Skip to content

Instantly share code, notes, and snippets.

@rssnyder

rssnyder/nebula.yml

Created January 8, 2021 17:58
Show Gist options
  • Save rssnyder/17ee0bdb15964f9331e247c217b88606 to your computer and use it in GitHub Desktop.
Save rssnyder/17ee0bdb15964f9331e247c217b88606 to your computer and use it in GitHub Desktop.
Download ZIP
ansible for deploying nebula
Raw
nebula.yml
---
- hosts: all
become: yes
tasks:
- name: create nebula dir
file:
state: directory
path: /etc/nebula
owner: root
group: root
- name: Download nebula
get_url:
url: https://github.com/slackhq/nebula/releases/download/v1.3.0/nebula-linux-amd64.tar.gz
dest: /etc/nebula/nebula-linux-amd64.tar.gz
mode: '0700'
- name: Extract nebula
unarchive:
remote_src: yes
src: /etc/nebula/nebula-linux-amd64.tar.gz
dest: /etc/nebula/
- name: copy nebula config
template:
src: nebula/node.yml
dest: /etc/nebula/config.yml
- name: copy nebula crt
template:
src: nebula/{{ dns_domain }}.crt
dest: /etc/nebula/host.crt
- name: copy nebula key
template:
src: nebula/{{ dns_domain }}.key
dest: /etc/nebula/host.key
- name: copy nebula ca crt
template:
src: nebula/ca.crt
dest: /etc/nebula/ca.crt
- name: Download nebula service
get_url:
url: https://raw.githubusercontent.com/slackhq/nebula/master/examples/service_scripts/nebula.service
dest: /etc/systemd/system/nebula.service
mode: '0700'
- name: Enable nebula
systemd:
enabled: yes
name: nebula
- name: Start nebula
systemd:
state: started
name: nebula
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment