commit dd065ec3dd3047984a490204674fa2ff85702931 · hyperreal.bsky.moonshadow.dev/ansible-homelab

+39 -26

remote-logging-setup.yml

···

       1
       -
       ---

     

       2
        
       - hosts: remote_logging_clients

     

       3
        
         gather_facts: true

     

       4
        
         become: true

     

       5
       -
       

     

       6
        
         tasks:

     

       7
       -
           - name: Ensure rsyslog is installed

     

       8
        
             ansible.builtin.package:

     

       9
       -
               name: rsyslog

     

       10
        
               state: latest

     

       11
        
             when: ansible_system == "Linux"

     

       12
       -
       

     

       13
       -
           - name: Ensure rsyslog is enabled

     

       14
        
             ansible.builtin.systemd_service:

     

       15
       -
               name: rsyslog

     

       16
        
               enabled: true

     

       17
        
               state: started

     

       18
        
             when: ansible_service_mgr == "systemd"

     

       19
       -
       

     

       20
        
           - name: Remove any forwarding file if exists

     

       21
        
             ansible.builtin.file:

     

       22
       -
               path: /etc/rsyslog.d/forward.conf

     

       23
        
               state: absent

     

       24
        
             when: ansible_system == "Linux"

     

       25
       -
       

     

       26
       -
           - name: Get remote logging server headnet IP address

     

       27
        
             ansible.builtin.shell: tailscale status | grep "nas-aux" | awk '{print $1}'

     

       28
       -
             register: ctrl_headnet_ip_addr

     

       29
        
             changed_when: false

     

       30
       -
             failed_when: ctrl_headnet_ip_addr.rc != 0

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       31
        
       

     

       32
       -
           - name: Configure log forwarding

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       33
        
             ansible.builtin.blockinfile:

     

       34
       -
               path: /etc/rsyslog.d/forward.conf

     

       35
        
               create: true

     

       36
        
               owner: root

     

       37
        
               group: root

     

       38
        
               mode: 0644

     

       39
        
               block: |

     

       40
       -
                 # Forward to nas-aux.ayu-matrix.ts.net ({{ctrl_headnet_ip_addr.stdout}})

     

       41
       -
                 *.* action(type="omfwd" target="{{ctrl_headnet_ip_addr.stdout}}" port="514" protocol="tcp"

     

       42
       -
                     action.resumeRetryCount="100"

     

       43
       -
                     queue.type="linkedList" queue.size="10000")

     

       44
       -
             when: ansible_system == "Linux"

     

       45
        
       

     

       46
       -
           - name: Restart rsyslog

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       47
        
             ansible.builtin.systemd_service:

     

       48
       -
               name: rsyslog

     

       49
        
               enabled: true

     

       50
        
               state: restarted

     

       51
        
             when: ansible_service_mgr == "systemd"

     

       52
       -
       

     

       53
        
           - name: Set syslog flags for remote logging on FreeBSD

     

       54
        
             ansible.builtin.shell: sysrc syslog_flags="-s -v -v"

     

       55
        
             register: set_syslog_flags

     

       56
        
             changed_when: '"syslog_flags:  -> YES" in set_syslog_flags.stdout'

     

       57
        
             when: ansible_service_mgr == "bsdinit"

     

       58
       -
       

     

       59
        
           - name: Set log forwarding on FreeBSD

     

       60
        
             ansible.builtin.lineinfile:

     

       61
        
               path: /etc/syslog.conf

     

       62
        
               regexp: '^\*\.\*'

     

       63
       -
               line: "*.* @{{ctrl_headnet_ip_addr.stdout}}"

     

       64
        
               owner: root

     

       65
        
               group: wheel

     

       66
        
               mode: 0644

     

       67
        
             when: ansible_system == "FreeBSD"

     

       68
       -
       

     

       69
        
           - name: Restart syslogd

     

       70
        
             ansible.builtin.service:

     

       71
        
               name: syslogd

···

       0
        
       
     

       1
        
       - hosts: remote_logging_clients

     

       2
        
         gather_facts: true

     

       3
        
         become: true

     

       0
        
       
     

       4
        
         tasks:

     

       5
       +
           - name: Ensure syslog-ng is installed

     

       6
        
             ansible.builtin.package:

     

       7
       +
               name: syslog-ng

     

       8
        
               state: latest

     

