state: stopped
enabled: no
when: ansible_facts.services['firewalld.service'] is defined
#设置宽容模式
- name: setenforce 0
shell: "setenforce 0"
failed_when: false
#关闭selinux
- name: set selinux disabled
replace:
path: /etc/selinux/config
regexp: '^SELINUX=enforcing'
replace: 'SELINUX=disabled'