project/setup_containers.yml

# Playbook used to setup containers.

---

# Common Network Setup

- hosts: localhost
  pre_tasks:
    - name: Remove Stale Containers
      ansible.builtin.include_tasks: teardown.yml
      loop: "{{ machines + vulnerables.machines }}"
      loop_control:
        loop_var: pc_info

- name: Base Tasks
  hosts: localhost
  roles:
    - base

- name: DHCP Servers Tasks
  hosts: dhcp_servers
  roles:
    - dhcp

- name: Internal Network PCs Tasks
  hosts: pcs
  roles:
    - internal_pcs

- name: Internal Network Tasks
  hosts: internal
  roles:
    - internal

- name: DNS Servers Tasks
  hosts: dns_servers
  vars:
    selected_machines: "{{ machines + vulnerables.machines }}"
  roles:
    - dns

- name: Router Tasks
  hosts: routers
  roles:
    - routers

# Scenario-specific Tasks

- name: Vulnerable Machine Launch
  hosts: localhost
  roles:
    - custom_machines

- name: DMZ Network Tasks
  hosts: dmz
  roles:
    - dmz

- name: Reverse Proxy Tasks
  hosts: reverse_proxies
  serial: 1
  vars:
    selected_machines: "{{ machines + vulnerables.machines }}"
    machine_vars: "{{ (vulnerables.machines | selectattr('name', '==', inventory_hostname))[0]['vars'] }}"
  roles:
    - reverse_proxies

- name: Firewall Tasks
  hosts: firewalls
  vars:
    dns_server_ip: "{{ ((machines | selectattr('name', '==', 'dns_server'))[0]['networks'] | selectattr('name', '==', 'dmz_net') | map(attribute='ipv4_address')) | first }}"
  roles:
    - firewalls

- name: Entrypoint Tasks
  hosts: all
  roles:
    - entrypoint

- name: Entrypoint Tasks
  hosts: localhost
  roles:
    - entrypoint

# ------------------ Mesh ------------------ #

- name: Mesh Network Tasks
  hosts: mesh
  roles:
    - mesh