mirror of
https://gitlab.archlinux.org/archlinux/infrastructure.git
synced 2024-05-26 10:46:06 +02:00
664deb67ab
This is meant as a internal authenticated and encrypted network which we can use for internal services, we don't want to expose to the internet or when encryption is desired but not easily implementable.
22 lines
687 B
YAML
22 lines
687 B
YAML
- name: setup mailman server
|
|
hosts: lists.archlinux.org
|
|
remote_user: root
|
|
roles:
|
|
- { role: common }
|
|
- { role: firewalld }
|
|
- { role: wireguard }
|
|
- { role: tools }
|
|
- { role: sshd }
|
|
- { role: root_ssh }
|
|
- { role: hardening }
|
|
- { role: borg_client, tags: ["borg"], when: "'borg_clients' in group_names" }
|
|
- { role: prometheus_exporters }
|
|
- { role: promtail }
|
|
- { role: certbot }
|
|
- { role: nginx }
|
|
- { role: fail2ban }
|
|
- { role: rspamd, rspamd_dkim_domain: lists.archlinux.org, rspamd_dkim_use_esld: false, tags: ["mail"] }
|
|
- { role: unbound, unbound_port: 5353, tags: ["mail"] }
|
|
- { role: uwsgi }
|
|
- { role: mailman }
|