added wazuh_agent_nat boolean variable for agents behind nat

2019-07-18 09:00:39 +00:00 · 2019-07-18 09:00:39 +00:00 · 8db9700f02
commit 8db9700f02
parent 44cdd72f59
2 changed files with 3 additions and 1 deletions
--- a/roles/wazuh/ansible-wazuh-agent/defaults/main.yml
+++ b/roles/wazuh/ansible-wazuh-agent/defaults/main.yml
@ -305,3 +305,4 @@ wazuh_agent_config:
    list:
      - key: Env
        value: Production
+wazuh_agent_nat: false
--- a/roles/wazuh/ansible-wazuh-agent/tasks/Linux.yml
+++ b/roles/wazuh/ansible-wazuh-agent/tasks/Linux.yml
@ -54,6 +54,7 @@
        -A {{ agent_name }}
        -m {{ wazuh_managers.0.address }}
        -p {{ wazuh_agent_authd.port }}
+        {% if wazuh_agent_nat %}-I "any" {% endif %}
        {% if authd_pass is defined %}-P {{ authd_pass }}{% endif %}
        {% if wazuh_agent_authd.ssl_agent_ca is not none %}
        -v "/var/ossec/etc/{{ wazuh_agent_authd.ssl_agent_ca | basename }}"
@ -128,7 +129,7 @@
      environment:
        OSSEC_ACTION: i
        OSSEC_AGENT_NAME: '{{ newagentdata_api.json.data.name }}'
-        OSSEC_AGENT_IP: '{{ newagentdata_api.json.data.ip }}'
+        OSSEC_AGENT_IP: '{% if wazuh_agent_nat %}any{% else %}{{ newagentdata_api.json.data.ip }}{% endif %}'
        OSSEC_AGENT_ID: '{{ newagent_api.json.data.id }}'
        OSSEC_AGENT_KEY: '{{ newagent_api.json.data.key }}'
        OSSEC_ACTION_CONFIRMED: y