1. 在/etc/ansbile/hosts中添加主机init

2. 在sysinit.yml中修改要初始化的机器:
   hosts: init

3. 设置不检查key   
   export ANSIBLE_HOST_KEY_CHECKING=False

4. 因为开启了selinux,所以需要安装libselinux-python
   ansible init -m shell -a 'yum install libselinux-python -y' -k

5. 执行初始化
  ansible-playbook sysinit.yml -k
   
6. 复制key到主机
   ssh-copy-id -i "/root/.ssh/id_rsa.pub" "-p 50000 lsyw@162.221.12.108"

7. 测试key通信
   ####重新在hosts中编辑一个组nginx,然后配置group_vars:
   ansible_user: lsyw
   ansible_port: 50000
   ansible_su_password: "0xxxxx"

   ansible nginx -m ping

8. 安装nginx
   在tengine_comm_deploy.yml中修改hosts为nginx
   执行命令:ansible-playbook tengine_comm_deploy.yml -S
   
9. 部署d9导航页
   cd /root/distri     #切换到ansible源代码存放目录
   rz -y          #上传源代码到ansible主机
   ansible nginx -S -R root -m unarchive -a "src=d9_201608311030.zip  dest=/data"
   ansible nginx -S -R root -m shell -a "ln -s /data/d9_201608311030 /data/www"

   更新nginx配置文件:
    ansible nginx -S -R root -m shell -a "rm -rf /usr/local/gacp/nginx/conf/vhosts.d/*"
    ansible nginx -S -R root -m copy -a "src=www.d9.com.conf dest=/usr/local/gacp/nginx/conf/vhosts.d/"
    ansible nginx -S -R root -m shell -a "/sbin/service nginx reload"
    ansible nginx -S -R root -m shell -a "netstat -nl "

10. 添加防火墙
    ansible nginx -S -R root -m shell -a "/sbin/iptables -I INPUT 5 -p tcp --dport 80 -m state --state NEW -j ACCEPT"
    ansible nginx -S -R root -m shell -a "/sbin/service iptables save"