diff options
| author | heqnx <root@heqnx.com> | 2025-06-27 16:46:29 +0300 |
|---|---|---|
| committer | heqnx <root@heqnx.com> | 2025-06-27 16:46:29 +0300 |
| commit | ee794c22887a93d41ccc44009b66d567712bf0a7 (patch) | |
| tree | 5c82298dc7ba5e869f1f2741137f16b80f0e2996 | |
| parent | 90a7b5ff6c387600c7a2e5732e33b36cff07deea (diff) | |
| download | ansible-pve-host-ee794c22887a93d41ccc44009b66d567712bf0a7.tar.gz ansible-pve-host-ee794c22887a93d41ccc44009b66d567712bf0a7.zip | |
added custom /etc/motd based on pvebanner, instead of /etc/issue
| -rw-r--r-- | tasks/pve_configure.yaml | 33 | ||||
| -rw-r--r-- | templates/pvebanner.bash | 27 |
2 files changed, 60 insertions, 0 deletions
diff --git a/tasks/pve_configure.yaml b/tasks/pve_configure.yaml index c19964a..e1a22a7 100644 --- a/tasks/pve_configure.yaml +++ b/tasks/pve_configure.yaml @@ -99,6 +99,39 @@ dest: /root/pve-create-template.sh mode: '0744' +- name: deploy /usr/bin/pvebanner.bash + template: + src: pvebanner.bash + dest: /usr/bin/pvebanner.bash + owner: root + group: root + mode: '0744' + +- name: create /etc/systemd/system/pvebanner.service.d directory + file: + path: /etc/systemd/system/pvebanner.service.d + state: directory + mode: '0755' + +- name: override pvebanner.service ExecStart with pvebanner.bash + blockinfile: + path: /etc/systemd/system/pvebanner.service.d/override.conf + create: yes + block: | + [Service] + ExecStart= + ExecStart=/usr/bin/pvebanner.bash + +- name: reload systemd daemon + command: systemctl daemon-reload + +- name: restart pvebanner service + systemd: + name: pvebanner.service + state: restarted + enabled: true + when: ansible_service_mgr == 'systemd' + - name: generate secure 32-character password set_fact: pve_admin_user: "pveadmin@pve" diff --git a/templates/pvebanner.bash b/templates/pvebanner.bash new file mode 100644 index 0000000..7f79b6d --- /dev/null +++ b/templates/pvebanner.bash @@ -0,0 +1,27 @@ +#!/bin/bash +set -e + +LISTEN_IP=$(grep '^LISTEN_IP=' /etc/default/pveproxy | cut -d'"' -f2) +NAT_SUBNET={{ nat_subnet }} +NAT_SUBNET_PREFIX={{ nat_subnet_prefix }} +NAT_BRIDGE_IP={{ nat_bridge_ip }} +WG_SUBNET={{ wg_subnet }} +WG_PORT={{ wg_port }} + +> /etc/issue + +cat > /etc/motd << EOF +Welcome to the Proxmox Virtual Environment. Please use your web browser to +configure this server, only accessible via WireGuard: + + https://${LISTEN_IP}:8006 + +Network configuration: + + - VM/CT subnet ${NAT_SUBNET} + - dnsmasq for vmbr1 ${NAT_SUBNET_PREFIX}.100 - ${NAT_SUBNET_PREFIX}.200, 12h + - Bridge IP ${NAT_BRIDGE_IP} + - WireGuard subnet ${WG_SUBNET} + - Wireguard port ${WG_PORT} + +EOF |