Please create file group_vars/all, copy-paste content from all.network (parameters shared by all roles) and add parameters from a specific role file group_vars/*.example
A: You can use aws cli to get the variable (https://aws.amazon.com/cli/). Run: aws ec2 describe-subnets and find "AvailabilityZone". with the related "SubnetId": "subnet-XXXXXX"
Q: What's the difference between admins.pub and ssh_ROLENAME.pub?
A: File admins.pub contains keys used to access under root and ubuntu (sudo user).File ssh_ROLENAME.pub provides unpriviledged access to a server. If priviledge separation is not required, just use symlink to admins.pub.
Q: When running ec2.yml/site.yml how to verify that everything has completed as expected? Please provide verification steps.
A: ansible-playbooks must pass all steps w/o errors. This means that everything has completed as expected.
Q: Where can I find IMAGE ID for ubuntu LTS?
A: In diffirent regions, ubuntu has unique IMAGE ID. Please see the required IMAGE ID at: https://cloud-images.ubuntu.com/locator/ec2/
Q: What instance type to use?
A: We recommend type m5.large, but you are free to decide. Please see all instance types at: https://aws.amazon.com/ec2/pricing/on-demand/
NOTE: If you want to close external access to validator, please set variables allow_ssh and allow_p2p to false in group_vars/all and run ansible-playbook validator-access.yml
WARNING!!!: don't disable ssh access to non AWS server, you can't restore access to server by ssh, bacause for make changes in firewall, need ssh access. If you need close access to the host, you can open access from your ip / networks.