ansible-playbook -i inventoryPath setIp.yml ansible-playbook -i inventoryPath lab.yml ansible-playbook -i inventoryKubeClusterPath --become --become-user=root subProject/kubespray/cluster.yml
export KUBECONFIG=/etc/kubernetes/kubelet.conf
- fixedIP (not perfect) (WIN ok, CENTOS ok, ubuntu TODO)
- setupFirewall (rule all to all)(only pfsense) (TODO port forwarding) // TODO https://www.sophos.com/fr-fr/products/free-tools/sophos-utm-home-edition.aspx fortinet update (TODO)
- Domain (dns), join, users, (add dns for ip TODO)
- PKI (only windows, add standalone, TODO openssl (non windows host)), GPO deploiement root certr ISSI etc ... (TODO)
- Service 1er niveau (docker, kubernetes (TODO use PKI certificate)) (pas dessuite)
- Create directory structure, upload file (linux TODO)
- File share, (smb(win_share), dfs) TODO
- GPO, TODO (here to get the file share (necessary ?))
- tools (TODO)
- ELK
- SIEM
- monitoring
- wazuh
- ...
- ... ?
- firewall production rule