Ansible Lab - Infraestrutura Segura

Ansible Lab — Infraestrutura Web Segura

control node → provisioning via SSH → 4 managed nodes

common hardening haproxy nginx mysql

▶ common,hardening,haproxy

▶ common,hardening,nginx,php

▶ common,hardening,mysql

⚙

control

Ansible Engine

192.168.56.1

RUNNING

⚖

lb-01

HAProxy

192.168.56.10

PENDING

🌐

web-01

Nginx + PHP

192.168.56.11

PENDING

🌐

web-02

Nginx + PHP

192.168.56.12

PENDING

🗄

db-01

MySQL

192.168.56.13

PENDING

$ ansible-playbook playbook.yml

PLAY [Provisionar Load Balancer] ***********************************

ok: [lb-01] changed: [lb-01 → haproxy installed, ufw enabled, fail2ban active]

PLAY [Provisionar Servidores Web] ***********************************

ok: [web-01] [web-02] changed: [nginx, php-fpm, hardening applied]

PLAY [Provisionar Banco de Dados] ***********************************

PLAY RECAP —— lb-01: ok=14 changed=12 web-01: ok=17 changed=15 web-02: ok=17 changed=15 db-01: ok=16 changed=14 unreachable=0 failed=0