---
- name: Update and upgrade yum packages
  yum:
    name: "*"
    state: latest

- name: Install yum packages
  yum:
    name: ['yum-utils', 'ca-certificates', 'socat', 'conntrack', 'gnupg', 'bash-completion', 'net-tools']
    state: present

- name: Disable firewalld
  systemd: name=firewalld state=stopped
  ignore_errors: yes
  tags:
   - install
   - atomic
   - firewalld

- name: Disable SWAP since kubernetes can't work with swap enabled (1/2)
  command: 'swapoff -a'

- name: Disable SWAP in fstab since kubernetes can't work with swap enabled (2/2)
  replace:
    path: /etc/fstab
    regexp: '^([^#].*?\sswap\s+sw\s+.*)$'
    replace: '# \1'

- name: Add br_netfilter to module autoload
  lineinfile:
    path: /etc/modules-load.d/k8s2.conf
    line: "{{ item }}"
    create: true
  with_items:
    - 'overlay'
    - 'br_netfilter'

- name: Add br_netfilter to module autoload
  modprobe:
    name: "{{ item }}"
    state: present
  become: true
  with_items:
    - 'overlay'
    - 'br_netfilter'

- name: Add br_netfilter to module autoload
  lineinfile:
    path: /etc/sysctl.d/k8s.conf
    line: "{{ item }}"
    create: true
  with_items:
    - 'net.bridge.bridge-nf-call-iptables  = 1'
    - 'net.bridge.bridge-nf-call-ip6tables = 1'
    - 'net.ipv4.ip_forward                 = 1'

- name: Disable net.bridge.bridge-nf-call-iptables
  sysctl:
    name: "{{ item }}"
    value: 1
  with_items:
    - 'net.bridge.bridge-nf-call-iptables'
    - 'net.bridge.bridge-nf-call-ip6tables'

- name: Disable net.ipv4.ip_forward
  sysctl:
    name: net.ipv4.ip_forward
    value: "1"

- name: Setting hosts file
  template:
    src: hosts.j2
    dest: /etc/hosts

- name: Disable SELinux
  ansible.posix.selinux:
    state: disabled