Mercurial > repos > other > Puppet

node 'ibbpi.hostedpi.com' {
	class { 'ibboardvpsnode':
		primary_ip => '2a00:1098:0008:0157::1',
		gateway_ip => '2a00:1098:0008:0157::2',
		proxy_4to6_ip_prefix => '2a00:1098:0008:0157::01d4', # ::old4 for IPv4!
		proxy_upstream => ['2a00:1098::82:1000:3b:1:1', '2a00:1098::80:1000:3b:1:1'],
		nat64_ranges => ['64:ff9b::/96'],
		mailserver => 'mail.ibboard.co.uk',
		imapserver => 'imap.ibboard.co.uk',
		mailrelays => ['mx.mythic-beasts.com'],
		firewall_cmd => 'iptables',
	}
	firewall { '090 Allow SSH (IPv4-to-IPv6)':
		dport => 22,
		source => '2a00:1098:0:82:1000:0:5d5d:826a',
		proto => 'tcp',
		jump => 'accept',
	}
	firewall { '090 Allow SSH (SSH proxy)':
		dport => 22,
		source => '2a00:1098:0:84:1000:3:0:2',
		proto => 'tcp',
		jump => 'accept',
	}
}
node 'vps-2204.test.ibboard.co.uk' {
	class { 'ibboardvpsnode':
		primary_ip => '2a10:8702:8:5200:5054:ff:fec7:76c3',
		mailserver => 'mail.ibboard.co.uk',
		imapserver => 'imap.ibboard.co.uk',
		firewall_cmd => 'iptables',
	}
}
node 'ibbvps.vs.mythic-beasts.com' {
	class { 'ibboardvpsnode':
		primary_ip => '2a00:1098:82:52::1',
		proxy_4to6_ip_prefix => '2a00:1098:82:52::01d4', # ::old4 for IPv4!
		proxy_upstream => ['2a00:1098::82:1000:3b:1:1', '2a00:1098::80:1000:3b:1:1'],
		nat64_ranges => ['64:ff9b::/96'],
		mailserver => 'mail.ibboard.co.uk',
		imapserver => 'imap.ibboard.co.uk',
		mailrelays => ['mx.mythic-beasts.com'],
		firewall_cmd => 'iptables',
	}
	# If the console fails to start, you may need to run "restorecon /etc/systemd/system/getty.target.wants/*"
	# to reset the SELinux context of the file
	service { 'serial-getty@ttyS0':
		ensure => 'running',
		enable => 'true',
	}
	firewall { '090 Allow SSH (IPv4-to-IPv6)':
		dport => 22,
		source => '2a00:1098:0:82:1000:0:5d5d:826a',
		proto => 'tcp',
		jump => 'accept',
	}
}
author	IBBoard <dev@ibboard.co.uk>
date	Fri, 30 Aug 2024 16:02:54 +0100
parents	2c3e745be8d2
children