4 - MANAGEMENT_EVENT_FAILURE_QUEUE != ''
5 - MANAGEMENT_EVENT_QUEUE != ''
6 - MANAGEMENT_SUBNET != ''
10 - name: Management failure queue.
13 region: "{{ vpc_region }}"
14 name: "{{ MANAGEMENT_EVENT_FAILURE_QUEUE }}"
15 default_visibility_timeout: 30
16 message_retention_period: 1209600
17 maximum_message_size: 262144
19 receive_message_wait_time: 0
20 register: management_failure_queue
23 var: management_failure_queue
25 - name: Managment queue.
28 region: "{{ vpc_region }}"
29 name: "{{ MANAGEMENT_EVENT_QUEUE }}"
30 default_visibility_timeout: 30
31 message_retention_period: 345600
32 maximum_message_size: 262144
34 receive_message_wait_time: 20
37 deadLetterTargetArn: "arn:aws:sqs:{{ vpc_region }}:{{ ACCT_ID }}:{{ MANAGEMENT_EVENT_FAILURE_QUEUE }}"
38 # deadLetterTargetArn: "{{ management_failure_queue.queue_arn }}"
39 register: management_queue
41 - name: Management topic and subscription.
44 region: "{{ vpc_region }}"
45 name: "{{ MANAGEMENT_EVENT_QUEUE }}"
46 display_name: "{{ MANAGEMENT_EVENT_QUEUE_SHORT }}"
47 purge_subscriptions: False
49 # - endpoint: "{{ management_queue.queue_arn }}"
50 - endpoint: "arn:aws:sqs:{{ vpc_region }}:{{ ACCT_ID }}:{{ MANAGEMENT_EVENT_QUEUE }}"
52 register: management_topic
54 - name: Management notice topic
57 region: "{{ vpc_region }}"
58 name: "{{ MANAGEMENT_NOTICE_TOPIC }}"
59 display_name: "{{ MANAGEMENT_NOTICE_TOPIC_SHORT }}"
60 purge_subscriptions: False
61 register: management_notice_topic
63 # - name: Ensure management backup bucket exists.
65 # when: MANAGEMENT_BACKUP_S3_BUCKET is defined
67 # name: "{{ MANAGEMENT_BACKUP_S3_BUCKET }}"
71 vpc_id: "{{ vpc.vpc.id }}"
72 region: "{{ vpc_region }}"
75 description: "allow ssh from anywhere"
87 - name: sg management-elb
89 vpc_id: "{{ vpc.vpc.id }}"
90 region: "{{ vpc_region }}"
93 description: "sg for internal elb for monitoring management"
104 - name: sg management
106 vpc_id: "{{ vpc.vpc.id }}"
107 region: "{{ vpc_region }}"
110 description: "sg for management"
114 group_name: management
116 group_name: management-elb
117 register: sg_management
122 - name: elb management-int-elb
124 region: "{{ vpc_region }}"
126 name: management-int-elb
127 cross_az_load_balancing: yes
129 subnets: "{{ MANAGEMENT_SUBNET }}"
130 security_group_names:
134 load_balancer_port: 22
141 unhealthy_threshold: 2
144 - name: management key
146 region: "{{ vpc_region }}"
147 name: "{{ MANAGEMENT_KEY_NAME }}"
148 key_material: "{{ item }}"
149 with_file: keys/{{ MANAGEMENT_KEY_NAME }}.pub
151 - name: management iam
157 - name: management lc
159 region: "{{ vpc_region }}"
160 name: management-0000
161 image_id: "{{ DEFAULT_AMI }}"
162 key_name: "{{ MANAGEMENT_KEY_NAME }}"
163 instance_profile_name: management
165 - "{{ sg_management.group_id }}"
166 - "{{ sg_ssh.group_id }}"
167 instance_type: m4.large
169 - device_name: /dev/sda1
172 delete_on_termination: true
173 - device_name: /dev/sdb
174 ephemeral: ephemeral0
175 - device_name: /dev/sdc
176 ephemeral: ephemeral1
177 - device_name: /dev/sdd
178 ephemeral: ephemeral2
179 - device_name: /dev/sde
180 ephemeral: ephemeral3
186 - name: management asg
188 region: "{{ vpc_region }}"
193 vpc_zone_identifier: "{{ MANAGEMENT_SUBNET }}"
194 launch_config_name: "{{ mgmt_lc.name }}"
195 notification_topic: "{{ management_topic.sns_arn }}"
197 - autoscaling:EC2_INSTANCE_LAUNCH
202 propogate_at_launch: yes