Environment_Infrastructure/jail.local.j2 at 65443e81e7e30804bdbb8e1089972d66b6754ba0 - Environment_Infrastructure - Gitea: Git with a cup of tea

iklim.co/Environment_Infrastructure

Murat ÖZDEMİR f73504c0f2 Implement: Initial Ansible environment bootstrapping and core roles

This commit introduces the foundational Ansible playbooks, roles, and configurations for automated provisioning of both production and test environments.

Key capabilities include:
-   **Base System Setup:** Common packages, timezone, chrony, and hostname.
-   **Security Hardening:** SELinux disable, SSH configuration, `dnf-automatic`, `fail2ban`, `firewalld` setup, and `journald` log limits.
-   **Docker & Swarm:** Docker installation and configuration, Docker Swarm initialization/joining for managers and workers, overlay network creation, and node labeling.
-   **Storage:** Hetzner StorageBox integration using `davfs2`.
-   **Directory Structure:** Creation of application and database-specific directories.

This establishes a comprehensive, automated pipeline for infrastructure deployment and initial configuration.

2026-05-11 17:51:43 +03:00

11 lines

176 B

Django/Jinja

Raw Blame History

 [DEFAULT]
 ignoreip = 127.0.0.1/8 {{ admin_allowed_cidrs }}
 bantime  = 21600
 findtime = 300
 maxretry = 5
 banaction = iptables-multiport
 backend = systemd
 [sshd]
 enabled = true