Ansible for rke2 install on Alpine contiainers
This commit is contained in:
Sivert V. Sæther
32
roles/proxmox/tasks/main.yml
Normal file
32
roles/proxmox/tasks/main.yml
Normal file
@@ -0,0 +1,32 @@
|
||||
---
|
||||
- name: Set apparmor profile unconfined
|
||||
ansible.builtin.lineinfile:
|
||||
dest: "/etc/pve/lxc/{{ item }}.conf"
|
||||
regexp: ^lxc.apparmor.profile
|
||||
line: "lxc.apparmor.profile: unconfined"
|
||||
loop: "{{ kube_ids }}"
|
||||
notify: reboot containers
|
||||
|
||||
- name: Allow cgroup devices
|
||||
ansible.builtin.lineinfile:
|
||||
dest: "/etc/pve/lxc/{{ item }}.conf"
|
||||
regexp: ^lxc.cgroup.devices.allow
|
||||
line: "lxc.cgroup.devices.allow: a"
|
||||
loop: "{{ kube_ids }}"
|
||||
notify: reboot containers
|
||||
|
||||
- name: Blank out lxc.cap.drop
|
||||
ansible.builtin.lineinfile:
|
||||
dest: "/etc/pve/lxc/{{ item }}.conf"
|
||||
regexp: ^lxc.cap.drop
|
||||
line: "lxc.cap.drop: "
|
||||
loop: "{{ kube_ids }}"
|
||||
notify: reboot containers
|
||||
|
||||
- name: LXC auto mount proc and sys
|
||||
ansible.builtin.lineinfile:
|
||||
dest: "/etc/pve/lxc/{{ item }}.conf"
|
||||
regexp: ^lxc.mount.auto
|
||||
line: 'lxc.mount.auto: "proc:rw sys:rw"'
|
||||
loop: "{{ kube_ids }}"
|
||||
notify: reboot containers
|
||||
Reference in New Issue
Block a user