From 0fbee3f86b0f92f55193556945b82d51cde6d5a7 Mon Sep 17 00:00:00 2001
From: Niklas Yann Wettengel <niyawe@niyawe.de>
Date: Sat, 18 Mar 2017 15:13:27 +0100
Subject: updated setup_fastd.yml

added features:
 - configure_sysctl
 - install_openvpn
---
 roles/configure_sysctl/files/ff.conf  | 10 ++++++++++
 roles/configure_sysctl/tasks/main.yml | 15 +++++++++++++++
 2 files changed, 25 insertions(+)
 create mode 100644 roles/configure_sysctl/files/ff.conf
 create mode 100644 roles/configure_sysctl/tasks/main.yml

(limited to 'roles/configure_sysctl')

diff --git a/roles/configure_sysctl/files/ff.conf b/roles/configure_sysctl/files/ff.conf
new file mode 100644
index 0000000..edd39b2
--- /dev/null
+++ b/roles/configure_sysctl/files/ff.conf
@@ -0,0 +1,10 @@
+net.ipv4.ip_forward=1
+#net.ipv6.conf.all.forwarding=1
+net.ipv6.neigh.default.gc_thresh3=4096
+net.ipv6.neigh.default.gc_thresh2=2048
+net.ipv6.neigh.default.gc_thresh1=1024
+net.ipv6.neigh.default.gc_interval=3600
+net.ipv6.neigh.default.gc_stale_time=3600
+
+# reboot after kernel panic
+kernel.panic=1
diff --git a/roles/configure_sysctl/tasks/main.yml b/roles/configure_sysctl/tasks/main.yml
new file mode 100644
index 0000000..fa73a9a
--- /dev/null
+++ b/roles/configure_sysctl/tasks/main.yml
@@ -0,0 +1,15 @@
+---
+- name: touch sysctl.conf
+  file:
+      path: /etc/sysctl.conf
+      state: touch
+
+- name: copy ff.conf
+  copy:
+      src: ff.conf
+      dest: /etc/sysctl.d/ff.conf
+  register: ff_conf
+
+- name: reload sysctl
+  when: ff_conf.changed
+  command: /usr/bin/sysctl -p
-- 
cgit v1.2.3-54-g00ecf