Correction d'erreurs et LDAP

2020-03-12 19:36:47 +01:00
parent 0b5ee7039a
commit e8288d5823
18 changed files with 1349 additions and 1257 deletions
--- a/deploiement/deploiement_avec_ansible.md
+++ b/deploiement/deploiement_avec_ansible.md
@@ -73,11 +73,11 @@ Voici les tâches à réaliser avant de lancer le playbook.
 Ajoutez
 ```
 [haproxy]
-10.1.0.100 #HAProxy Alpha
-10.1.0.101 #HAProxy Beta
+10.1.0.102 #HAProxy Alpha
+10.1.0.103 #HAProxy Beta

 [dns]
-10.1.0.106 #DNS
+10.1.0.107 #DNS

 [zonedmz:children]
 haproxy
--- a/deploiement/sources/zone_dmz/ct_dmz.yml
+++ b/deploiement/sources/zone_dmz/ct_dmz.yml
@@ -1,7 +1,7 @@
 # HAProxy et DNS
-# HAProxy Master (CT100) : 10.0.0.6 | 10.0.1.1 | 10.0.3.1 | 10.1.0.100
-# HAProxy Slave (CT101) : 10.0.0.7 | 10.0.1.2  10.0.3.2 | 10.1.0.101
-# DNS (CT106): 10.0.0.253 | | 10.0.1.253 | 10.0.2.253 | 10.1.0.106
+# HAProxy Master (CT102) : 10.0.0.6 | 10.0.1.1 | 10.0.3.1 | 10.1.0.102
+# HAProxy Slave (CT103) : 10.0.0.7 | 10.0.1.2  10.0.3.2 | 10.1.0.103
+# DNS (CT107): 10.0.0.253 | | 10.0.1.253 | 10.0.2.253 | 10.1.0.107
 # Gateway 10.0.0.0/24 -> 10.0.0.254
 # Gateway 10.0.1.0/24 -> 10.0.1.254
 # Gateway 10.0.3.0/24 -> 10.0.3.254
@@ -32,11 +32,11 @@
        ostemplate: 'local:vztmpl/debian-10.0-standard_10.0-1_amd64.tar.gz'
        password: "{{ pass_haproxy_master }}"
        hostname: HAProxyMaster
-        vmid: 101
+        vmid: 102
        onboot: yes
        unprivileged: yes
        nameserver: '10.0.0.253'
-        netif: '{"net0":"name=eth0,ip=10.0.0.6/24,gw=10.0.0.254,bridge=vmbr1,tag=10","net1":"name=eth1,ip=10.0.1.1/24,gw=10.0.1.254,bridge=vmbr1,tag=20","net2":"name=eth2,ip=10.0.3.1/24,gw=10.0.3.254,bridge=vmbr1,tag=40","net3":"name=eth3,ip=10.1.0.101/24,gw=10.1.0.254,bridge=vmbr2,tag=100"}'
+        netif: '{"net0":"name=eth0,ip=10.0.0.6/24,gw=10.0.0.254,bridge=vmbr1,tag=10","net1":"name=eth1,ip=10.0.1.1/24,gw=10.0.1.254,bridge=vmbr1,tag=20","net2":"name=eth2,ip=10.0.3.1/24,gw=10.0.3.254,bridge=vmbr1,tag=40","net3":"name=eth3,ip=10.1.0.102/24,gw=10.1.0.254,bridge=vmbr2,tag=100"}'
        pubkey: "{{ ssh_pub }}"
        state: present

@@ -55,11 +55,11 @@
        ostemplate: 'local:vztmpl/debian-10.0-standard_10.0-1_amd64.tar.gz'
        password: "{{ pass_haproxy_slave }}"
        hostname: HAProxySlave
-        vmid: 102
+        vmid: 103
        onboot: yes
        unprivileged: yes
        nameserver: '10.0.0.253'
-        netif: '{"net0":"name=eth0,ip=10.0.0.7/24,gw=10.0.0.254,bridge=vmbr1,tag=10","net1":"name=eth1,ip=10.0.1.2/24,gw=10.0.1.254,bridge=vmbr1,tag=20","net2":"name=eth2,ip=10.0.3.2/24,gw=10.0.3.254,bridge=vmbr1,tag=40","net3":"name=eth3,ip=10.1.0.102/24,gw=10.1.0.254,bridge=vmbr2,tag=100"}'
+        netif: '{"net0":"name=eth0,ip=10.0.0.7/24,gw=10.0.0.254,bridge=vmbr1,tag=10","net1":"name=eth1,ip=10.0.1.2/24,gw=10.0.1.254,bridge=vmbr1,tag=20","net2":"name=eth2,ip=10.0.3.2/24,gw=10.0.3.254,bridge=vmbr1,tag=40","net3":"name=eth3,ip=10.1.0.103/24,gw=10.1.0.254,bridge=vmbr2,tag=100"}'
