fix(security,common)!: moved sysctl and resolvconf tasks from common to security role to fix DNS resolution fail due to firewall rules

2024-08-08 00:00:00 +00:00 · 2024-08-08 00:00:00 +00:00 · 3701ea6276
commit 3701ea6276
parent b7ba39bce9
13 changed files with 57 additions and 55 deletions
--- a/inventory/group_vars/external/vars.yml
+++ b/inventory/group_vars/external/vars.yml
@ -2,3 +2,4 @@
 security_firewall_mangle_drop_privatenets: false
 global_dns_domainname: "{{ vault_global_dns_domainname }}"
 external_provisioner_source_ips: '{{ vault_external_provisioner_source_ips }}'
+security_configure_resolve_conf: true
--- a/inventory/host_vars/unobtainium/vars.yml
+++ b/inventory/host_vars/unobtainium/vars.yml
@ -12,7 +12,7 @@ common_git_email: "{{ vault_common_gitconfig_email }}"
 common_git_force_sign: true
 common_git_signing_key: "{{ vault_common_gitconfig_signingkey }}"
 common_install_fonts: true
-common_sysctl_configuration:
+security_sysctl_configuration:
  'fs.inotify.max_user_watches': 1048576
  'vm.swappiness': 1

--- a/inventory/host_vars/unsepttrium/vars.yml
+++ b/inventory/host_vars/unsepttrium/vars.yml
@ -11,7 +11,7 @@ common_git_email: "{{ vault_common_gitconfig_email }}"
 common_git_force_sign: true
 common_git_signing_key: "{{ vault_common_gitconfig_signingkey }}"
 common_install_fonts: true
-common_sysctl_configuration:
+security_sysctl_configuration:
  'fs.inotify.max_user_watches': 1048576
  'vm.swappiness': 1