--- # --------------------------------------------------- # configuration Linux : Paramètres du kernel # --------------------------------------------------- - name: Ajustement des paramètres du Kernel sysctl: name={{ item.name }} value="{{ item.value }}" state=present reload=yes ignoreerrors=yes with_items: with_items: # shmall = 50% de la RAM pour les SGA Oracle, divisé par PAGE_SIZE (getconf PAGE_SIZE = 4096) # on suppose que 60% de la RAM sera affectée aux SGA - { name: kernel.shmall, value: "{{ ((0.6 * ansible_memtotal_mb)*1024*1024/4096)|round|int }}" } - { name: kernel.shmmax, value: "{{ ((0.8 * ansible_memtotal_mb)*1024*1024)|round|int }}" } # - { name: kernel.shmmax, value: 4398046511104 } - { name: kernel.shmmni, value: 4096 } - { name: kernel.sem, value: "250 32000 100 128" } - { name: fs.file-max, value: 6815744 } - { name: fs.aio-max-nr, value: 1048576 } - { name: net.ipv4.ip_local_port_range, value: "9000 65500" } - { name: net.ipv4.conf.all.rp_filter, value: 2 } - { name: net.ipv4.conf.default.rp_filter, value: 2 } - { name: net.core.rmem_default, value: 262144 } - { name: net.core.rmem_max, value: 4194304 } - { name: net.core.wmem_default, value: 262144 } - { name: net.core.wmem_max, value: 1048576 } - { name: vm.nr_hugepages, value: "{{ (((percent_hugepages/100) * ansible_memtotal_mb)/2)|round|int }}" } tags: sysctl - name: Configuration PAM lineinfile: dest=/etc/pam.d/login state=present line="session required pam_limits.so" tags: pamconfig - name: Ajustement des limits pour Oracle lineinfile: dest=/etc/security/limits.conf state=present line="{{ item }}" with_items: - "* soft nproc 2047" - "* hard nproc 16384" - "* soft nofile 1024" - "* hard nofile 65536" - "* soft memlock {{ ((0.9 * ansible_memtotal_mb)*1024)|round|int }}" - "* hard memlock {{ ((0.9 * ansible_memtotal_mb)*1024)|round|int }}" - "* soft stack 10240" - "* hard stack 32768" - "* soft core unlimited" - "* hard core unlimited" tags: seclimit