Digial Ocean Ansible Base

Visit site

Creates a Digital Ocean droplet image with basic configuration and common dependencies using Ansible

Resulting Image Configuration

Installed packages and services

  • apt-transport-https
  • ca-certificates
  • ntp
  • iptables-persistent
  • dnsmasq
  • dopy
  • python-digitalocean
  • supervisor
  • unzip
  • dopy (fork that supports getting droplets by tag)

Created user, “droplet-user”

  • member of sudo users
  • specified key added to authorized keys

Other System Configurations

  • Configure supervsiord to start on boot
  • Add iptables rules to only allow SSH, established, and loopback connections
  • Configure dnsmasq for contional forwarding for a private domain (see Private DNS Zone on Github README for details)
  • Disable remote root login
  • Add the API token to /etc/do/api_token.yml
Was this helpful?
Leave a comment

This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Publish your Tool on Community

Have you created an Integration, API Wrapper, Service, or other Tool that helps developers build on DigitalOcean? Help users find it by listing it in Community Tools.

Get our biweekly newsletter

Sign up for Infrastructure as a Newsletter.

Hollie's Hub for Good

Working on improving health and education, reducing inequality, and spurring economic growth? We'd like to help.

Become a contributor

Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.

Welcome to the developer cloud

DigitalOcean makes it simple to launch in the cloud and scale up as you grow — whether you're running one virtual machine or ten thousand.

Learn more
DigitalOcean Cloud Control Panel