8 require => Package['apache2'],
11 apache2::module { 'info': }
12 apache2::module { 'status': }
13 apache2::module { 'headers': }
15 package { 'libapache2-mod-macro':
19 apache2::module { 'macro':
20 require => Package['libapache2-mod-macro']
23 apache2::site { '00-default':
24 site => 'default-debian.org',
25 content => template('apache2/default-debian.org.erb'),
28 apache2::site { '000-default':
32 apache2::config { 'ressource-limits':
36 if has_role('buildd_master') {
37 $memlimit = 192 * 1024 * 1024
38 } elsif has_role('nagiosmaster') {
39 $memlimit = 96 * 1024 * 1024
40 } elsif has_role('packagesqamaster') {
41 $memlimit = 192 * 1024 * 1024
43 $memlimit = 32 * 1024 * 1024
46 apache2::config { 'resource-limits':
47 content => template('apache2/resource-limits.erb'),
50 apache2::config { 'security':
51 source => 'puppet:///modules/apache2/security',
54 apache2::config { 'logformat-privacy':
55 source => 'puppet:///modules/apache2/logformat-privacy',
58 apache2::config { 'local-serverinfo':
59 source => 'puppet:///modules/apache2/local-serverinfo',
62 apache2::config { 'server-status':
63 source => 'puppet:///modules/apache2/server-status',
66 apache2::config { 'puppet-ssl-macros':
67 source => 'puppet:///modules/apache2/puppet-ssl-macros',
70 file { '/etc/apache2/sites-available/common-ssl.inc':
74 file { '/etc/logrotate.d/apache2':
75 source => 'puppet:///modules/apache2/apache2.logrotate',
78 file { [ '/srv/www', '/srv/www/default.debian.org', '/srv/www/default.debian.org/htdocs' ]:
83 file { '/srv/www/default.debian.org/htdocs/index.html':
84 content => template('apache2/default-index.html'),
87 file { '/var/log/apache2/.nobackup':
92 munin::check { 'apache_accesses': }
93 munin::check { 'apache_processes': }
94 munin::check { 'apache_volume': }
95 munin::check { 'apache_servers': }
96 munin::check { 'ps_apache2':
100 if $::hostname in [beach,buxtehude,picconi,pkgmirror-1and1] {
101 include apache2::dynamic
103 @ferm::rule { 'dsa-http':
105 description => 'Allow web access',
106 rule => '&SERVICE(tcp, (http https))'
110 @ferm::rule { 'dsa-http-v6':
113 description => 'Allow web access',
114 rule => '&SERVICE(tcp, (http https))'