bm-bl10:
address: 5.153.231.250
parents: gw-bytemark
- hostgroups: computers, bm-bl, acpid-hosts, service, wheezy, openstack-compute, broken_mq
+ hostgroups: computers, bm-bl, service, jessie
bm-bl11:
address: 5.153.231.251
parents: gw-bytemark
- hostgroups: computers, bm-bl, acpid-hosts, service, wheezy, openstack-compute, broken_mq
+ hostgroups: computers, bm-bl, service, jessie
bm-bl12:
address: 5.153.231.252
parents: gw-bytemark
- hostgroups: computers, bm-bl, acpid-hosts, service, wheezy, openstack-compute, broken_mq
+ hostgroups: computers, bm-bl, service, jessie
+ bm-bl13:
+ address: 5.153.231.253
+ parents: gw-bytemark
+ hostgroups: computers, bm-bl, service, jessie
+ bm-bl14:
+ address: 5.153.231.254
+ parents: gw-bytemark
+ hostgroups: computers, bm-bl, service, jessie
milanollo:
address: 5.153.231.2
parents: gw-bytemark
- hostgroups: computers, service, kvmdomains, jessie, apache2-hosts, nfs-server, xinetd-hosts
+ hostgroups: computers, service, kvmdomains, jessie, apache2-hosts, apache-https, nfs-server, xinetd-hosts
milanollo2:
address: 5.153.231.9
parents: milanollo
philp:
address: 5.153.231.13
parents: ganeti-bytemark
- hostgroups: computers, hassrvfs, kvmdomains, jessie, apache2-hosts
+ hostgroups: computers, hassrvfs, kvmdomains, jessie, apache2-hosts, apache-https
rainier:
address: 5.153.231.16
parents: ganeti-bytemark
delfin:
address: 5.153.231.17
parents: ganeti-bytemark
- hostgroups: computers, hassrvfs, kvmdomains, jessie, apache2-hosts, nfs-client, autofs
+ hostgroups: computers, hassrvfs, kvmdomains, jessie, apache2-hosts, apache-https, nfs-client, autofs
wuiet:
address: 5.153.231.18
parents: ganeti-bytemark
petrova:
address: 5.153.231.25
parents: ganeti-bytemark
- hostgroups: computers, kvmdomains, jessie, apache2-hosts
+ hostgroups: computers, kvmdomains, jessie, apache2-hosts, apache-https
oyens:
address: 5.153.231.26
parents: ganeti-bytemark
address: 5.153.231.32
parents: ganeti-bytemark
hostgroups: computers, kvmdomains, jessie, no-bacula
+ tate:
+ address: 5.153.231.33
+ parents: ganeti-bytemark
+ hostgroups: computers, service, kvmdomains, jessie, autofs, nfs-client, apache2-hosts, apache-https
gideon:
address: 5.153.231.34
parents: ganeti-bytemark
httpredir-bm-01:
address: 5.153.231.35
parents: ganeti-bytemark
- hostgroups: computers, service, kvmdomains, wheezy, apache2-hosts
+ hostgroups: computers, service, kvmdomains, jessie, apache2-hosts
lindsay:
address: 5.153.231.36
parents: ganeti-bytemark
mirror-anu:
address: 150.203.164.39
parents: gw-cecsit
- hostgroups: computers, service, apache2-hosts, rsyncd-hosts, dl360, hassrvfs, xinetd-hosts, jessie, security_mirror, apache-https
+ hostgroups: computers, service, apache2-hosts, dl360, hpnewraid, hassrvfs, xinetd-hosts, jessie, security_mirror, apache-https
+ mirror-anu2:
+ address: 150.203.164.60
+ parents: mirror-anu
+ hostgroups: secondary-IPs
+ mirror-anu3:
+ address: 150.203.164.61
+ parents: mirror-anu
+ hostgroups: secondary-IPs
+ mirror-anu4:
+ address: 150.203.164.62
+ parents: mirror-anu
+ hostgroups: secondary-IPs
# }}}
# {{{ gw-conova
sompek:
mirror-isc:
address: 149.20.20.7
parents: gw-isc
- hostgroups: computers, service, apache2-hosts, dl360, hassrvfs, xinetd-hosts, jessie, security_mirror
+ hostgroups: computers, service, apache2-hosts, apache-https, dl360, hpnewraid, hassrvfs, xinetd-hosts, jessie, security_mirror
mirror-isc2:
address: 149.20.20.19
parents: mirror-isc
czerny:
address: 82.195.75.109
parents: gw-man-da
- hostgroups: computers, service, dl380, acpid-hosts, wheezy, drbd-hosts
+ hostgroups: computers, service, dl380, acpid-hosts, jessie, drbd-hosts
clementi:
address: 82.195.75.103
parents: gw-man-da
- hostgroups: computers, service, dl380, acpid-hosts, wheezy, drbd-hosts
+ hostgroups: computers, service, dl380, acpid-hosts, jessie, drbd-hosts
bendel:
address: 82.195.75.100
parents: ganeti3
wolkenstein:
address: 82.195.75.65
parents: ganeti3
- hostgroups: computers, hasbootfs, hassrvfs, kvmdomains, service, xinetd-hosts, rsyncd-hosts, apache2-hosts, jessie
+ hostgroups: computers, hasbootfs, hassrvfs, kvmdomains, service, xinetd-hosts, rsyncd-hosts, apache2-hosts, jessie, apache-https
