Skip to content

Instantly share code, notes, and snippets.

@joedougherty

joedougherty/config_client_updated_with_items.log

Created September 26, 2015 18:21
Show Gist options
  • Save joedougherty/f5742a3d878d30ef1ab2 to your computer and use it in GitHub Desktop.
Save joedougherty/f5742a3d878d30ef1ab2 to your computer and use it in GitHub Desktop.
Download ZIP
create-vpn-log-2015-09-26_14:19:26
Raw
config_client_updated_with_items.log
PLAY [create vpn server] ******************************************************
GATHERING FACTS ***************************************************************
ok: [localhost]
TASK: [create-droplet | ensure dopy is installed (for digitalocean API)] ******
ok: [localhost]
TASK: [create-droplet | create digitalocean droplet] **************************
ok: [localhost]
TASK: [create-droplet | add digitalocean vpn droplet to inventory] ************
ok: [localhost]
TASK: [create-droplet | add client machine to dynamic inventory] **************
ok: [localhost]
TASK: [create-droplet | flush old IPs from SSH known_hosts] *******************
skipping: [localhost]
TASK: [create-droplet | add new IP to SSH known_hosts] ************************
skipping: [localhost]
PLAY [configure vpn server] ***************************************************
GATHERING FACTS ***************************************************************
ok: [digitalocean_vpn_server]
TASK: [configure-server | update apt cache] ***********************************
ok: [digitalocean_vpn_server]
TASK: [configure-server | install required packages] **************************
ok: [digitalocean_vpn_server] => (item=git,openvpn,easy-rsa,python-keyczar,ufw)
TASK: [configure-server | copy easy-rsa files to openvpn dir] *****************
ok: [digitalocean_vpn_server]
TASK: [configure-server | ensure key directory exists] ************************
ok: [digitalocean_vpn_server]
TASK: [configure-server | copy openssl config] ********************************
ok: [digitalocean_vpn_server]
TASK: [configure-server | copy vars file for cert generation] *****************
ok: [digitalocean_vpn_server]
TASK: [configure-server | patch pktool for headless cert generation] **********
ok: [digitalocean_vpn_server]
TASK: [configure-server | clean cert dir on first run] ************************
ok: [digitalocean_vpn_server]
TASK: [configure-server | build certificate authority] ************************
ok: [digitalocean_vpn_server]
TASK: [configure-server | ensure server certificate exists] *******************
ok: [digitalocean_vpn_server]
TASK: [configure-server | ensure client certificate exists] *******************
ok: [digitalocean_vpn_server] => (item=laptop)
ok: [digitalocean_vpn_server] => (item=phone)
TASK: [configure-server | create openvpn config] ******************************
ok: [digitalocean_vpn_server]
TASK: [configure-server | generate pem file] **********************************
ok: [digitalocean_vpn_server]
TASK: [configure-server | enable ipv4 forwarding] *****************************
ok: [digitalocean_vpn_server]
TASK: [configure-server | start openvpn server] *******************************
skipping: [digitalocean_vpn_server]
TASK: [configure-server | start openvpn server] *******************************
changed: [digitalocean_vpn_server]
TASK: [configure-server | allow ssh through firewall] *************************
ok: [digitalocean_vpn_server]
TASK: [configure-server | allow openvpn through firewall] *********************
ok: [digitalocean_vpn_server]
TASK: [configure-server | copy ufw before.rules config file] ******************
ok: [digitalocean_vpn_server]
TASK: [configure-server | set default ufw forward policy to accept] ***********
ok: [digitalocean_vpn_server]
TASK: [configure-server | ensure ufw is running] ******************************
ok: [digitalocean_vpn_server]
TASK: [configure-server | copy ovpn file to vpn client (from vpn_server to vpn_client)] ***
ok: [digitalocean_vpn_server] => (item=laptop)
ok: [digitalocean_vpn_server] => (item=phone)
TASK: [configure-server | copy key file to vpn client (from vpn_server to vpn_client)] ***
ok: [digitalocean_vpn_server] => (item=laptop)
ok: [digitalocean_vpn_server] => (item=phone)
TASK: [configure-server | copy cert file to vpn client (from vpn_server to vpn_client)] ***
ok: [digitalocean_vpn_server] => (item=laptop)
ok: [digitalocean_vpn_server] => (item=phone)
TASK: [configure-server | copy ca file to vpn client (from vpn_server to vpn_client)] ***
ok: [digitalocean_vpn_server]
PLAY [configure vpn client] ***************************************************
GATHERING FACTS ***************************************************************
ok: [localhost]
TASK: [configure-client | ensure openvpn key directory exists] ****************
ok: [localhost]
TASK: [configure-client | copy key files to openvpn directory] ****************
ok: [localhost] => (item=laptop.crt)
ok: [localhost] => (item=laptop.key)
ok: [localhost] => (item=ca.crt)
TASK: [configure-client | create networkmanager connection config file] *******
changed: [localhost]
TASK: [configure-client | create ovpn client config file] *********************
ok: [localhost] => (item=laptop)
ok: [localhost] => (item=phone)
TASK: [configure-client | add openvpn config to networkmanager system-settings] ***
failed: [localhost] => {"checksum": "06dbed2ac0150645402b45ada1da7a5a5b4585bb", "failed": true}
msg: Destination /etc/NetworkManager/system-connections not writable
FATAL: all hosts have already failed -- aborting
{"digitalocean_vpn_server": {"unreachable": 0, "skipped": 1, "ok": 25, "changed": 1, "failures": 0}, "localhost": {"unreachable": 0, "skipped": 2, "ok": 10, "changed": 1, "failures": 1}}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment