|
|
@@ -16,6 +16,7 @@
|
|
|
#module_utils = /usr/share/my_module_utils/
|
|
|
#remote_tmp = ~/.ansible/tmp
|
|
|
#local_tmp = ~/.ansible/tmp
|
|
|
+#plugin_filters_cfg = /etc/ansible/plugin_filters.yml
|
|
|
#forks = 5
|
|
|
#poll_interval = 15
|
|
|
#sudo_user = root
|
|
|
@@ -51,7 +52,7 @@ gathering = smart
|
|
|
# with a maximum timeout of 10 seconds. This
|
|
|
# option lets you increase or decrease that
|
|
|
# timeout to something more suitable for the
|
|
|
-# environment.
|
|
|
+# environment.
|
|
|
# gather_timeout = 10
|
|
|
|
|
|
# additional paths to search for roles in, colon separated
|
|
|
@@ -60,17 +61,24 @@ gathering = smart
|
|
|
# uncomment this to disable SSH key host checking
|
|
|
#host_key_checking = False
|
|
|
|
|
|
-# change the default callback
|
|
|
+# change the default callback, you can only have one 'stdout' type enabled at a time.
|
|
|
stdout_callback = condensed
|
|
|
-# enable additional callbacks
|
|
|
+
|
|
|
+
|
|
|
+## Ansible ships with some plugins that require whitelisting,
|
|
|
+## this is done to avoid running all of a type by default.
|
|
|
+## These setting lists those that you want enabled for your system.
|
|
|
+## Custom plugins should not need this unless plugin author specifies it.
|
|
|
+
|
|
|
+# enable callback plugins, they can output to stdout but cannot be 'stdout' type.
|
|
|
#callback_whitelist = timer, mail
|
|
|
|
|
|
# Determine whether includes in tasks and handlers are "static" by
|
|
|
# default. As of 2.0, includes are dynamic by default. Setting these
|
|
|
# values to True will make includes behave more like they did in the
|
|
|
# 1.x versions.
|
|
|
-#task_includes_static = True
|
|
|
-#handler_includes_static = True
|
|
|
+#task_includes_static = False
|
|
|
+#handler_includes_static = False
|
|
|
|
|
|
# Controls if a missing handler for a notification event is an error or a warning
|
|
|
#error_on_missing_handler = True
|
|
|
@@ -277,7 +285,8 @@ module_compression = 'ZIP_DEFLATED'
|
|
|
# This controls how ansible handles multiple --tags and --skip-tags arguments
|
|
|
# on the CLI. If this is True then multiple arguments are merged together. If
|
|
|
# it is False, then the last specified argument is used and the others are ignored.
|
|
|
-#merge_multiple_cli_flags = False
|
|
|
+# This option will be removed in 2.8.
|
|
|
+#merge_multiple_cli_flags = True
|
|
|
|
|
|
# Controls showing custom stats at the end, off by default
|
|
|
#show_custom_stats = True
|
|
|
@@ -288,7 +297,7 @@ module_compression = 'ZIP_DEFLATED'
|
|
|
|
|
|
# This family of modules use an alternative execution path optimized for network appliances
|
|
|
# only update this setting if you know how this works, otherwise it can break module execution
|
|
|
-#network_group_modules=['eos', 'nxos', 'ios', 'iosxr', 'junos', 'vyos']
|
|
|
+#network_group_modules=eos, nxos, ios, iosxr, junos, vyos
|
|
|
|
|
|
# When enabled, this option allows lookups (via variables like {{lookup('foo')}} or when used as
|
|
|
# a loop with `with_foo`) to return data that is not marked "unsafe". This means the data may contain
|
|
|
@@ -296,6 +305,22 @@ module_compression = 'ZIP_DEFLATED'
|
|
|
# ENABLING THIS COULD BE A SECURITY RISK
|
|
|
#allow_unsafe_lookups = False
|
|
|
|
|
|
+# set default errors for all plays
|
|
|
+#any_errors_fatal = False
|
|
|
+
|
|
|
+[inventory]
|
|
|
+# enable inventory plugins, default: 'host_list', 'script', 'yaml', 'ini'
|
|
|
+#enable_plugins = host_list, virtualbox, yaml, constructed
|
|
|
+
|
|
|
+# ignore these extensions when parsing a directory as inventory source
|
|
|
+#ignore_extensions = .pyc, .pyo, .swp, .bak, ~, .rpm, .md, .txt, ~, .orig, .ini, .cfg, .retry
|
|
|
+
|
|
|
+# ignore files matching these patterns when parsing a directory as inventory source
|
|
|
+#ignore_patterns=
|
|
|
+
|
|
|
+# If 'true' unparsed inventory sources become fatal errors, they are warnings otherwise.
