Add dynamic inventory configuration
- Add development environment inventory structure - Configure libvirt/KVM inventory plugin for VM management - Add grokbox hypervisor host configuration - Include existing VM hosts (pihole, mymx, derp) - Set up SSH ProxyJump through grokbox for all VMs
This commit is contained in:
Infrastructure Team
@@ -0,0 +1,86 @@
|
||||
---
|
||||
# =============================================================================
|
||||
# Global Variables for All Hosts
|
||||
# =============================================================================
|
||||
# Applied to all hosts in the development inventory
|
||||
# =============================================================================
|
||||
|
||||
# Ansible Connection Settings
|
||||
# -----------------------------------------------------------------------------
|
||||
ansible_connection: ssh
|
||||
ansible_python_interpreter: /usr/bin/python3
|
||||
|
||||
# SSH Connection Optimization
|
||||
ansible_ssh_pipelining: true
|
||||
ansible_ssh_retries: 3
|
||||
|
||||
# Privilege Escalation
|
||||
ansible_become: true
|
||||
ansible_become_method: sudo
|
||||
ansible_become_user: root
|
||||
|
||||
# Fact Gathering
|
||||
gather_subset:
|
||||
- '!all'
|
||||
- '!min'
|
||||
- network
|
||||
- hardware
|
||||
- virtual
|
||||
|
||||
# Environment
|
||||
# -----------------------------------------------------------------------------
|
||||
environment_name: development
|
||||
deployment_timestamp: "{{ ansible_date_time.iso8601 }}"
|
||||
|
||||
# Security Settings
|
||||
# -----------------------------------------------------------------------------
|
||||
security_hardening_enabled: false # Less strict for dev environment
|
||||
selinux_enabled: true
|
||||
selinux_mode: permissive # Permissive for development
|
||||
firewall_enabled: true
|
||||
|
||||
# System Configuration
|
||||
# -----------------------------------------------------------------------------
|
||||
timezone: "UTC"
|
||||
ntp_servers:
|
||||
- 0.pool.ntp.org
|
||||
- 1.pool.ntp.org
|
||||
- 2.pool.ntp.org
|
||||
|
||||
# Package Management
|
||||
# -----------------------------------------------------------------------------
|
||||
package_state: present
|
||||
enable_automatic_updates: false # Manual control in dev
|
||||
|
||||
# Monitoring & Logging
|
||||
# -----------------------------------------------------------------------------
|
||||
log_rotation_enabled: true
|
||||
log_retention_days: 30
|
||||
syslog_server: null # No central logging in dev
|
||||
|
||||
# Essential Packages (from CLAUDE.md)
|
||||
# -----------------------------------------------------------------------------
|
||||
essential_packages:
|
||||
- vim
|
||||
- htop
|
||||
- tmux
|
||||
- jq
|
||||
- bc
|
||||
- curl
|
||||
- wget
|
||||
- rsync
|
||||
- git
|
||||
- python3
|
||||
- python3-pip
|
||||
|
||||
# Security Packages (from CLAUDE.md)
|
||||
# -----------------------------------------------------------------------------
|
||||
security_packages:
|
||||
- aide
|
||||
- auditd
|
||||
|
||||
# Development Flags
|
||||
# -----------------------------------------------------------------------------
|
||||
dev_mode: true
|
||||
debug_enabled: false
|
||||
verbose_logging: false
|
||||
Reference in New Issue
Block a user