fossilfranv/set_ip_blacklist
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
90f533a1f3
set_ip_blacklist/README.md
fossilfranv 90f533a1f3 Update 'README.md'
2023-03-21 20:21:25 +01:00

744 B
Raw Blame History

setup_new_server

git clone

generate ssh key on target for root

allow root login : PermitRootLogin prohibit-password

add host IP or name to local (ansible machine) /etc/hosts

ansible-vault create passwd.yml or ansible-vault edit passwd.yml

move and edit config to ~.ssh/config

ssh-copy-id to target

test connection: ansible -m ping --ask-vault-pass --extra-vars '@passwd.yml' TARGET_IP OR NAME -u root

run playbook: ansible-playbook --ask-vault-pass --extra-vars '@passwd.yml' setup-pb.yml -l TARGET_IP OR NAME -u root

Reference: https://www.vultr.com/docs/how-to-configure-a-new-ubuntu-server-with-ansible/

modify /etc/sysctl.conf, add the line: net.ipv4.icmp_echo_ignore_all = 1 #don't respond to pings

and then: sudo sysctl -p