milanollo:
address: 5.153.231.2
parents: gw-bytemark
- hostgroups: computers, service, kvmdomains, jessie, apache2-hosts, nfs-server, xinetd-hosts
+ hostgroups: computers, service, kvmdomains, jessie, apache2-hosts, apache-https, nfs-server, xinetd-hosts
milanollo2:
address: 5.153.231.9
parents: milanollo
philp:
address: 5.153.231.13
parents: ganeti-bytemark
- hostgroups: computers, hassrvfs, kvmdomains, jessie, apache2-hosts
+ hostgroups: computers, hassrvfs, kvmdomains, jessie, apache2-hosts, apache-https
rainier:
address: 5.153.231.16
parents: ganeti-bytemark
delfin:
address: 5.153.231.17
parents: ganeti-bytemark
- hostgroups: computers, hassrvfs, kvmdomains, jessie, apache2-hosts, nfs-client, autofs
+ hostgroups: computers, hassrvfs, kvmdomains, jessie, apache2-hosts, apache-https, nfs-client, autofs
wuiet:
address: 5.153.231.18
parents: ganeti-bytemark
petrova:
address: 5.153.231.25
parents: ganeti-bytemark
- hostgroups: computers, kvmdomains, jessie, apache2-hosts
+ hostgroups: computers, kvmdomains, jessie, apache2-hosts, apache-https
oyens:
address: 5.153.231.26
parents: ganeti-bytemark
mirror-isc:
address: 149.20.20.7
parents: gw-isc
- hostgroups: computers, service, apache2-hosts, dl360, hpnewraid, hassrvfs, xinetd-hosts, jessie, security_mirror
+ hostgroups: computers, service, apache2-hosts, apache-https, dl360, hpnewraid, hassrvfs, xinetd-hosts, jessie, security_mirror
mirror-isc2:
address: 149.20.20.19
parents: mirror-isc
wolkenstein:
address: 82.195.75.65
parents: ganeti3
- hostgroups: computers, hasbootfs, hassrvfs, kvmdomains, service, xinetd-hosts, rsyncd-hosts, apache2-hosts, jessie
+ hostgroups: computers, hasbootfs, hassrvfs, kvmdomains, service, xinetd-hosts, rsyncd-hosts, apache2-hosts, jessie, apache-https
mipsel-manda-01:
address: 82.195.75.72
parents: gw-man-da
tye:
address: 206.12.19.129
parents: ganeti2
- hostgroups: computers, service, kvmdomains, jessie, heavy-exim, apache2-hosts, nfs-client, autofs, hassrvfs
+ hostgroups: computers, service, kvmdomains, jessie, heavy-exim, apache2-hosts, apache-https, nfs-client, autofs, hassrvfs
elgar:
address: 206.12.19.130
parents: ganeti2
mirror-umn:
address: 128.101.240.212
parents: gw-umn
- hostgroups: computers, service, apache2-hosts, dl360, hpnewraid, hassrvfs, xinetd-hosts, jessie, security_mirror
+ hostgroups: computers, service, apache2-hosts, apache-https, dl360, hpnewraid, hassrvfs, xinetd-hosts, jessie, security_mirror
mirror-umn2:
address: 128.101.240.215
parents: mirror-umn
klecker:
address: 130.89.148.10
parents: gw-utwente
- hostgroups: computers, service, apache2-hosts, rsyncd-hosts, dl380, xinetd-hosts, jessie, incomingmailrelayed2025, hassrvfs
+ hostgroups: computers, service, apache2-hosts, apache-https, rsyncd-hosts, dl380, xinetd-hosts, jessie, incomingmailrelayed2025, hassrvfs
klecker-ftp:
address: 130.89.148.12
parents: klecker
nrpe: "if [ -e /var/lib/dsa/sso/ca.crl ]; then /usr/lib/nagios/plugins/dsa-check-crl-expire -w 129600 -c 86400 /var/lib/dsa/sso/ca.crl; else echo 'No sso/ca.crl on this host.'; fi"
hostgroups: computers
-
- name: letsencrypt SSL certs
+ name: SSL certs - puppet
hosts: global
- remotecheck: "/srv/letsencrypt.debian.org/bin/check-cert-expire"
- runfrom: denis
+ remotecheck: "/usr/lib/nagios/plugins/dsa-check-cert-expire-dir /etc/puppet/modules/ssl/files/servicecerts"
+ runfrom: handel
+ -
+ name: SSL certs - LE
+ hosts: global
+ remotecheck: "/usr/lib/nagios/plugins/dsa-check-cert-expire-dir /etc/puppet/modules/ssl/files/from-letsencrypt"
+ runfrom: handel
# }}}
# {{{ HW health/raid
-
projects / mirror / dsa-nagios.git / blobdiff