mipsel-manda-01:
address: 82.195.75.72
parents: gw-man-da
ubc-bl4:
address: 206.12.19.214
parents: sw-ubcece-kais
- hostgroups: computers, bl460, acpid-hosts, service, wheezy, drbd-hosts
+ hostgroups: computers, bl460, acpid-hosts, service, jessie, drbd-hosts
ubc-bl8:
address: 206.12.19.218
parents: sw-ubcece-kais
glinka:
address: 206.12.19.126
parents: ganeti2
- hostgroups: computers, service, kvmdomains, wheezy, apache2-hosts, nfs-client, autofs, xinetd-hosts
+ hostgroups: computers, service, kvmdomains, jessie, apache2-hosts, nfs-client, autofs, xinetd-hosts
tye:
address: 206.12.19.129
parents: ganeti2
- hostgroups: computers, service, kvmdomains, wheezy, heavy-exim, apache2-hosts, nfs-client, autofs, hassrvfs
+ hostgroups: computers, service, kvmdomains, jessie, heavy-exim, apache2-hosts, apache-https, nfs-client, autofs, hassrvfs
elgar:
address: 206.12.19.130
parents: ganeti2
sonntag:
address: 206.12.19.142
parents: ganeti2
- hostgroups: computers, service, kvmdomains, wheezy, nfs-client, autofs
+ hostgroups: computers, service, kvmdomains, jessie, nfs-client, autofs
menotti:
address: 206.12.19.143
parents: ganeti2
mirror-umn:
address: 128.101.240.212
parents: gw-umn
- hostgroups: computers, service, apache2-hosts, dl360, hassrvfs, xinetd-hosts, jessie, security_mirror
+ hostgroups: computers, service, apache2-hosts, apache-https, dl360, hpnewraid, hassrvfs, xinetd-hosts, jessie, security_mirror
mirror-umn2:
address: 128.101.240.215
parents: mirror-umn
klecker:
address: 130.89.148.10
parents: gw-utwente
- hostgroups: computers, service, apache2-hosts, rsyncd-hosts, dl380, xinetd-hosts, jessie, incomingmailrelayed2025, hassrvfs
+ hostgroups: computers, service, apache2-hosts, apache-https, rsyncd-hosts, dl380, xinetd-hosts, jessie, incomingmailrelayed2025, hassrvfs
klecker-ftp:
address: 130.89.148.12
parents: klecker
general:
alias: general purpose developer accessible machines
+ hpnewraid:
+ alias: new (2015+) machines where we need hpssacli instead of hpacucli
+ private: 1
dl380:
alias: HP DL380 hosts
private: 1
servicegroups: diskspace
nrpe: "/usr/lib/nagios/plugins/check_disk -w 5% -c 2% -A -X devpts -X proc -X linprocfs -X devfs -X fdescfs -X sysfs -X nfs -X nfs4 --ignore-eregi-path='/home/buildd/build-tr|/var/lib/schroot/mount|/proc/sys/fs/binfmt_misc'"
hostgroups: computers
- excludehosts: sibelius
+ excludehosts: sibelius, rietz
-
name: disk usage - all
servicegroups: diskspace
nrpe: "/usr/lib/nagios/plugins/check_disk -X devpts -X proc -X linprocfs -X devfs -X fdescfs -X sysfs -X nfs -x nfs4 -x /srv/farm-snapshot/farm-misc 95 98"
hosts: sibelius
+ -
+ name: disk usage - all
+ servicegroups: diskspace
+ nrpe: "/usr/lib/nagios/plugins/check_disk -X devpts -X proc -X linprocfs -X devfs -X fdescfs -X sysfs -X nfs -x nfs4 -x /srv -x /home 95 98"
+ hosts: rietz
-
name: disk usage on /
name: "sso CRL"
nrpe: "if [ -e /var/lib/dsa/sso/ca.crl ]; then /usr/lib/nagios/plugins/dsa-check-crl-expire -w 129600 -c 86400 /var/lib/dsa/sso/ca.crl; else echo 'No sso/ca.crl on this host.'; fi"
hostgroups: computers
+ -
+ name: SSL certs - puppet
+ hosts: global
+ remotecheck: "/usr/lib/nagios/plugins/dsa-check-cert-expire-dir /etc/puppet/modules/ssl/files/servicecerts"
+ runfrom: handel
+ -
+ name: SSL certs - LE
+ hosts: global
+ remotecheck: "/usr/lib/nagios/plugins/dsa-check-cert-expire-dir /etc/puppet/modules/ssl/files/from-letsencrypt"
+ runfrom: handel
# }}}
# {{{ HW health/raid
-
nrpe: "/usr/lib/nagios/plugins/dsa-check-hpacucli"
check_interval: 120
hostgroups: dl385, dl380, dl360, bl460, dl180
- excludehosts: schein, rietz, mirror-anu, mirror-isc, mirror-umn
+ excludehosts: schein, rietz
+ excludehostgroups: hpnewraid
-
name: HW - hpacucli status
servicegroups: raid
servicegroups: raid
nrpe: "/usr/lib/nagios/plugins/dsa-check-hpssacli"
check_interval: 120
- hosts: mirror-anu, mirror-isc, mirror-umn
+ hostgroups: hpnewraid
###
# -
# name: HW - edac status
check: check_tcp!873
hosts: mirror-umn2, mirror-umn3
depends: mirror-umn:process - xinetd
+ -
+ name: network service - rsync
+ check: check_tcp!873
+ hosts: mirror-anu2, mirror-anu3
+ depends: mirror-anu:process - xinetd
###
-
name: process - icinga