projects
/
mirror
/
dsa-puppet.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
maybe that works better with correct syntax
[mirror/dsa-puppet.git]
/
manifests
/
site.pp
diff --git
a/manifests/site.pp
b/manifests/site.pp
index
b0aadc6
..
d8a717c
100644
(file)
--- a/
manifests/site.pp
+++ b/
manifests/site.pp
@@
-9,48
+9,109
@@
File {
ensure => file,
}
ensure => file,
}
+Exec {
+ path => "/usr/bin:/usr/sbin:/bin:/sbin"
+}
+
node default {
node default {
+ $localinfo = yamlinfo('*', "/etc/puppet/modules/debian-org/misc/local.yaml")
+ $nodeinfo = nodeinfo($fqdn, "/etc/puppet/modules/debian-org/misc/local.yaml")
+ $hoster = whohosts($nodeinfo, "/etc/puppet/modules/debian-org/misc/hoster.yaml")
+ $keyinfo = allnodeinfo("sshRSAHostKey", "ipHostNumber")
+ notice("hoster for ${fqdn} is ${hoster}")
+
+ $mxinfo = allnodeinfo("mXRecord")
+
include munin-node
include munin-node
- include samhain
include sudo
include sudo
+ include ssh
include debian-org
include debian-org
+ include monit
+ include apt-keys
+ include ntp
+ include ssl
+
+ include motd
+
+ case $hostname {
+ finzi,fano,fasch,field: { include kfreebsd }
+ }
case $smartarraycontroller {
"true": { include debian-proliant }
case $smartarraycontroller {
"true": { include debian-proliant }
- default: {}
+ }
+ case $kvmdomain {
+ "true": { package { acpid: ensure => installed } }
+ }
+ case $mptraid {
+ "true": { include "raidmpt" }
}
case $mta {
}
case $mta {
- "exim4": { include exim }
- default: {}
+ "exim4": {
+ case extractnodeinfo($nodeinfo, 'heavy_exim') {
+ 'true': { include exim::mx }
+ default: { include exim }
+ }
+ }
}
}
- import "nagios"
- include nagios-client
+ case extractnodeinfo($nodeinfo, 'muninmaster') {
+ true: { include munin-node::master }
+ }
- case $hostname {
- spohr: {
- import "nagios"
- include nagios-server
- }
- default: {}
+ case extractnodeinfo($nodeinfo, 'nagiosmaster') {
+ true: { include nagios::server }
+ default: { include nagios::client }
}
case $apache2 {
}
case $apache2 {
- "true": { case $hostname {
- "carver": { include apache2 }
- default: {}
- } }
- default: {}
+ "true": {
+ case extractnodeinfo($nodeinfo, 'apache2_security_mirror') {
+ true: { include apache2::security_mirror }
+ default: { include apache2 }
+ }
+ }
+ }
+
+ case extractnodeinfo($nodeinfo, 'buildd') {
+ 'true': {
+ include buildd
+ }
}
case $hostname {
}
case $hostname {
- malo: { include buildd }
- default: {}
+ klecker,ravel,senfl,orff: { include named::secondary }
+ geo1,geo2,geo3: { include named::geodns }
+ bartok,franck,liszt,master,ries,samosa,schein,spohr,steffani: { include named::recursor }
}
}
-}
+ case $hostname {
+ cilea,luchesi,paganini,rautavaara,sibelius: {}
+ default: {
+ case $kernel {
+ Linux: {
+ include ferm
+ }
+ }
+ }
+ }
+ include ferm::per-host
+
+ case $hostname {
+ beethoven,ravel,spohr: {
+ include nfs-server
+ }
+ }
-node penalosa inherits default {
- include hosts
+ case $brokenhosts {
+ "true": { include hosts }
+ }
+ case $hoster {
+ "ubcece", "darmstadt", "ftcollins", "grnet": { include resolv }
+ }
+ case $portforwarder_user_exists {
+ "true": { include portforwarder }
+ }
+ include samhain
}
}