Benoit/pyinfra-lxd
Archived
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
This repository has been archived on 2025-02-14. You can view files and clone it, but cannot push or open issues or pull requests.
pyinfra-lxd/setup-base.py
Benoit S 58926a218e Break line
2021-01-31 21:16:22 +09:00

129 lines
2.5 KiB
Python
Raw Blame History

from pyinfra import host
from pyinfra.operations import apt, server, files, systemd
SUDO = True
server.user(
name='Add user benpro',
user='benpro',
groups=['sudo'],
public_keys='ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFs7yO0auvwFL8HTLMUq6lET6DMYLhqhd32rqFfZUsjL openpgp:0xA32E99AD',
shell='/bin/bash',
present=True,
)
server.hostname(
name='Set the hostname',
hostname='lxd10.benpro.fr',
)
apt.update(
name='Update apt repositories',
)
apt.upgrade(
name='Upgrade apt packages',
)
apt.packages(
name='Install ufw',
packages=['ufw'],
update=False,
)
server.shell(
name='Add ufw rules',
commands=['ufw limit 22', 'ufw limit 28', 'ufw allow 80', 'ufw allow 443'],
)
server.shell(
name='Enable ufw',
commands=['yes | ufw enable'],
)
files.line(
name='Set port 28 for SSH',
path='/etc/ssh/sshd_config',
line=r'Port .*',
replace='Port 28',
)
systemd.service(
name='Reload sshd',
service='ssh.service',
reloaded=True,
)
apt.packages(
name='Install packages',
packages=['zfsutils-linux', 'manpages', 'man', 'snapd', 'vim', 'file',
'parted', 'htop', 'ncdu', 'byobu', 'tcpdump', 'lm-sensors', 'iotop',
'strace', 'lsof', 'iftop'],
update=False,
)
if not host.fact.directory('/var/snap/lxd'):
server.shell(
name='Install lxd',
commands=['snap install lxd'],
)
if not host.fact.command('file -s /dev/sdc1 | grep swap || true'):
server.shell(
name='Create swap',
commands=['wipefs -a /dev/sdc1', 'mkswap /dev/sdc1'],
)
files.line(
name='Add swap to /etc/fstab',
path='/etc/fstab',
line='/dev/sdc1 none swap defaults 0 0',
)
server.shell(
name='Enable swap',
commands=['swapon -a'],
)
files.line(
name='Disable intel_pstate',
path='/etc/default/grub',
line='GRUB_CMDLINE_LINUX="intel_pstate=disable"',
)
server.shell(
name='Reload grub',
commands=['update-grub'],
)
files.put(
name='Install set-cpufreq-performance',
src='files/set-cpufreq-performance',
dest='/lib/systemd/set-cpufreq-performance',
user='root',
group='root',
mode='755',
)
files.put(
name='Override systemd ondemand.service',
src='files/ondemand.service',
dest='/etc/systemd/system/ondemand.service',
user='root',
group='root',
mode='644',
)
systemd.daemon_reload(
name='Reload systemd',
user_mode=False,
)
systemd.service(
name='Restart and enable ondemand service',
service='ondemand.service',
running=True,
restarted=True,
enabled=True,
)
Reference in a new issue View git blame Copy permalink