Claude Skill

openclaw/openclaw-ansible

使用 Ansible 实现自动化、强化的 Clawdbot 部署,集成 Tailscale VPN、UFW 防火墙和 Docker 隔离,确保安全高效的安装。

概览

Stars591
Forks247
语言Shell
最后更新2026-06-22
最近同步2026-07-03
前往 GitHub

仓库信息

拥有者openclaw
仓库openclaw-ansible
完整名称openclaw/openclaw-ansible
Repo ID1,130,539,840

安装这个 Skill

git clone https://github.com/openclaw/openclaw-ansible.git

Registry 信息

类型openclaw_skill
质量分80/100
验证状态readme_parsed
最近验证2026-06-08
平台
OpenClaw
能力
pdfmemoryimageworkflow
识别文件
README.mddocstests

项目简介

OpenClaw Ansible 是一个自动化、强化的 Clawdbot 部署方案,集成了 Tailscale VPN、UFW 防火墙和 Docker 隔离,确保安全高效的安装。

英文描述

Automated, hardened Clawdbot installation with Tailscale VPN, UFW firewall, and Docker isolation

要点

  • 自动化 Clawdbot 安装
  • Tailscale VPN 集成
  • UFW 防火墙配置
  • Docker 容器隔离
  • 强化安全设置
  • 基于 Ansible 的部署

使用场景

  • 安全的 Clawdbot 部署
  • 自动化基础设施设置
  • VPN 保护的机器人安装
  • 防火墙强化环境
  • 容器化应用部署
  • DevOps 自动化工作流

README 摘要

# OpenClaw Ansible Installer ![OpenClaw Ansible banner](docs/assets/readme-banner.jpg) [![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT) [![Lint](https://github.com/openclaw/openclaw-ansible/actions/workflows/lint.yml/badge.svg)](https://github.com/openclaw/openclaw-ansible/actions/workflows/lint.yml) [![Ansible](https://img.shields.io/badge/Ansible-2.14+-blue.svg)](https://www.ansible.com/) [![Multi-OS](https://img.shields.io/badge/OS-Debian%20%7C%20Ubuntu-orange.svg)](https://www.debian.org/) Automated, hardened installation of [OpenClaw](https://github.com/openclaw/openclaw) with Docker and Tailscale VPN support for Debian/Ubuntu Linux. ## ⚠️ macOS Support: Deprecated & Disabled **Effective 2026-02-06, support for bare-metal macOS installations has been removed from this playbook.** ### Why? The underlying project currently requires system-level permissions and configurations that introduce significant security risks when executed on a primary host OS. To protect user data and system integrity, we have disabled bare-metal execution. ### What does this mean? * The playbook will now explicitly fail if run on a `Darwin` (macOS) system. * We strongly discourage manual workarounds to bypass this check. * **Future Support:** We are evaluating a virtualization-first strategy (using Vagrant or Docker) to provide a sandboxed environment for this project in the future. ## Features - 🔒 **Firewall-first**: UFW firewall + Docker isolation - 🛡️ **Fail2ban**: SSH brute-force protection out of the box - 🔄 **Auto-updates**: Automatic security patches via unattended-upgrades - 🔐 **Tailscale VPN**: Secure remote access without exposing services - 🐳 **Docker**: Docker CE with security hardening - 🚀 **One-command install*

话题

暂无话题

探索更多

数据来自 GitHub,同步时间:2026-07-03