romchi/ansible.ripe-rpki

Install and configure RIPE rpki-validator on Debian/Ubuntu servers.

Ansible role: RIPE RPKI services

Install and configure RIPE RPKI validator and RTR server on Debian/Ubuntu servers.

Requirements

None.

Role Variables

Additional info you can find in defaults/main.yml:

Variables for rpki-validator-3

RPKIvalidator: {
    deploy: false
    port: 8080
    address: localhost
}

deploy: false

If set true to install and configure rpki-validator-3 service.

port: 8080

Port which service is listen for.

address: localhost

Listen ip address for service.

Variables for rpki-rtr-server

RTRserver: {
    deploy: true
    port: 8081
    address: localhost
    RTRport: 8282
    RTRaddress: 0.0.0.0
}

 deploy: true

Set true to install and configure rpki-rtr server.

port: 8081

Port which listen by rpki-rtr-server, statistics allowed on this port.

address: localhost

IP address which listen by rpki-rtr-server, statistics allowed on this port.

RTRport: 8282

Port at which RTR session is created.

RTRaddress: 0.0.0.0

IP address for RTR session.

Note: If you use hash_behaviour=replace in your ansible.cnf, you need to replace all variables or only needed parameters, otherwice variable will be overwriten.

Example Playbook

Including an example of how to use your role (for instance, with variables passed in as parameters) is always nice for users too:

- hosts: rpkiserver
  vars:
    RPKIvalidator:
      deploy: true
      port: 8080
      address: 0.0.0.0
    RTRserver:
      deploy: true
      port: 8081
      address: 0.0.0.0
      RTRport: 8282
      RTRhost: 0.0.0.0

  roles:
     - { role: romchi.ripe-validator, tags: octorpki }

Author Information

• Roman Bulakh bulah.roman@gmail.com