StefanMewes/Nebula-Ansible-Role
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

README.md aktualisiert

Browse Source
This commit is contained in:
StefanMewes
2026-04-13 06:03:48 +00:00
parent 750eca8e0a
commit b123b5cc57
1 changed files with 22 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

35
README.md
View File

@@ -11,22 +11,32 @@ You can read more about Nebula [on the official repo](https://github.com/slackhq
# Example Playbook # Example Playbook
``` ```
--- ---
- name: Deploy Nebula - name: Deploy Nebula (multi-lighthouse)
hosts: all hosts: all
gather_facts: yes gather_facts: yes
user: ansible user: ansible
become: yes become: yes
vars: vars:
nebula_version: 1.8.0 nebula_version: 1.8.0
nebula_network_name: "Company Nebula Mgmt Net" nebula_network_name: "My Company Nebula"
nebula_network_cidr: 16 nebula_network_cidr: 16
nebula_lighthouse_internal_ip_addr: 10.43.0.1 # --- Multi-Lighthouse Configuration ---
nebula_lighthouse_public_hostname: lighthouse.company.com # The FIRST entry is the primary (hosts the CA key).
nebula_lighthouse_public_port: 4242 # All additional entries are secondaries.
nebula_lighthouses:
nebula_firewall_drop_action: reject - hostname: lighthouse1
internal_ip: 10.43.0.1
public_hostname: lh1.example.com
public_port: 4242
is_relay: true
- hostname: lighthouse2
internal_ip: 10.43.0.2
public_hostname: lh2.example.com
public_port: 4242
is_relay: true
nebula_firewall_block_action: reject
nebula_inbound_rules: nebula_inbound_rules:
- { port: "any", proto: "icmp", host: "any" } - { port: "any", proto: "icmp", host: "any" }
- { port: 22, proto: "tcp", host: "any" } - { port: 22, proto: "tcp", host: "any" }
@@ -40,14 +50,13 @@ You can read more about Nebula [on the official repo](https://github.com/slackhq
# Example Inventory # Example Inventory
``` ```
[nebula_lighthouse] [nebula_lighthouse]
lighthouse01.company.com lighthouse1.example.com
lighthouse2.example.com
[servers] [servers]
web01.company.com nebula_internal_ip_addr=10.43.0.2 web01.example.com nebula_internal_ip_addr=10.43.0.10
docker01.company.com nebula_internal_ip_addr=10.43.0.3 docker01.example.com nebula_internal_ip_addr=10.43.0.11
zabbix01.company.com nebula_internal_ip_addr=10.43.0.4 db01.example.com nebula_internal_ip_addr=10.43.0.12
backup01.company.com nebula_internal_ip_addr=10.43.0.5
pbx01.company.com nebula_internal_ip_addr=10.43.0.6
``` ```
**Note:** More variables can be found in the [role defaults.](defaults/main.yml) **Note:** More variables can be found in the [role defaults.](defaults/main.yml)