78 lines
1.7 KiB
YAML
78 lines
1.7 KiB
YAML
---
|
|
- name: Update and upgrade yum packages
|
|
yum:
|
|
name: "*"
|
|
state: latest
|
|
|
|
- name: Install yum packages
|
|
yum:
|
|
name: ['yum-utils', 'ca-certificates', 'socat', 'conntrack', 'gnupg', 'bash-completion', 'net-tools']
|
|
state: present
|
|
|
|
- name: Disable firewalld
|
|
systemd: name=firewalld state=stopped
|
|
ignore_errors: yes
|
|
tags:
|
|
- install
|
|
- atomic
|
|
- firewalld
|
|
|
|
- name: Disable SWAP since kubernetes can't work with swap enabled (1/2)
|
|
command: 'swapoff -a'
|
|
|
|
- name: Disable SWAP in fstab since kubernetes can't work with swap enabled (2/2)
|
|
replace:
|
|
path: /etc/fstab
|
|
regexp: '^([^#].*?\sswap\s+sw\s+.*)$'
|
|
replace: '# \1'
|
|
|
|
- name: Add br_netfilter to module autoload
|
|
lineinfile:
|
|
path: /etc/modules-load.d/k8s2.conf
|
|
line: "{{ item }}"
|
|
create: true
|
|
with_items:
|
|
- 'overlay'
|
|
- 'br_netfilter'
|
|
|
|
- name: Add br_netfilter to module autoload
|
|
modprobe:
|
|
name: "{{ item }}"
|
|
state: present
|
|
become: true
|
|
with_items:
|
|
- 'overlay'
|
|
- 'br_netfilter'
|
|
|
|
- name: Add br_netfilter to module autoload
|
|
lineinfile:
|
|
path: /etc/sysctl.d/k8s.conf
|
|
line: "{{ item }}"
|
|
create: true
|
|
with_items:
|
|
- 'net.bridge.bridge-nf-call-iptables = 1'
|
|
- 'net.bridge.bridge-nf-call-ip6tables = 1'
|
|
- 'net.ipv4.ip_forward = 1'
|
|
|
|
- name: Disable net.bridge.bridge-nf-call-iptables
|
|
sysctl:
|
|
name: "{{ item }}"
|
|
value: 1
|
|
with_items:
|
|
- 'net.bridge.bridge-nf-call-iptables'
|
|
- 'net.bridge.bridge-nf-call-ip6tables'
|
|
|
|
- name: Disable net.ipv4.ip_forward
|
|
sysctl:
|
|
name: net.ipv4.ip_forward
|
|
value: "1"
|
|
|
|
- name: Setting hosts file
|
|
template:
|
|
src: hosts.j2
|
|
dest: /etc/hosts
|
|
|
|
- name: Disable SELinux
|
|
ansible.posix.selinux:
|
|
state: disabled
|