craighurley/ansible-personal-vps

Create and configure a Virtual Private Server using Ansible

personal-vps

Configure a Virtual Private Server using Ansible.

Ansible

Ansible will:

• Set the locale.
• Configure shell.
• Add or update users.
• Add custom entries to sudo.
• Update all installed packages.
• Install common applications.
• Enable auto security updates.
• Install and configure chrony (a ntpd replacement).
• Configure iptables.
• Enable SELINUX.
• Tighten SSH security (e.g. allow key auth only).

Running

Ping all dev servers

$ ansible-playbook ./playbooks/ping.yaml -i inventory -l dev

Check what will be changed on the dev server(s)

$ ansible-playbook ./playbooks/vps.yaml -i inventory -l dev --check

Run on all dev servers

$ ansible-playbook ./playbooks/vps.yaml -i inventory -l dev

Run specific tags, e.g. yum

$ ansible-playbook ./playbooks/vps.yaml -i inventory -l dev --tags="yum"

Run for real on AWS, including more verbose logs

$ ansible-playbook ./playbooks/vps.yaml -i inventory -l aws -v

Users

See the users readme for more information on how to configure users.

Development

A Vagrantfile is included in this repository that creates a local server for testing. To create the local server run:

$ vagrant up

On running the above command, Vagrant will:

• Create each of the servers defined in boxes.yaml.
• Call a shell script to provision the server using cloud-init. The cloud-init configuration files are in ./cloud-init/nocloud-net/.

Once you're finished with the vagrant box, destroy it with:

$ vagrant destroy -f

Links

• http://docs.ansible.com/ansible/
• http://cloudinit.readthedocs.io/