        pubkey: "{{ ssh_pub }}"
        state: present

@@ -78,11 +78,11 @@
        ostemplate: 'local:vztmpl/debian-10.0-standard_10.0-1_amd64.tar.gz'
        password: "{{ pass_dns }}"
        hostname: DNS
-        vmid: 106
+        vmid: 107
        onboot: yes
        unprivileged: yes
        nameserver: '80.67.169.12,80.67.169.40'
-        netif: '{"net0":"name=eth0,ip=10.0.0.253/24,gw=10.0.0.254,bridge=vmbr1,tag=10","net1":"name=eth1,ip=10.0.1.253/24,gw=10.0.1.254,bridge=vmbr1,tag=20","net2":"name=eth2,ip=10.0.2.253/24,gw=10.0.2.254,bridge=vmbr1,tag=30","net3":"name=eth3,ip=10.1.0.106/24,gw=10.1.0.254,bridge=vmbr2,tag=100"}'
+        netif: '{"net0":"name=eth0,ip=10.0.0.253/24,gw=10.0.0.254,bridge=vmbr1,tag=10","net1":"name=eth1,ip=10.0.1.253/24,gw=10.0.1.254,bridge=vmbr1,tag=20","net2":"name=eth2,ip=10.0.2.253/24,gw=10.0.2.254,bridge=vmbr1,tag=30","net3":"name=eth3,ip=10.1.0.107/24,gw=10.1.0.254,bridge=vmbr2,tag=100"}'
        pubkey: "{{ ssh_pub }}"
        state: present

@@ -94,9 +94,9 @@
        vmid: "{{ item }}"
        state: started
      with_items:
-        - '101'
        - '102'
-        - '106'
+        - '103'
+        - '107'

 # Pas de config des proxy car sur accès au net depuis la DMZ.

--- a/deploiement/sources/zone_proxy/ct_proxy.yml
+++ b/deploiement/sources/zone_proxy/ct_proxy.yml
@@ -1,6 +1,6 @@
 # NGINX REVERSE
-# Nginx Alpha (CT104) : 10.0.1.3 | 10.0.2.4 | 10.1.0.104
-# Nginx Beta (CT105) : 10.0.1.4 | 10.0.2.5 | 10.1.0.105
+# Nginx Alpha (CT105) : 10.0.1.3 | 10.0.2.4 | 10.1.0.105
+# Nginx Beta (CT106) : 10.0.1.4 | 10.0.2.5 | 10.1.0.106
 # Gateway 10.0.1.0/24 -> 10.0.1.254
 # Gateway 10.0.2.0/24 -> 10.0.2.254
 # Gateway 10.1.0.0/24 -> 10.1.0.254
@@ -34,7 +34,7 @@
        onboot: yes
        unprivileged: yes
        nameserver: '10.0.1.253'
-        netif: '{"net0":"name=eth0,ip=10.0.1.3/24,gw=10.0.1.254,bridge=vmbr1,tag=20","net1":"name=eth1,ip=10.0.2.4/24,gw=10.0.2.254,bridge=vmbr1,tag=30","net3":"name=eth3,ip=10.1.0.104/24,gw=10.1.0.254,bridge=vmbr2,tag=100"}'
+        netif: '{"net0":"name=eth0,ip=10.0.1.3/24,gw=10.0.1.254,bridge=vmbr1,tag=20","net1":"name=eth1,ip=10.0.2.4/24,gw=10.0.2.254,bridge=vmbr1,tag=30","net3":"name=eth3,ip=10.1.0.105/24,gw=10.1.0.254,bridge=vmbr2,tag=100"}'
        pubkey: "{{ ssh_pub }}"
        state: present

@@ -57,7 +57,7 @@
        onboot: yes
        unprivileged: yes
        nameserver: '10.0.1.253'
-        netif: '{"net0":"name=eth0,ip=10.0.1.4/24,gw=10.0.1.254,bridge=vmbr1,tag=20","net1":"name=eth1,ip=10.0.2.5/24,gw=10.0.2.254,bridge=vmbr1,tag=30","net3":"name=eth3,ip=10.1.0.105/24,gw=10.1.0.254,bridge=vmbr2,tag=100"}'
+        netif: '{"net0":"name=eth0,ip=10.0.1.4/24,gw=10.0.1.254,bridge=vmbr1,tag=20","net1":"name=eth1,ip=10.0.2.5/24,gw=10.0.2.254,bridge=vmbr1,tag=30","net3":"name=eth3,ip=10.1.0.106/24,gw=10.1.0.254,bridge=vmbr2,tag=100"}'
        pubkey: "{{ ssh_pub }}"
        state: present