From d10afefac1f7c6afaa4ce9e776c4347aea9ee2d3 Mon Sep 17 00:00:00 2001
From: Semaphore <semaphore@internal>
Date: Tue, 28 Apr 2026 19:50:09 -0700
Subject: [PATCH] Updated pfsense_nodes

---
 .../danchilla/group_vars/pfsense_nodes.yml    | 30 +++++++++++++++++++
 1 file changed, 30 insertions(+)
 create mode 100644 inventories/clients/danchilla/group_vars/pfsense_nodes.yml

diff --git a/inventories/clients/danchilla/group_vars/pfsense_nodes.yml b/inventories/clients/danchilla/group_vars/pfsense_nodes.yml
new file mode 100644
index 0000000..b59d9d3
--- /dev/null
+++ b/inventories/clients/danchilla/group_vars/pfsense_nodes.yml
@@ -0,0 +1,30 @@
+---
+# inventory/group_vars/pfsense_nodes.yml
+# Applied to all hosts in the [pfsense] group.
+
+# pfSense runs FreeBSD — Python may not be installed.
+# Using 'raw' module throughout the role avoids this entirely,
+# but set the interpreter discovery to auto for safety.
+ansible_python_interpreter: auto_silent
+
+# SSH connection settings tuned for pfSense/FreeBSD
+ansible_connection: ssh
+ansible_ssh_common_args: >-
+  -o StrictHostKeyChecking=no
+  -o UserKnownHostsFile=/dev/null
+  -o ConnectTimeout=15
+  -o ServerAliveInterval=10
+  -o ServerAliveCountMax=3
+
+# pfSense's shell is tcsh by default; force sh for compatibility
+ansible_shell_type: sh
+ansible_shell_executable: /bin/sh
+
+# Set to your SSH key or use ansible_password
+# ansible_ssh_private_key_file: ~/.ssh/pfsense_rsa
+
+# Default upgrade settings (can be overridden per host in host_vars/)
+perform_upgrade: false
+allow_major_upgrade: false
+auto_reboot: true
+pkg_repo_update: true