mirror of
https://github.com/trailofbits/algo.git
synced 2025-07-25 06:53:00 +02:00
d635c76b50
* Change default SSH port * Iptables to ansible_ssh_port * Add Scaleway * permissions and groups fixes * update firewall docs * SSH fixes * add missing cloudinit to cloud-azure * remove ansible_ssh_user from the tests * congrats message fix
40 lines
1.1 KiB
YAML
40 lines
1.1 KiB
YAML
---
|
|
- name: Build python virtual environment
|
|
import_tasks: venv.yml
|
|
|
|
- name: Include prompts
|
|
import_tasks: prompts.yml
|
|
|
|
- name: Create an instance
|
|
lightsail:
|
|
aws_access_key: "{{ access_key }}"
|
|
aws_secret_key: "{{ secret_key }}"
|
|
name: "{{ algo_server_name }}"
|
|
state: present
|
|
region: "{{ algo_region }}"
|
|
zone: "{{ algo_region }}a"
|
|
blueprint_id: "{{ cloud_providers.lightsail.image }}"
|
|
bundle_id: "{{ cloud_providers.lightsail.size }}"
|
|
wait_timeout: "300"
|
|
open_ports:
|
|
- from_port: "{{ ssh_port }}"
|
|
to_port: "{{ ssh_port }}"
|
|
protocol: tcp
|
|
- from_port: 4500
|
|
to_port: 4500
|
|
protocol: udp
|
|
- from_port: 500
|
|
to_port: 500
|
|
protocol: udp
|
|
- from_port: "{{ wireguard_port }}"
|
|
to_port: "{{ wireguard_port }}"
|
|
protocol: udp
|
|
user_data: |
|
|
{{ lookup('template', 'files/cloud-init/base.sh') }}
|
|
register: algo_instance
|
|
|
|
- set_fact:
|
|
cloud_instance_ip: "{{ algo_instance['instance']['public_ip_address'] }}"
|
|
ansible_ssh_user: algo
|
|
ansible_ssh_port: "{{ ssh_port }}"
|
|
cloudinit: true
|