Mercurial > repos > other > Puppet
comparison manifests/templates.pp @ 100:fd3446c3b7b9 puppet-3.6
Set up a recursive localhost-only Bind server (assuming RH's safe and sane default configs)
| author | IBBoard <dev@ibboard.co.uk> |
|---|---|
| date | Wed, 24 Feb 2016 20:21:44 +0000 |
| parents | a0b9a810cf7d |
| children | a48b6011a084 |
comparison
equal
deleted
inserted
replaced
| 99:a0b9a810cf7d | 100:fd3446c3b7b9 |
|---|---|
| 44 } | 44 } |
| 45 | 45 |
| 46 require repos | 46 require repos |
| 47 include basenode | 47 include basenode |
| 48 include private | 48 include private |
| 49 include dnsresolver | |
| 49 include ssh::server | 50 include ssh::server |
| 50 include vcs::server | 51 include vcs::server |
| 51 include vcs::client | 52 include vcs::client |
| 52 class { 'webserver': | 53 class { 'webserver': |
| 53 primary_ip => $primary_ip, | 54 primary_ip => $primary_ip, |
| 62 class { 'email': | 63 class { 'email': |
| 63 mailserver => $mailserver, | 64 mailserver => $mailserver, |
| 64 imapserver => $imapserver, | 65 imapserver => $imapserver, |
| 65 } | 66 } |
| 66 } | 67 } |
| 68 | |
| 69 ## Classes to allow facet behaviour using preconfigured setups of classes | |
| 67 | 70 |
| 68 class vpsfirewall { | 71 class vpsfirewall { |
| 69 resources { "firewall": | 72 resources { "firewall": |
| 70 purge => false, | 73 purge => false, |
| 71 } | 74 } |
| 127 } | 130 } |
| 128 # Note: SSH port will be managed separately as we | 131 # Note: SSH port will be managed separately as we |
| 129 # put it on a different port to hide from script kiddy noise | 132 # put it on a different port to hide from script kiddy noise |
| 130 } | 133 } |
| 131 | 134 |
| 132 ## Classes to allow facet behaviour using preconfigured setups of classes | 135 class dnsresolver { |
| 136 package { 'bind': | |
| 137 ensure => present, | |
| 138 } | |
| 139 | |
| 140 service { 'named': | |
| 141 ensure => running, | |
| 142 enable => true, | |
| 143 } | |
| 144 | |
| 145 file { '/etc/NetworkManager/conf.d/local-dns-resolver.conf': | |
| 146 ensure => present, | |
| 147 content => "[main] | |
| 148 dns=none", | |
| 149 } | |
| 150 | |
| 151 file { '/etc/resolv.conf': | |
| 152 ensure => present, | |
| 153 content => "nameserver 127.0.0.1" | |
| 154 } | |
| 155 } | |
| 133 | 156 |
| 134 class repos { | 157 class repos { |
| 135 yumrepo { 'epel': | 158 yumrepo { 'epel': |
| 136 mirrorlist => 'https://mirrors.fedoraproject.org/metalink?repo=epel-$releasever&arch=$basearch', | 159 mirrorlist => 'https://mirrors.fedoraproject.org/metalink?repo=epel-$releasever&arch=$basearch', |
| 137 descr => "Extra Packages for Enterprise Linux", | 160 descr => "Extra Packages for Enterprise Linux", |