cancel
Showing results for 
Search instead for 
Did you mean: 
CSB1978
Mission Specialist
Mission Specialist
  • 3,862 Views

ansible control and network segmentation

In all the training and all, I have not been able to find this answer. I have 2 network segments (say PCI vs none PCI) I have 2 ways to get to the environment through the jump host. The jump host is divided too. I have one host that gets me to the PCI side and one that gets me to the none-PCI side of the house. In general, the jump hosts will be the control for ansible are those jump. My question is is it possible to use a proxy like delegate_to to run them or do I just need to keep the environs separated and make each jump host its own master?

Labels (3)
6 Replies
Walid
Flight Engineer Flight Engineer
Flight Engineer
  • 3,842 Views

can you elobrate on the topology of the machines, network, possibly a diagram. what do you mean by PCI, or it is just a network segment as in A vs. B?  in total you have one jumphost connected to both segments, or one each connected to a single segment? 

~ Walid - Red Hat Accelerator, DevOps Janitor
0 Kudos
CSB1978
Mission Specialist
Mission Specialist
  • 3,833 Views

The network is a design that most people know but here is a rudamentry design

network-overview.jpg

0 Kudos
Walid
Flight Engineer Flight Engineer
Flight Engineer
  • 3,826 Views

One thing I might try not sure if it works or supported is use Windows WSL2 and make the windows jump host the control host, or is that too wild of an option?

~ Walid - Red Hat Accelerator, DevOps Janitor
0 Kudos
CSB1978
Mission Specialist
Mission Specialist
  • 3,822 Views

 Yea, the one the one thing I remember from the training was MS Windows could not be the main control for ansible.

0 Kudos
Walid
Flight Engineer Flight Engineer
Flight Engineer
  • 3,820 Views

Most likely it is not a supported commercial options, but still could simplify mgmt for you  https://www.reddit.com/r/ansible/comments/bpi3nr/ansible_on_windows_10_via_wsl_working_without/

~ Walid - Red Hat Accelerator, DevOps Janitor
0 Kudos
CSB1978
Mission Specialist
Mission Specialist
  • 3,817 Views

I would prefer a supported config that redhat would support

0 Kudos
Join the discussion
You must log in to join this conversation.