olli/debian.ansible.samba.server
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

first commit

Browse Source
This commit is contained in:
olli 2022-07-10 10:51:08 +02:00
commit b487c4a4b6
2 changed files with 85 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

0
README.md Normal file
View File

85
samba.yml Normal file
View File

@ -0,0 +1,85 @@
---
- name: basic samba config
hosts: defiant.dedyn.io tor-nas.dedyn.io
tasks:
- name: Needed software
apt:
name:
- samba
update_cache: no
install_recommends: no
- name: Samba Server (CIFS) basic config
blockinfile:
path: /etc/samba/smb-{{ ansible_facts['hostname'] }}.conf
create: yes
mode: "0444"
owner: root
group: root
marker: "# {mark} ANSIBLE MANAGED BLOCK"
block: |
[global]
workgroup = smb
security = user
map to guest = never
# log level = 3
# min protocol = CORE
backup: yes
notify:
- Restart samba
- name: Samba Server (CIFS) service
blockinfile:
path: /etc/systemd/system/samba-{{ ansible_facts['hostname'] }}.service
create: yes
mode: "0444"
owner: root
group: root
marker: "# {mark} ANSIBLE MANAGED BLOCK"
block: |
[Unit]
Description=dnsmasq tornet0 DNS and DHCP
After=network.target
[Service]
Type=forking
ExecStart=/usr/sbin/smbd -s /etc/samba/smb-{{ ansible_facts['hostname'] }}.conf -D
KillMode=process
Restart=on-failure
[Install]
WantedBy=multi-user.target
backup: yes
notify:
- Restart samba
- name: add samba-{{ ansible_facts['hostname'] }} to startup
command: systemctl enable samba-{{ ansible_facts['hostname'] }}
args:
creates: /etc/systemd/system/multi-user.target.wants/samba-{{ ansible_facts['hostname'] }}.service
- name: Allow cifs access from RFC1918 (local) networks
community.general.ufw:
rule: allow
port: '445'
proto: tcp
src: '{{ item }}'
loop:
- 10.0.0.0/8
- 172.16.0.0/12
- 192.168.0.0/16
handlers:
- name: Restart samba
service:
name: samba-{{ ansible_facts['hostname'] }}
state: restarted