mirror of
https://github.com/ansible-collections/hetzner.hcloud
synced 2024-11-10 06:34:13 +00:00
fb8c2a9f58
Learn more: https://docs.hetzner.cloud/changelog#2024-06-06-old-server-types-with-shared-intel-vcpus-are-deprecated - Updated docs with newer server types - Use ARM server type for tests
62 lines
1.5 KiB
YAML
62 lines
1.5 KiB
YAML
---
|
|
- name: Demonstrate creating servers with a firewall
|
|
hosts: localhost
|
|
connection: local
|
|
|
|
vars:
|
|
servers:
|
|
- name: my-server1
|
|
- name: my-server2
|
|
|
|
tasks:
|
|
- name: Create firewall
|
|
hetzner.hcloud.firewall:
|
|
name: my-firewall
|
|
rules:
|
|
- description: allow icmp from everywhere
|
|
direction: in
|
|
protocol: icmp
|
|
source_ips:
|
|
- 0.0.0.0/0
|
|
- ::/0
|
|
- description: allow ssh from everywhere
|
|
direction: in
|
|
protocol: tcp
|
|
port: 22
|
|
source_ips:
|
|
- 0.0.0.0/0
|
|
- ::/0
|
|
state: present
|
|
|
|
- name: Create servers
|
|
hetzner.hcloud.server:
|
|
name: "{{ item.name }}"
|
|
server_type: cx22
|
|
image: debian-12
|
|
labels:
|
|
kind: runners
|
|
state: started
|
|
loop: "{{ servers }}"
|
|
|
|
- name: Apply firewall to resources using label selectors
|
|
hetzner.hcloud.firewall_resource:
|
|
firewall: my-firewall
|
|
label_selectors: [kind=runners]
|
|
state: present
|
|
|
|
- name: Apply firewall to individual servers
|
|
hetzner.hcloud.firewall_resource:
|
|
firewall: my-firewall
|
|
servers: "{{ servers | map(attribute='name') }}"
|
|
state: present
|
|
|
|
- name: Delete firewall
|
|
hetzner.hcloud.firewall:
|
|
name: my-firewall
|
|
state: absent
|
|
|
|
- name: Delete servers
|
|
hetzner.hcloud.server:
|
|
name: "{{ item.name }}"
|
|
state: absent
|
|
loop: "{{ servers }}"
|