       9
        
             when: ansible_system == "Linux"

     

       10
       +
           - name: Ensure syslog-ng is enabled

     

       0
        
       
     

       11
        
             ansible.builtin.systemd_service:

     

       12
       +
               name: syslog-ng

     

       13
        
               enabled: true

     

       14
        
               state: started

     

       15
        
             when: ansible_service_mgr == "systemd"

     

       0
        
       
     

       16
        
           - name: Remove any forwarding file if exists

     

       17
        
             ansible.builtin.file:

     

       18
       +
               path: /etc/syslog-ng/conf.d/forward.conf

     

       19
        
               state: absent

     

       20
        
             when: ansible_system == "Linux"

     

       21
       +
           - name: Get remote logging server tailnet IP address

     

       0
        
       
     

       22
        
             ansible.builtin.shell: tailscale status | grep "nas-aux" | awk '{print $1}'

     

       23
       +
             register: ctrl_tailnet_ip_addr

     

       24
        
             changed_when: false

     

       25
       +
             failed_when: ctrl_tailnet_ip_addr.rc != 0

     

       26
       +
           - name: Configure log forwarding (Debian)

     

       27
       +
             ansible.builtin.blockinfile:

     

       28
       +
               path: /etc/syslog-ng/conf.d/forward.conf

     

       29
       +
               create: true

     

       30
       +
               owner: root

     

       31
       +
               group: root

     

       32
       +
               mode: 0644

     

       33
       +
               block: |

     

       34
       +
                 # Forward to nas-aux ({{ctrl_tailnet_ip_addr.stdout}})

     

       35
       +
                 destination d_ewmm {

     

       36
       +
                   syslog-ng(server("{{ctrl_tailnet_ip_addr.stdout}}"));

     

       37
       +
                 };

     

       38
        
       

     

       39
       +
                 log {

     

       40
       +
                   source(s_src);

     

       41
       +
                   destination(d_ewmm);

     

       42
       +
                 };

     

       43
       +
             when: ansible_os_family == "Debian"

     

       44
       +
           - name: Configure log forwarding (Red Hat)

     

       45
        
             ansible.builtin.blockinfile:

     

       46
       +
               path: /etc/syslog-ng/conf.d/forward.conf

     

       47
        
               create: true

     

       48
        
               owner: root

     

       49
        
               group: root

     

       50
        
               mode: 0644

     

       51
        
               block: |

     

       52
       +
                 # Forward to nas-aux ({{ctrl_tailnet_ip_addr.stdout}})

     

       53
       +
                 destination d_ewmm {

     

       54
       +
                   syslog-ng(server("{{ctrl_tailnet_ip_addr.stdout}}"));

     

       55
       +
                 };

     

       0
        
       
     

       56
        
       

     

       57
       +
                 log {

     

       58
       +
                   source(s_sys);

     

       59
       +
                   destination(d_ewmm);

     

       60
       +
                 };

     

       61
       +
             when: ansible_os_family == "RedHat"

     

       62
       +
           - name: Restart syslog-ng

     

       63
        
             ansible.builtin.systemd_service:

     

       64
       +
               name: syslog-ng

     

       65
        
               enabled: true

     

       66
        
               state: restarted

     

       67
        
             when: ansible_service_mgr == "systemd"

     

       0
        
       
     

       68
        
           - name: Set syslog flags for remote logging on FreeBSD

     

       69
        
             ansible.builtin.shell: sysrc syslog_flags="-s -v -v"

     

       70
        
             register: set_syslog_flags

     

       71
        
             changed_when: '"syslog_flags:  -> YES" in set_syslog_flags.stdout'

     

       72
        
             when: ansible_service_mgr == "bsdinit"

     

       0
        
       
     

       73
        
           - name: Set log forwarding on FreeBSD

     

       74
        
             ansible.builtin.lineinfile:

     

       75
        
               path: /etc/syslog.conf

     

       76
        
               regexp: '^\*\.\*'

     

       77
       +
               line: "*.* @{{ctrl_tailnet_ip_addr.stdout}}"

     

       78
        
               owner: root

     

       79
        
               group: wheel

     

       80
        
               mode: 0644

     

       81
        
             when: ansible_system == "FreeBSD"

     

       0
        
       
     

       82
        
           - name: Restart syslogd

     

       83
        
             ansible.builtin.service:

     

       84
        
               name: syslogd