prepare for full automation

host_vars/backup.yaml

@@ -0,0 +1,5 @@
+---
+servicename: mckay
+backup:
+  host: oniel.tormakristof.eu
+  internal: false

host_vars/git.yaml

@@ -1,7 +1,6 @@
 ---
 servicename: git
 backup:
-  prearecommand: ""
   folder: "/home/service-user"
   tarfolder: "gitea docker-compose.yml"
 firewall:

host_vars/mariadb.yaml

@@ -0,0 +1,5 @@
+---
+firewall:
+  - port: "3306"
+    proto: tcp
+    interface: "eth0"

host_vars/neko.yaml

@@ -15,3 +15,10 @@ firewall:
   - port: "59000:59049"
     proto: udp
     interface: "eth1"
+netplan:
+  default_gateway: ""
+  additionalinterfaces:
+    - name: "eth1"
+      dhcp4: true
+      dhcp6: true
+      denydns: true

host_vars/nexus.yaml

@@ -1,14 +1,6 @@
 ---
 webserver:
-  defaultservername: nexus.kmlabz.com
-  customrule: |
-    server {
-            listen 443 ssl http2;
-            listen [::]:443 ssl http2;
-            server_name registry.kmlabz.com;
-            ssl_certificate /etc/ssl/certs/ssl-cert-snakeoil.pem;
-            ssl_certificate_key /etc/ssl/private/ssl-cert-snakeoil.key;
-            location /{
-                proxy_pass  http://127.0.0.1:8080;
-            }
-    }
+  - domain: "nexus.kmlabz.com"
+    port: 8080
+  - domain: "registry.kmlabz.com"
+    port: 4269

host_vars/openvpn.yaml

@@ -0,0 +1,22 @@
+---
+firewall:
+  - port: "1194"
+    proto: udp
+    interface: "eth0"
+  - port: "1194"
+    proto: udp
+    interface: "eth1"
+netplan:
+  default_gateway: ""
+  additionalinterfaces:
+    - name: "eth1"
+      dhcp4: false
+      dhcp6: false
+      addresses:
+      - "2001:738:2001:207f:0:211:211:23/64"
+      gateway6: "fe80::"
+      denydns: true
+    - name: "eth2"
+      dhcp4: true
+      dhcp6: false
+      denydns: true

host_vars/postgres.yaml

@@ -0,0 +1,5 @@
+---
+firewall:
+  - port: "5432"
+    proto: tcp
+    interface: "eth0"

host_vars/testhost.yaml

@@ -1,2 +0,0 @@
----
-backupscript_name: "test-backupscript.sh"