64 lines
1.4 KiB
YAML
64 lines
1.4 KiB
YAML
---
|
|
- name: Setup security engine package
|
|
ansible.builtin.apt:
|
|
name: "crowdsec{{ crowdsec_version }}"
|
|
state: present
|
|
notify:
|
|
- Restart CrowdSec service
|
|
|
|
- name: Setup configuration file
|
|
ansible.builtin.template:
|
|
src: config.yaml.j2
|
|
dest: /etc/crowdsec/config.yaml
|
|
user: root
|
|
group: root
|
|
mode: '0644'
|
|
notify:
|
|
- Restart CrowdSec service
|
|
|
|
- name: Setup acquisition configuration file
|
|
ansible.builtin.template:
|
|
src: acquis.yaml.j2
|
|
dest: /etc/crowdsec/acquis.yaml
|
|
user: root
|
|
group: root
|
|
mode: '0644'
|
|
when:
|
|
- crowdsec_acquisition is defined
|
|
notify:
|
|
- Restart CrowdSec service
|
|
|
|
- name: Setup profiles file
|
|
ansible.builtin.template:
|
|
src: profiles.yaml.j2
|
|
dest: /etc/crowdsec/profiles.yaml
|
|
user: root
|
|
group: root
|
|
mode: '0644'
|
|
notify:
|
|
- Restart CrowdSec service
|
|
|
|
- name: "Setup {{ item.name }} notification configuration file"
|
|
ansible.builtin.template:
|
|
src: notification.yaml.j2
|
|
dest: "/etc/crowdsec/notifications/{{ item.name }}.yaml"
|
|
user: root
|
|
group: root
|
|
mode: '0644'
|
|
notify:
|
|
- Restart CrowdSec service
|
|
loop: "{{ crowdsec_notifications }}"
|
|
|
|
- name: Setup service file
|
|
ansible.builtin.template:
|
|
src: crowdsec.service.j2
|
|
dest: /lib/systemd/system/crowdsec.service
|
|
user: root
|
|
group: root
|
|
mode: '0755'
|
|
|
|
- name: Setup CrowdSec service
|
|
ansible.builtin.systemd_service:
|
|
name: crowdsec
|
|
state: started
|
|
enabled: true
|