1 # the bacula storage node
2 class bacula::storage inherits bacula {
12 dsa_systemd::override { 'bacula-sd':
16 SupplementaryGroups=ssl-cert
20 exec { 'bacula-sd restart-when-idle':
21 path => '/usr/bin:/usr/sbin:/bin:/sbin',
22 command => 'sh -c "setsid /usr/local/sbin/bacula-idle-restart sd &"',
24 subscribe => File[$bacula::bacula_ssl_server_cert],
25 require => File['/usr/local/sbin/bacula-idle-restart'],
29 file { '/etc/bacula/bacula-sd.conf':
30 content => template('bacula/bacula-sd.conf.erb'),
33 notify => Exec['bacula-sd restart-when-idle']
36 file { '/etc/bacula/storage-conf.d':
43 source => 'puppet:///files/empty/',
44 notify => Exec['bacula-sd restart-when-idle']
47 ferm::rule { 'dsa-bacula-sd':
49 description => 'Allow bacula-sd access from director and clients (i.e. all of Debian)',
50 rule => 'proto tcp mod state state (NEW) dport (bacula-sd) @subchain \'bacula-sd\' { saddr ($HOST_DEBIAN) ACCEPT; }',
53 # allow access from director
54 Ferm::Rule::Simple <<| tag == "bacula::director-to-storage::${bacula::bacula_director_address}" |>> {
55 port => $bacula::bacula_storage_port,
58 file { '/etc/bacula/storage-conf.d/empty.conf':
62 notify => Exec['bacula-sd restart-when-idle']
65 file { "${bacula::bacula_backup_path}/Catalog":
73 package { 'python3-psycopg2': ensure => installed }
74 file { '/usr/local/bin/bacula-unlink-removed-volumes':
75 source => 'puppet:///modules/bacula/bacula-unlink-removed-volumes',
78 file { '/etc/cron.d/puppet-bacula-storage-stuff': ensure => absent, }
79 concat::fragment { 'puppet-crontab--bacula-storage':
80 target => '/etc/cron.d/puppet-crontab',
82 @daily bacula chronic /usr/local/bin/bacula-unlink-removed-volumes -v
86 Bacula::Storage_per_node<<| |>>
projects / mirror / dsa-puppet.git / blob