Use systemd unit files for stunnel4.

1 files changed, 8 insertions, 0 deletions

diff --git a/roles/common/tasks/main.yml b/roles/common/tasks/main.yml
index 3e6a4a8..14cb7ae 100644
--- a/roles/common/tasks/main.yml
+++ b/roles/common/tasks/main.yml
@@ -1,34 +1,37 @@
 ---
 - include: sysctl.yml
   tags: sysctl
 - include: hosts.yml
 - include: apt.yml
   tags: apt
 - name: Install intel-microcode
   apt: pkg=intel-microcode
   when: "ansible_processor[0] | search('^(Genuine)?Intel.*') and not (ansible_virtualization_role == 'guest' and ansible_virtualization_type == 'xen')"
   tags: intel
 - include: firewall.yml
   tags:
     - firewall
     - iptables
+
+- include: stunnel.yml
+  tags: stunnel
 - include: samhain.yml
   tags: samhain
 - include: auditd.yml
   tags: auditd
 - include: rkhunter.yml
   tags: rkhunter
 - include: clamav.yml
   tags: clamav
 - include: fail2ban.yml
   tags: fail2ban
 - include: smart.yml
   tags:
     - smartmontools
     - smart
   when: "not ((ansible_virtualization_role == 'guest' and ansible_virtualization_type == 'xen') or ansible_system_vendor == 'QEMU')"
 - include: haveged.yml
   tags:
     - haveged
     - entropy
 - name: Copy genkeypair.sh and gendhparam.sh
@@ -42,33 +45,38 @@
     - gendhparam.sh
 - name: Generate DH parameters
   command: gendhparam.sh /etc/ssl/private/dhparams.pem creates=/etc/ssl/private/dhparams.pem
   tags: genkey
 - include: logging.yml
   tags: logging
 - include: ntp.yml
   tags: ntp
 - include: mail.yml
   tags:
     - mail
     - postfix
 - include: bacula.yml
   tags:
     - bacula-fd
     - bacula
 - include: munin-node.yml
   tags:
     - munin-node
     - munin
+- include: munin-node-ssl.yml
+  when: "'munin-master' not in group_names"
+  tags:
+    - munin-node
+    - munin
 
 - name: Install common packages
   apt: pkg={{ item }}
   with_items:
     - ca-certificates
     - etckeeper
     - ethtool
     - git
     - htop
     - molly-guard
     - rsync
     - screen
     - telnet-ssl