added logging and ntp audit playbooks

2020-05-09 19:20:24 -04:00
parent 4bf73677a2
commit 137a1d834f
2 changed files with 70 additions and 0 deletions
--- a/playbooks/network/configlet_logging.yml
+++ b/playbooks/network/configlet_logging.yml
@@ -0,0 +1,33 @@
+---
+- hosts: ios
+  gather_facts: no
+
+  vars:
+
+    log_servers:
+      - logging 10.10.10.10
+      - logging 10.10.10.11
+
+
+  tasks:
+
+  - name: "GET CONFIG"
+    ios_command:
+      commands:
+        - show running-config full | include logging [0-9]+\.[0-9]+\.[0-9]+\.[0-9]+
+    register: log
+
+  - name: RUN 'Set Logging'
+    ios_config:
+      commands: "{{ item }}"
+    loop: "{{ log_servers }}"
+    register: set_logging
+
+  - debug: var=log.stdout_lines
+
+  - name: RUN 'Remove Logging'
+    ios_config:
+      commands: "no {{ item }}"
+    when:  "(log.stdout_lines[0][0] != '') and (item not in log_servers)"
+    loop: "{{ log.stdout_lines[0] }}"
+    register: remove_logging
--- a/playbooks/network/configlet_ntp.yml
+++ b/playbooks/network/configlet_ntp.yml
@@ -0,0 +1,37 @@
+---
+- hosts: ios
+  gather_facts: no
+
+
+  vars:
+
+    ntp_servers:
+      - ntp server 10.10.10.13
+      - ntp server 10.10.10.14
+
+
+
+  tasks:
+
+  - name: "GET CONFIG"
+    ios_command:
+      commands:
+        - "show running-config full | include ntp server"
+    register: get_config
+
+  - debug: var=get_config.stdout_lines
+
+  - name: RUN 'Set NTP'
+    with_items: "{{ ntp_servers }}"
+    ios_config:
+      lines:
+          - "{{ item }}"
+    register: set_ntp
+
+  - name: RUN 'Remove NTP'
+    when: "(get_config.stdout_lines[0][0] != '') and (item not in ntp_servers)"
+    with_items: "{{ get_config.stdout_lines[0] }}"
+    register: remove_ntp
+    ios_config:
+      lines:
+        - "no {{ item }}"