updated setup_fastd.yml

added features: - configure_sysctl - install_openvpn
author: Niklas Yann Wettengel <niyawe@niyawe.de> 2017-03-18 15:13:27 +0100
committer: Niklas Yann Wettengel <niyawe@niyawe.de> 2017-03-18 15:13:27 +0100
commit: 0fbee3f86b0f92f55193556945b82d51cde6d5a7 (patch)
tree: 2c276aa4f2ecec0bc179340bc501f48173c81453 /roles/configure_sysctl
parent: eb9f51f61817043d5fb3609fad922c48f84b887d (diff)
2 files changed, 25 insertions, 0 deletions
diff --git a/roles/configure_sysctl/files/ff.conf b/roles/configure_sysctl/files/ff.conf
new file mode 100644
index 0000000..edd39b2
--- /dev/null
+++ b/roles/configure_sysctl/files/ff.conf
@@ -0,0 +1,10 @@
+net.ipv4.ip_forward=1
+#net.ipv6.conf.all.forwarding=1
+net.ipv6.neigh.default.gc_thresh3=4096
+net.ipv6.neigh.default.gc_thresh2=2048
+net.ipv6.neigh.default.gc_thresh1=1024
+net.ipv6.neigh.default.gc_interval=3600
+net.ipv6.neigh.default.gc_stale_time=3600
+
+# reboot after kernel panic
+kernel.panic=1
diff --git a/roles/configure_sysctl/tasks/main.yml b/roles/configure_sysctl/tasks/main.yml
new file mode 100644
index 0000000..fa73a9a
--- /dev/null
+++ b/roles/configure_sysctl/tasks/main.yml
@@ -0,0 +1,15 @@
+---
+- name: touch sysctl.conf
+  file:
+      path: /etc/sysctl.conf
+      state: touch
+
+- name: copy ff.conf
+  copy:
+      src: ff.conf
+      dest: /etc/sysctl.d/ff.conf
+  register: ff_conf
+
+- name: reload sysctl
+  when: ff_conf.changed
+  command: /usr/bin/sysctl -p
author	Niklas Yann Wettengel <niyawe@niyawe.de>	2017-03-18 15:13:27 +0100
committer	Niklas Yann Wettengel <niyawe@niyawe.de>	2017-03-18 15:13:27 +0100
commit	0fbee3f86b0f92f55193556945b82d51cde6d5a7 (patch)
tree	2c276aa4f2ecec0bc179340bc501f48173c81453 /roles/configure_sysctl
parent	eb9f51f61817043d5fb3609fad922c48f84b887d (diff)