{"id":5389,"sha1":"17d39a5e27b7389edb881c3148742cb9efdf518e","playbook":{"id":3269,"items":{"plays":1,"tasks":4,"results":4,"hosts":1,"files":1,"records":0},"arguments":{"version":null,"verbosity":2,"private_key_file":"/home/ssh-gateway/.ssh/id_rsa","remote_user":"root","connection":"ssh","timeout":null,"ssh_common_args":null,"sftp_extra_args":null,"scp_extra_args":null,"ssh_extra_args":null,"ask_pass":false,"connection_password_file":null,"force_handlers":false,"flush_cache":false,"become":false,"become_method":"sudo","become_user":null,"become_ask_pass":false,"become_password_file":null,"tags":["all"],"skip_tags":[],"check":false,"diff":false,"inventory":["/home/ssh-gateway/ansible/kuly/solus-node.ini"],"listhosts":false,"subset":"dev","extra_vars":"Not saved by ARA as configured by 'ignored_arguments'","vault_ids":[],"ask_vault_pass":false,"vault_password_files":[],"forks":20,"module_path":null,"syntax":false,"listtasks":false,"listtags":false,"step":false,"start_at_task":null,"args":["manage_solus_access.yaml"]},"labels":[{"id":1,"name":"remote_user:root"},{"id":2,"name":"check:False"},{"id":3,"name":"tags:all"},{"id":12,"name":"subset:dev"}],"started":"2025-07-21T10:57:03.458159+01:00","ended":"2025-07-21T10:57:05.212948+01:00","duration":"00:00:01.754789","name":null,"ansible_version":"2.16.11","client_version":"1.7.2","python_version":"3.10.10","server_version":"1.7.2","status":"completed","path":"/home/ssh-gateway/ansible/kuly/manage_solus_access.yaml","controller":"ssh-gw-4.layershift.com","user":"root"},"content":"---\n- name: Playbook to allow and remove solus support access\n  hosts: all\n  vars:\n    allow_access: false\n    remove_access: false\n  tasks:\n    - name: Execute Allow Access Commands\n      ansible.builtin.shell: |\n        set -o pipefail\n        echo \"Executing allow access commands...\"\n        ipset create solus-support hash:net family inet hashsize 1024 maxelem 65536 comment\n        ipset add solus-support 195.214.233.0/24 comment \"solus1\"\n        ipset add solus-support 91.204.24.0/22 comment \"solus2\"\n        ipset add solus-support 91.204.25.0/22 comment \"solus3\"\n        ipset add solus-support 203.32.4.0/26 comment \"solus4\"\n        ipset add solus-support 203.214.176.0/24 comment \"solus5\"\n        ipset add solus-support 80.237.178.180 comment \"solus6\"\n        ipset add solus-support 81.184.0.141 comment \"solus7\"\n        ipset add solus-support 95.170.131.46 comment \"solus8\"\n        iptables -A INPUT -p tcp -m tcp --dport 22 -m set --match-set solus-support src -j ACCEPT\n        curl -o /tmp/install_accesskey.sh https://raw.githubusercontent.com/solusvm-support/helpers/master/install_accesskey.sh\n        chmod 751 /tmp/install_accesskey.sh\n        /tmp/install_accesskey.sh add\n        rm -f /tmp/install_accesskey.sh\n\n      args:\n        executable: /bin/bash\n      when: allow_access | bool\n      register: allow_result\n      changed_when: allow_result.rc == 0\n    - name: Debug Allow Access Output\n      ansible.builtin.debug:\n        var: allow_result\n      when: allow_access | bool and allow_result is defined\n    - name: Execute Remove Access Commands\n      ansible.builtin.shell: |\n        echo \"Executing remove access commands...\"\n        curl -o /tmp/install_accesskey.sh https://raw.githubusercontent.com/solusvm-support/helpers/master/install_accesskey.sh\n        chmod 751 /tmp/install_accesskey.sh\n        /tmp/install_accesskey.sh remove\n      args:\n        executable: /bin/bash\n      when: remove_access | bool\n      register: remove_result\n      changed_when: remove_result.rc == 0\n    - name: Debug Remove Access Output\n      ansible.builtin.debug:\n        var: remove_result\n      when: remove_access | bool and remove_result is defined\n","created":"2025-07-21T10:57:03.473367+01:00","updated":"2025-07-21T10:57:03.473392+01:00","path":"/home/ssh-gateway/ansible/kuly/manage_solus_access.yaml"}