cancel
Showing results for 
Search instead for 
Did you mean: 
CSB1978
Mission Specialist
Mission Specialist
  • 1,130 Views

ansible control and network segmentation

In all the training and all, I have not been able to find this answer. I have 2 network segments (say PCI vs none PCI) I have 2 ways to get to the environment through the jump host. The jump host is divided too. I have one host that gets me to the PCI side and one that gets me to the none-PCI side of the house. In general, the jump hosts will be the control for ansible are those jump. My question is is it possible to use a proxy like delegate_to to run them or do I just need to keep the environs separated and make each jump host its own master?

6 Replies
Walid
Flight Engineer Flight Engineer
Flight Engineer
  • 1,110 Views

Re: ansible control and network segmentation

can you elobrate on the topology of the machines, network, possibly a diagram. what do you mean by PCI, or it is just a network segment as in A vs. B?  in total you have one jumphost connected to both segments, or one each connected to a single segment? 

~ Walid - the DevOps Janitor
0 Kudos
Reply
Loading...
CSB1978
Mission Specialist
Mission Specialist
  • 1,101 Views

Re: ansible control and network segmentation

The network is a design that most people know but here is a rudamentry design

network-overview.jpg

0 Kudos
Reply
Loading...
Walid
Flight Engineer Flight Engineer
Flight Engineer
  • 1,094 Views

Re: ansible control and network segmentation

One thing I might try not sure if it works or supported is use Windows WSL2 and make the windows jump host the control host, or is that too wild of an option?

~ Walid - the DevOps Janitor
0 Kudos
Reply
Loading...
CSB1978
Mission Specialist
Mission Specialist
  • 1,090 Views

Re: ansible control and network segmentation

 Yea, the one the one thing I remember from the training was MS Windows could not be the main control for ansible.

0 Kudos
Reply
Loading...
Walid
Flight Engineer Flight Engineer
Flight Engineer
  • 1,088 Views

Re: ansible control and network segmentation

Most likely it is not a supported commercial options, but still could simplify mgmt for you  https://www.reddit.com/r/ansible/comments/bpi3nr/ansible_on_windows_10_via_wsl_working_without/

~ Walid - the DevOps Janitor
0 Kudos
Reply
Loading...
CSB1978
Mission Specialist
Mission Specialist
  • 1,085 Views

Re: ansible control and network segmentation

I would prefer a supported config that redhat would support

0 Kudos
Reply
Loading...
Join the discussion
You must log in to join this conversation.