diff options
| author | Aaron LI <aly@aaronly.me> | 2018-02-22 00:21:22 +0800 |
|---|---|---|
| committer | Aaron LI <aly@aaronly.me> | 2018-03-14 11:28:41 +0800 |
| commit | 6e2c2eb10093938e02a0d44726f71f82c7ffc5b8 (patch) | |
| tree | f4fd2c88e6bc661d7f01ab62737fb8603b0cef87 | |
| parent | 89160f6d4f94b872663edff3d736cf8e52d8928f (diff) | |
| download | ansible-dfly-vps-6e2c2eb10093938e02a0d44726f71f82c7ffc5b8.tar.bz2 | |
Add role shadowsocks
| -rw-r--r-- | deploy.yml | 1 | ||||
| -rw-r--r-- | host_vars/vultr | 6 | ||||
| -rw-r--r-- | roles/shadowsocks/handlers/main.yml | 3 | ||||
| -rw-r--r-- | roles/shadowsocks/tasks/main.yml | 32 | ||||
| -rw-r--r-- | roles/shadowsocks/templates/config.json.j2 | 13 |
5 files changed, 55 insertions, 0 deletions
@@ -6,6 +6,7 @@ roles: - packages + - shadowsocks - dns # vim: set ft=yaml sw=2: # diff --git a/host_vars/vultr b/host_vars/vultr index 324b8c1..630d3a2 100644 --- a/host_vars/vultr +++ b/host_vars/vultr @@ -3,4 +3,10 @@ ansible_ssh_host: vultr.liwt.net ansible_ssh_port: 8864 ansible_python_interpreter: /usr/local/bin/python2.7 +shadowsocks: + server_port: 8989 + password: "???" + method: "chacha20-ietf-poly1305" + nameserver: "8.8.8.8" + # vim: set ft=yaml sw=2: # diff --git a/roles/shadowsocks/handlers/main.yml b/roles/shadowsocks/handlers/main.yml new file mode 100644 index 0000000..a4b1aec --- /dev/null +++ b/roles/shadowsocks/handlers/main.yml @@ -0,0 +1,3 @@ +--- +- name: restart-shadowsocks + command: rcrestart shadowsocks-libev diff --git a/roles/shadowsocks/tasks/main.yml b/roles/shadowsocks/tasks/main.yml new file mode 100644 index 0000000..5065085 --- /dev/null +++ b/roles/shadowsocks/tasks/main.yml @@ -0,0 +1,32 @@ +--- +- name: install shadowsocks-libev + pkgng: + name: shadowsocks-libev + state: present + +- name: setup configuration file + template: + src: config.json.j2 + dest: /usr/local/etc/shadowsocks-libev/config.json + mode: 0640 + notify: restart-shadowsocks + +- name: enable and start service + command: rcenable shadowsocks-libev + +- name: show client-side config + vars: + config: | + "{" + "server": "{{ ansible_ssh_host }}", + "server_port": {{ shadowsocks.server_port }}, + "local_port": 1080, + "password": "{{ shadowsocks.password }}", + "method": "{{ shadowsocks.method }}", + "timeout": 600, + "fast_open": true, + "reuse_port": true, + "no_delay": true + "}" + debug: + msg: "{{ config.split('\n') }}" diff --git a/roles/shadowsocks/templates/config.json.j2 b/roles/shadowsocks/templates/config.json.j2 new file mode 100644 index 0000000..c5fb0cb --- /dev/null +++ b/roles/shadowsocks/templates/config.json.j2 @@ -0,0 +1,13 @@ +{ + "server": ["::0", "0.0.0.0"], + "server_port": {{ shadowsocks.server_port }}, + "local_port": 1080, + "password": "{{ shadowsocks.password }}", + "method": "{{ shadowsocks.method }}", + "nameserver": "{{ shadowsocks.nameserver }}", + "timeout": 600, + "fast_open": true, + "reuse_port": true, + "no_delay": true, + "user": "nobody" +} |