Digial Ocean Ansible Base

Visit site

Creates a Digital Ocean droplet image with basic configuration and common dependencies using Ansible

Resulting Image Configuration

Installed packages and services

  • apt-transport-https
  • ca-certificates
  • ntp
  • iptables-persistent
  • dnsmasq
  • dopy
  • python-digitalocean
  • supervisor
  • unzip
  • dopy (fork that supports getting droplets by tag)

Created user, “droplet-user”

  • member of sudo users
  • specified key added to authorized keys

Other System Configurations

  • Configure supervsiord to start on boot
  • Add iptables rules to only allow SSH, established, and loopback connections
  • Configure dnsmasq for contional forwarding for a private domain (see Private DNS Zone on Github README for details)
  • Disable remote root login
  • Add the API token to /etc/do/api_token.yml
Was this helpful?
 
Leave a comment


This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Publish your Tool on Community

Have you created an Integration, API Wrapper, Service, or other Tool that helps developers build on DigitalOcean? Help users find it by listing it in Community Tools.

card icon
Get our biweekly newsletter

Sign up for Infrastructure as a Newsletter.

Sign up
card icon
Hollie's Hub for Good

Working on improving health and education, reducing inequality, and spurring economic growth? We’d like to help.

Learn more
card icon
Become a contributor

You get paid; we donate to tech nonprofits.

Learn more
Welcome to the developer cloud

DigitalOcean makes it simple to launch in the cloud and scale up as you grow – whether you’re running one virtual machine or ten thousand.

Learn more ->
DigitalOcean Cloud Control Panel