Jose/ansible_role_proxmox_provision
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: Jose:dev
Branches Tags
Jose:main Jose:dev
..
compare: Jose:465ecfefc891b49668f949c89662c287797c3a9d
Branches Tags
Jose:main Jose:dev

10 Commits
dev ... 465ecfefc8

Author SHA1 Message Date
Jose
465ecfefc8 Merge pull request 'chore 📦: Update build scripts for CI/CD pipeline' (#47) from dev into main
All checks were successful
ansible-lint / Ansible Lint (push) Successful in 12s
Details
Gitleaks Scan / gitleaks (push) Successful in 4s
Details
Markdown Lint / markdown-lint (push) Successful in 5s
Details 
Reviewed-on: #47
 2026-03-01 12:02:41 +01:00
Jose
4b80cfe531 Merge pull request 'style 💎: Fix table formatting and add code block for list_banned task' (#46) from dev into main
All checks were successful
ansible-lint / Ansible Lint (push) Successful in 12s
Details
Gitleaks Scan / gitleaks (push) Successful in 5s
Details
Markdown Lint / markdown-lint (push) Successful in 6s
Details 
Reviewed-on: #46
 2026-03-01 10:55:12 +01:00
Jose
9adb8f8d2a Merge pull request 'fix 🐛: Fix typo in firewall path variable' (#45) from dev into main
All checks were successful
ansible-lint / Ansible Lint (push) Successful in 13s
Details
Gitleaks Scan / gitleaks (push) Successful in 4s
Details
Markdown Lint / markdown-lint (push) Successful in 5s
Details
Mark stale issues and pull requests / stale (push) Successful in 2s
Details 
Reviewed-on: #45
 2026-02-25 17:41:08 +01:00
Jose
f63c643cc6 Merge pull request 'feat : Add task for importing fail2ban configuration' (#44) from dev into main
All checks were successful
ansible-lint / Ansible Lint (push) Successful in 14s
Details
Gitleaks Scan / gitleaks (push) Successful in 5s
Details
Markdown Lint / markdown-lint (push) Successful in 6s
Details 
Reviewed-on: #44
 2026-02-25 17:35:26 +01:00
Jose
94726374ea Merge pull request 'feat : Add Fail2ban integration with Proxmox Firewall' (#43) from dev into main
All checks were successful
ansible-lint / Ansible Lint (push) Successful in 13s
Details
Gitleaks Scan / gitleaks (push) Successful in 4s
Details
Markdown Lint / markdown-lint (push) Successful in 5s
Details
Mark stale issues and pull requests / stale (push) Successful in 3s
Details 
Reviewed-on: #43
 2026-02-24 19:22:28 +01:00
Jose
6f27f0c47c Merge pull request 'feat : Add new task to stop log2ram before extracting it' (#42) from dev into main
All checks were successful
ansible-lint / Ansible Lint (push) Successful in 12s
Details
Gitleaks Scan / gitleaks (push) Successful in 4s
Details
Markdown Lint / markdown-lint (push) Successful in 5s
Details
Mark stale issues and pull requests / stale (push) Successful in 3s
Details 
Reviewed-on: #42
 2026-02-16 20:54:28 +01:00
Jose
d36e7c34bf Merge pull request 'refactor ♻️: Reduce log2ram RAM allocation from 10% to 5%' (#41) from dev into main
All checks were successful
ansible-lint / Ansible Lint (push) Successful in 13s
Details
Gitleaks Scan / gitleaks (push) Successful in 4s
Details
Markdown Lint / markdown-lint (push) Successful in 5s
Details 
Reviewed-on: #41
 2026-02-16 19:31:01 +01:00
Jose
6458a4e0cf Merge pull request 'chore 📦: Update log2ram version to 1.7.2 and add dynamic versioning in ram.yml' (#40) from dev into main
All checks were successful
ansible-lint / Ansible Lint (push) Successful in 12s
Details
Markdown Lint / markdown-lint (push) Successful in 6s
Details
Gitleaks Scan / gitleaks (push) Successful in 4s
Details 
Reviewed-on: #40
 2026-02-16 18:50:07 +01:00
Jose
2e570f6808 Merge pull request 'feat : Add variable log2ram_host_memtotal_mb for storing host memory total in MB' (#39) from dev into main
All checks were successful
ansible-lint / Ansible Lint (push) Successful in 12s
Details
Gitleaks Scan / gitleaks (push) Successful in 4s
Details
Markdown Lint / markdown-lint (push) Successful in 6s
Details 
Reviewed-on: #39
 2026-02-16 18:28:08 +01:00
Jose
1929ad13af Merge pull request 'feat : Add variable log2ram_host_memtotal_mb for storing host memory total in MB' (#37) from dev into main
All checks were successful
ansible-lint / Ansible Lint (push) Successful in 12s
Details
Gitleaks Scan / gitleaks (push) Successful in 4s
Details
Markdown Lint / markdown-lint (push) Successful in 5s
Details 
Reviewed-on: #37
 2026-02-16 17:58:40 +01:00
1 changed files with 7 additions and 16 deletions
Expand all files Collapse all files

23
tasks/fail2ban.yml
View File

@@ -94,6 +94,7 @@
backend = systemd
banaction = {% if (clustered.stat.exists | default(false)) %} proxmox-fw{% else %} iptables-multiport{% endif %}
ignoreip = 127.0.0.1/8 192.168.2.0/24
# {% if pmxcfs_running.stat.exists %} {{ corosync_networks | join(' ') }}{% endif %}
#################################################
# SSH
@@ -152,16 +153,10 @@
{{
'/etc/pve/firewall/cluster.fw'
if clustered.stat.exists
else '/etc/pve/nodes/' + pve_node + '/host.fw'
else '/etc/pve/nodes/' + pve_node + '.fw'
}}
when: pve_installed.stat.exists | default(false)
- name: fail2ban | Show firewall config path
ansible.builtin.debug:
msg: >
WARNING: Proxmox firewall config path is: {{ pve_firewall_config}}
when: pve_firewall_config is defined
#################################################
# Detect firewall configuration
#################################################
@@ -178,19 +173,15 @@
register: fw_content
when: fw_stat.stat.exists | default(false)
- name: fail2ban | Debug config contents
ansible.builtin.debug:
msg: >
{{ fw_content }}
when: fw_stat.stat.exists | default(false)
- name: fail2ban | Determine if firewall enabled
ansible.builtin.set_fact:
pve_firewall_enabled: >-
{{
fw_stat.stat.exists and
(fw_content.content | b64decode)
is search('^enable:\s*1$', multiline=True)
(fw_stat.stat.exists | default(false)) and
(
(fw_content.content | default('') | b64decode)
is search('enable:\s*1')
)
}}
- name: fail2ban | Warn if firewall not enabled