43 lines
916 B
YAML
43 lines
916 B
YAML
- name: super-ugly hack to allow unauthenticated packages to install
|
|
copy: content='APT::Get::AllowUnauthenticated "true";' dest=/etc/apt/apt.conf.d/99temp owner=root group=root mode=0644
|
|
|
|
- name: install common packages
|
|
become: yes
|
|
apt:
|
|
pkg:
|
|
- apt-transport-https
|
|
- curl
|
|
- gnupg2
|
|
# Optional but needed for nfs pv
|
|
- nfs-common
|
|
update_cache: yes
|
|
|
|
- name: disable swap
|
|
become: yes
|
|
command: swapoff -a
|
|
|
|
- name: disable swap in fstab
|
|
become: yes
|
|
replace:
|
|
path: /etc/fstab
|
|
regexp: '^([^#].*?\sswap\s+sw\s+.*)$'
|
|
replace: '# \1'
|
|
|
|
- name: enable br_netfilter
|
|
become: yes
|
|
command: modprobe br_netfilter
|
|
|
|
- name: ensure iptables enabled
|
|
become: yes
|
|
template:
|
|
src: k8s.iptables.conf
|
|
dest: /etc/sysctl.d/k8s.iptables.conf
|
|
|
|
- name: enable port forward
|
|
become: yes
|
|
sysctl:
|
|
name: net.ipv4.ip_forward
|
|
value: 1
|
|
sysctl_set: yes
|
|
reload: yes
|