|
|
|
+#unparsed_is_failed=False
|
|
|
+
|
|
|
[privilege_escalation]
|
|
|
#become=True
|
|
|
#become_method=sudo
|
|
|
@@ -334,16 +359,16 @@ module_compression = 'ZIP_DEFLATED'
|
|
|
#ssh_args = -C -o ControlMaster=auto -o ControlPersist=60s
|
|
|
ssh_args = -C -o ControlMaster=auto -o ControlPersist=60s -o ForwardAgent=yes
|
|
|
|
|
|
-# The base directory for the ControlPath sockets.
|
|
|
+# The base directory for the ControlPath sockets.
|
|
|
# This is the "%(directory)s" in the control_path option
|
|
|
-#
|
|
|
-# Example:
|
|
|
+#
|
|
|
+# Example:
|
|
|
# control_path_dir = /tmp/.ansible/cp
|
|
|
#control_path_dir = ~/.ansible/cp
|
|
|
|
|
|
-# The path to use for the ControlPath sockets. This defaults to a hashed string of the hostname,
|
|
|
-# port and username (empty string in the config). The hash mitigates a common problem users
|
|
|
-# found with long hostames and the conventional %(directory)s/ansible-ssh-%%h-%%p-%%r format.
|
|
|
+# The path to use for the ControlPath sockets. This defaults to a hashed string of the hostname,
|
|
|
+# port and username (empty string in the config). The hash mitigates a common problem users
|
|
|
+# found with long hostames and the conventional %(directory)s/ansible-ssh-%%h-%%p-%%r format.
|
|
|
# In those cases, a "too long for Unix domain socket" ssh error would occur.
|
|
|
#
|
|
|
# Example:
|
|
|
@@ -379,25 +404,35 @@ pipelining = True
|
|
|
# only be disabled if your sftp version has problems with batch mode
|
|
|
#sftp_batch_mode = False
|
|
|
|
|
|
+# The -tt argument is passed to ssh when pipelining is not enabled because sudo
|
|
|
+# requires a tty by default.
|
|
|
+#use_tty = True
|
|
|
+
|
|
|
+# Number of times to retry an SSH connection to a host, in case of UNREACHABLE.
|
|
|
+# For each retry attempt, there is an exponential backoff,
|
|
|
+# so after the first attempt there is 1s wait, then 2s, 4s etc. up to 30s (max).
|
|
|
+#retries = 3
|
|
|
+
|
|
|
[persistent_connection]
|
|
|
|
|
|
# Configures the persistent connection timeout value in seconds. This value is
|
|
|
-# how long the persistent connection will remain idle before it is destroyed.
|
|
|
-# If the connection doesn't receive a request before the timeout value
|
|
|
-# expires, the connection is shutdown. The default value is 30 seconds.
|
|
|
+# how long the persistent connection will remain idle before it is destroyed.
|
|
|
+# If the connection doesn't receive a request before the timeout value
|
|
|
+# expires, the connection is shutdown. The default value is 30 seconds.
|
|
|
connect_timeout = 30
|
|
|
|
|
|
-# Configures the persistent connection retries. This value configures the
|
|
|
-# number of attempts the ansible-connection will make when trying to connect
|
|
|
-# to the local domain socket. The default value is 30.
|
|
|
-connect_retries = 30
|
|
|
-
|
|
|
-# Configures the amount of time in seconds to wait between connection attempts
|
|
|
-# to the local unix domain socket. This value works in conjunction with the
|
|
|
-# connect_retries value to define how long to try to connect to the local
|
|
|
-# domain socket when setting up a persistent connection. The default value is
|
|
|
-# 1 second.
|
|
|
-connect_interval = 1
|
|
|
+# Configures the persistent connection retry timeout. This value configures the
|
|
|
+# the retry timeout that ansible-connection will wait to connect
|
|
|
+# to the local domain socket. This value must be larger than the
|
|
|
+# ssh timeout (timeout) and less than persistent connection idle timeout (connect_timeout).
|
|
|
+# The default value is 15 seconds.
|
|
|
+connect_retry_timeout = 30
|
|
|
+
|
|
|
+# The command timeout value defines the amount of time to wait for a command
|
|
|
+# or RPC call before timing out. The value for the command timeout must
|
|
|
+# be less than the value of the persistent connection idle timeout (connect_timeout)
|
|
|
+# The default value is 10 second.
|
|
|
+command_timeout = 1
|
|
|
|
|
|
[accelerate]
|
|
|
#accelerate_port = 5099
|
