Something went wrong on our end
-
Nicolas KAROLAK authoredNicolas KAROLAK authored
main.yml 1.32 KiB
---
celerity_signing_key: "{{ envsetup_celerity_signing_key }}"
celerity_server: "{{ envsetup_celerity_server | d(envsetup_ms_server_name, true) }}"
celerity_workers_count: 2
celerity_ms_id: "{{ envsetup_ms_id }}"
celerity_ms_api_key: "{{ envsetup_ms_api_key }}"
celerity_ms_hostname: "{{ envsetup_ms_server_name }}"
celerity_ms_instances:
- ms_id: "{{ celerity_ms_id }}"
ms_api_key: "{{ celerity_ms_api_key }}"
ms_server_name: "{{ celerity_ms_hostname }}"
celerity_fail2ban_enabled: "{{ envsetup_fail2ban_enabled | d(true) }}"
celerity_f2b_filter:
name: celerity
content: |
[INCLUDES]
before = common.conf
[Definition]
# currently there is no login failure log in celerity so this useless for now
failregex = INFO Wrong credentials given to login\. IP: <HOST>, username: \S+\.$
ignoreregex =
celerity_f2b_jail:
name: celerity
content: |
[celerity]
logpath = /var/lib/celerity/twisted.log
enabled = {% if celerity_fail2ban_enabled | bool %}true{% else %}false{% endif %}
celerity_firewall_enabled: true
celerity_ferm_rules_filename: celerity
celerity_ferm_input_rules:
- saddr: "{{ groups['worker'] | map('extract', hostvars, ['ansible_default_ipv4', 'address']) | list }}"
proto:
- tcp
dport:
- 6200
celerity_ferm_output_rules: []
celerity_ferm_global_settings:
...