Skip to content

aeeaan/ansible-pound

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

22 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

correcthorse.pound

An ansible role for installing and configuring Pound. The primary focus of this role is to use Pound as an SSL frontend for varnish.

Requirements

EPEL repository is required and is installed by the common role.

Notes

The default for rewritelocation had been changed from 1 to 2. A setting of 1 will interfere with redirects between http and https. In fact, I have found this setting to interfere more than help in my setups where pound is an SSL frontend to varnish and apache is tricked into thinking it is running on HTTPS when it receives certain headers. If you are having strange issues with redirects, try setting this to 0 to turn it off.

Role Variables

Variable Default Notes
pound_enable_http false
pound_enable_https true
pound_http_port 80
pound_https_port 443
pound_open_http_port false
pound_open_https_port false
pound_http_address 0.0.0.0
pound_https_address 0.0.0.0
pound_cert /etc/pki/tls/certs/pound.pem
pound_ciphers "EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 EECDH+AESGCM EECDH EDH+AESGCM EDH+aRSA HIGH !MEDIUM !LOW !aNULL !eNULL !LOW !RC4 !MD5 !EXP !PSK !SRP !DSS"
pound_disable SSLv3
pound_loglevel 0
pound_logfacility daemon
pound_logrotate_period weekly
pound_logrotate_keep 5
pound_logrotate_compress false
pound_rewritelocation 2

Complex variables

pound_backends:
  - address: x.x.x.1
    port: 80
  - address: x.x.x.2
    port: 80

Defaults:

pound_backends:
  - address: 127.0.0.1
    port: 80

Dependencies

  • correcthorse.common

Example Playbook

- hosts: servers
  roles:
     - { role: correcthorse.pound }

License

MIT

Author Information

About

Ansible role for installing pound

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published