You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
86 lines
2.4 KiB
86 lines
2.4 KiB
- name: sw-node-exporter | PRE - 1. Stop, disable and mask ufw service |
|
ansible.builtin.systemd: |
|
state: stopped |
|
name: ufw |
|
enabled: no |
|
masked: yes |
|
daemon_reload: yes |
|
|
|
- name: sw-node-exporter | PRE - 2. Install firewalld |
|
ansible.builtin.apt: |
|
name: |
|
- firewalld |
|
state: present |
|
update_cache: yes |
|
|
|
- name: sw-node-exporter | PRE - 3. Start and enable firewalld service |
|
ansible.builtin.systemd: |
|
state: started |
|
name: firewalld |
|
enabled: yes |
|
daemon_reload: yes |
|
|
|
- name: sw-node-exporter | PRE - 4. Allow ports in firewalld |
|
ansible.posix.firewalld: |
|
port: "{{ item }}" |
|
permanent: yes |
|
state: enabled |
|
notify: firewalld reload |
|
loop: |
|
- 9100/tcp |
|
- 22/tcp |
|
|
|
# Muze byt pridano vice portu pomoci variablu, tedy alespon myslim, ale abych si nic nero*esral, tak je to takto. |
|
#- name: sw-node-exporter | PRE - 4. Allow ports in firewalld |
|
# ansible.posix.firewalld: |
|
# port: "{{ item }}" |
|
# permanent: yes |
|
# state: enabled |
|
# notify: reload firewalld |
|
# with_items: "{{ additional_ports }}" |
|
# when: additional_ports is defined |
|
|
|
- name: sw-node-exporter | 1. Download and Unarchive node-exporter in /usr/local/bin |
|
ansible.builtin.unarchive: |
|
src: https://github.com/prometheus/node_exporter/releases/download/v1.4.0/node_exporter-1.4.0.linux-amd64.tar.gz |
|
dest: /usr/local/bin |
|
remote_src: yes |
|
|
|
- name: sw-node-exporter | 2. Create node_exporter group |
|
ansible.builtin.group: |
|
name: node_exporter |
|
state: present |
|
|
|
- name: sw-node-exporter | 3. Add the user and group 'node_exporter' with no home and shell |
|
ansible.builtin.user: |
|
name: node_exporter |
|
group: node_exporter |
|
create_home: no |
|
shell: /bin/false |
|
|
|
- name: sw-node-exporter | 4. Move node_exporter to /usr/local/bin |
|
ansible.builtin.copy: |
|
src: /usr/local/bin/node_exporter-1.4.0.linux-amd64/node_exporter |
|
dest: /usr/local/bin |
|
owner: node_exporter |
|
group: node_exporter |
|
mode: '0777' |
|
remote_src: yes |
|
|
|
- name: sw-node-exporter | 5. Recursively remove node_exporter directory |
|
ansible.builtin.file: |
|
path: /usr/local/bin/node_exporter-1.4.0.linux-amd64 |
|
state: absent |
|
|
|
- name: sw-node-exporter | 6. Deploy node_exporter.service |
|
ansible.builtin.copy: |
|
src: node_exporter.service |
|
dest: /etc/systemd/system |
|
notify: |
|
- daemon reload |
|
|
|
- name: sw-node-exporter | 7. Start and enable node-exporter service |
|
ansible.builtin.service: |
|
name: node_exporter |
|
state: started |
|
enabled: yes
|
|
|