2026-02-07 07:22:24 +01:00
|
|
|
---
|
2026-02-07 08:29:45 +01:00
|
|
|
# ansible_role_proxmox_provision/defaults/main.yml
|
2026-02-07 07:22:24 +01:00
|
|
|
# Default values for role variables
|
|
|
|
|
# ===================================
|
|
|
|
|
|
2026-02-07 08:29:45 +01:00
|
|
|
# Swap handling
|
|
|
|
|
proxmox_disable_swap: true
|
|
|
|
|
proxmox_swapiness: 10
|
|
|
|
|
proxmox_min_ram_mb_for_no_swap: 16384
|
2026-02-07 07:22:24 +01:00
|
|
|
|
2026-02-07 08:29:45 +01:00
|
|
|
# Powertop
|
|
|
|
|
proxmox_enable_powertop: true
|
2026-02-07 07:22:24 +01:00
|
|
|
|
2026-02-07 08:29:45 +01:00
|
|
|
# Logrotate
|
2026-02-12 21:23:13 +01:00
|
|
|
proxmox_logrotate_enabled: true
|
|
|
|
|
|
|
|
|
|
proxmox_logrotate_rotate: 4
|
|
|
|
|
proxmox_logrotate_maxsize: 100M
|
|
|
|
|
proxmox_logrotate_frequency: daily
|
|
|
|
|
|
|
|
|
|
proxmox_logrotate_compress: true
|
|
|
|
|
proxmox_logrotate_delaycompress: true
|
|
|
|
|
proxmox_logrotate_missingok: true
|
|
|
|
|
proxmox_logrotate_notifempty: true
|
|
|
|
|
|
|
|
|
|
# Destination override file
|
2026-02-12 21:25:12 +01:00
|
|
|
proxmox_logrotate_file: /etc/logrotate.d/99-proxmox-custom
|
2026-02-15 08:20:04 +01:00
|
|
|
|
|
|
|
|
# Default languages for APT translations
|
|
|
|
|
proxmox_apt_languages:
|
|
|
|
|
- "en"
|
|
|
|
|
- "es"
|
2026-02-15 08:21:14 +01:00
|
|
|
- "it"
|
2026-02-15 09:13:08 +01:00
|
|
|
|
|
|
|
|
# Percentage of total RAM to allocate to log2ram
|
2026-02-16 19:29:11 +01:00
|
|
|
log2ram_ram_percent: 5
|
2026-02-15 09:13:08 +01:00
|
|
|
|
|
|
|
|
log2ram_min_size_mb: 128
|
|
|
|
|
log2ram_max_size_mb: 1024
|
2026-02-16 17:57:09 +01:00
|
|
|
log2ram_host_memtotal_mb: "{{ ansible_memtotal_mb }}"
|
2026-02-16 18:48:47 +01:00
|
|
|
log2ram_version: "1.7.2"
|
2026-02-15 09:13:08 +01:00
|
|
|
|
|
|
|
|
# Journald RAM usage limit
|
|
|
|
|
journald_runtime_max_use: "100M"
|
|
|
|
|
|
|
|
|
|
# VM write frequency tuning
|
|
|
|
|
vm_dirty_ratio: 15
|
|
|
|
|
vm_dirty_background_ratio: 5
|
|
|
|
|
vm_swappiness: "{{ proxmox_swapiness }}"
|
2026-02-23 18:30:01 +01:00
|
|
|
|
|
|
|
|
# Fail2ban settings
|
2026-03-01 10:22:58 +01:00
|
|
|
f2b_bantime: 600 # 10 minutes
|
|
|
|
|
f2b_findtime: 1200 # 20 minutes
|
2026-02-23 18:30:01 +01:00
|
|
|
f2b_maxretry: 5
|
2026-03-01 10:22:58 +01:00
|
|
|
f2b_recidive_bantime: 3600 # 1 hours
|
2026-02-23 18:30:01 +01:00
|
|
|
f2b_recidive_findtime: 86400 # 24 hours
|
|
|
|
|
f2b_recidive_maxretry: 3
|
|
|
|
|
f2b_ipset_name: f2b-blacklist
|
|
|
|
|
f2b_bantime_increment: true
|
|
|
|
|
f2b_bantime_factor: 2
|
|
|
|
|
f2b_bantime_max: 86400
|
2026-02-23 19:37:50 +01:00
|
|
|
f2b_unban_ip: "" # ansible-playbook play.yml -e f2b_unban_ip=192.168.1.55
|
