Mercurial > repos > other > Puppet
annotate manifests/nodes.pp @ 355:60b13e6d83c5
Add CentOS 8 dev VM node
| author | IBBoard <dev@ibboard.co.uk> |
|---|---|
| date | Sat, 03 Oct 2020 19:31:19 +0100 |
| parents | 63e0b5149cfb |
| children | df5ad1612af7 |
| rev | line source |
|---|---|
|
29
41df236f3fb0
Add trial node config for new site (IPs for test VM)
IBBoard <dev@ibboard.co.uk>
parents:
0
diff
changeset
|
1 node 'clouduk.ibboard.co.uk' { |
|
41df236f3fb0
Add trial node config for new site (IPs for test VM)
IBBoard <dev@ibboard.co.uk>
parents:
0
diff
changeset
|
2 class { 'ibboardvpsnode': |
|
70
c91296a71160
Update IP address of clouduk - test VM should use a different name!
IBBoard <dev@ibboard.co.uk>
parents:
56
diff
changeset
|
3 primary_ip => '213.229.111.243', |
|
29
41df236f3fb0
Add trial node config for new site (IPs for test VM)
IBBoard <dev@ibboard.co.uk>
parents:
0
diff
changeset
|
4 mailserver => 'mail.ibboard.co.uk', |
|
41df236f3fb0
Add trial node config for new site (IPs for test VM)
IBBoard <dev@ibboard.co.uk>
parents:
0
diff
changeset
|
5 imapserver => 'imap.ibboard.co.uk', |
|
35
1bb941522ebf
Handle differences in firewalling between ASO (using APF) and most other hosts (using iptables)
IBBoard <dev@ibboard.co.uk>
parents:
29
diff
changeset
|
6 firewall_cmd => 'iptables', |
|
29
41df236f3fb0
Add trial node config for new site (IPs for test VM)
IBBoard <dev@ibboard.co.uk>
parents:
0
diff
changeset
|
7 } |
|
41df236f3fb0
Add trial node config for new site (IPs for test VM)
IBBoard <dev@ibboard.co.uk>
parents:
0
diff
changeset
|
8 } |
|
109
019968cfda31
Add dev machine entry with correct IPs
IBBoard <dev@ibboard.co.uk>
parents:
70
diff
changeset
|
9 |
|
019968cfda31
Add dev machine entry with correct IPs
IBBoard <dev@ibboard.co.uk>
parents:
70
diff
changeset
|
10 node 'cloudtest.ibboard.co.uk' { |
|
019968cfda31
Add dev machine entry with correct IPs
IBBoard <dev@ibboard.co.uk>
parents:
70
diff
changeset
|
11 class { 'ibboardvpsnode': |
|
151
1ad747713519
Update test machine IPs to match new DHCP pool
IBBoard <dev@ibboard.co.uk>
parents:
114
diff
changeset
|
12 primary_ip => '192.168.1.78', |
|
109
019968cfda31
Add dev machine entry with correct IPs
IBBoard <dev@ibboard.co.uk>
parents:
70
diff
changeset
|
13 mailserver => 'mail.ibboard.co.uk', |
|
019968cfda31
Add dev machine entry with correct IPs
IBBoard <dev@ibboard.co.uk>
parents:
70
diff
changeset
|
14 imapserver => 'imap.ibboard.co.uk', |
|
019968cfda31
Add dev machine entry with correct IPs
IBBoard <dev@ibboard.co.uk>
parents:
70
diff
changeset
|
15 firewall_cmd => 'iptables', |
|
019968cfda31
Add dev machine entry with correct IPs
IBBoard <dev@ibboard.co.uk>
parents:
70
diff
changeset
|
16 } |
|
019968cfda31
Add dev machine entry with correct IPs
IBBoard <dev@ibboard.co.uk>
parents:
70
diff
changeset
|
17 } |
| 355 | 18 node 'vpsvm.ibboard.co.uk' { |
| 19 class { 'ibboardvpsnode': | |
| 20 primary_ip => '2a00:23c4:6b00:c201:73a1:bf9:a379:9825', | |
| 21 mailserver => 'mail.ibboard.co.uk', | |
| 22 imapserver => 'imap.ibboard.co.uk', | |
| 23 firewall_cmd => 'iptables', | |
| 24 } | |
| 25 } | |
| 247 | 26 node 'ibbvps.vs.mythic-beasts.com' { |
| 27 class { 'ibboardvpsnode': | |
| 28 primary_ip => '2a00:1098:82:52::1', | |
|
284
9431aec4d998
Switch to using IPv6 prefix and IP per site
IBBoard <dev@ibboard.co.uk>
parents:
283
diff
changeset
|
29 proxy_4to6_ip_prefix => '2a00:1098:82:52::01d4', # ::old4 for IPv4! |
|
285
c0e989d32b5c
Go back to IPv6, not hostnames, for up-stream
IBBoard <dev@ibboard.co.uk>
parents:
284
diff
changeset
|
30 proxy_upstream => ['2a00:1098::82:1000:3b:1:1', '2a00:1098::80:1000:3b:1:1'], |
| 326 | 31 nat64_ranges => ['2a00:1098:0:80:1000:3a::/96', '2a00:1098:0:82:1000:3a::/96'], |
| 247 | 32 mailserver => 'mail.ibboard.co.uk', |
| 33 imapserver => 'imap.ibboard.co.uk', | |
| 326 | 34 mailrelays => ['mx.mythic-beasts.com'], |
| 247 | 35 firewall_cmd => 'iptables', |
| 36 } | |
|
251
7307c3d59ce7
Enable console over admin shell via serial
IBBoard <dev@ibboard.co.uk>
parents:
247
diff
changeset
|
37 # If the console fails to start, you may need to run "restorecon /etc/systemd/system/getty.target.wants/*" |
|
7307c3d59ce7
Enable console over admin shell via serial
IBBoard <dev@ibboard.co.uk>
parents:
247
diff
changeset
|
38 # to reset the SELinux context of the file |
|
7307c3d59ce7
Enable console over admin shell via serial
IBBoard <dev@ibboard.co.uk>
parents:
247
diff
changeset
|
39 service { 'serial-getty@ttyS0': |
|
7307c3d59ce7
Enable console over admin shell via serial
IBBoard <dev@ibboard.co.uk>
parents:
247
diff
changeset
|
40 ensure => 'running', |
|
7307c3d59ce7
Enable console over admin shell via serial
IBBoard <dev@ibboard.co.uk>
parents:
247
diff
changeset
|
41 enable => 'true', |
|
7307c3d59ce7
Enable console over admin shell via serial
IBBoard <dev@ibboard.co.uk>
parents:
247
diff
changeset
|
42 } |
| 279 | 43 firewall { '090 Allow SSH (IPv4-to-IPv6)': |
| 44 dport => 22, | |
|
285
c0e989d32b5c
Go back to IPv6, not hostnames, for up-stream
IBBoard <dev@ibboard.co.uk>
parents:
284
diff
changeset
|
45 source => '2a00:1098:0:82:1000:0:5d5d:826a', |
| 279 | 46 proto => 'tcp', |
| 47 action => 'accept', | |
| 48 } | |
| 247 | 49 } |