X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=modules%2Fbacula%2Ftemplates%2Fbacula-dir.conf.erb;h=b1cdeddacd2505f8aa9db34b36aa61dd2cb5ba43;hb=8610e08a607c6249308c4d80d52df6f6c88a5a51;hp=8497166f38e5fb44c2e18c688377a41bb3b8124d;hpb=906b5255d354084be68d77503a1b57639fc16376;p=mirror%2Fdsa-puppet.git diff --git a/modules/bacula/templates/bacula-dir.conf.erb b/modules/bacula/templates/bacula-dir.conf.erb index 8497166f3..b1cdeddac 100644 --- a/modules/bacula/templates/bacula-dir.conf.erb +++ b/modules/bacula/templates/bacula-dir.conf.erb @@ -10,19 +10,30 @@ ######################################################################## Director { - Name = <%= bacula_director_name %> - Description = <%= hostname %> - <%= domain %> Bacula Director + Name = <%= @director_name %> + Description = <%= @hostname %> - <%= @domain %> Bacula Director QueryFile = "/etc/bacula/scripts/query.sql" WorkingDirectory = "/var/lib/bacula" - PidDirectory = "/var/run/bacula" + PidDirectory = "/run/bacula" Maximum Concurrent Jobs = 20 - Password = "<%= bacula_director_secret %>" + Password = "<%= @director_secret %>" Messages = Daemon DirAddresses = { # Always have localhost in, then the configured IP - ip = { addr = 127.0.0.1; port = 9101 } - ip = { addr = <%=bacula_director_address%>; port = <%=bacula_director_port%> } + ip = { addr = 127.0.0.1; port = <%= @port_dir %> } + ip = { addr = <%= @director_address %>; port = <%= @port_dir %> } } + + TLS Enable = yes + TLS Require = yes + TLS Verify Peer = yes + TLS Allowed CN = "clientcerts/<%= @director_address %>" + TLS CA Certificate File = "<%= @bacula_ca_path %>" + # This is a server certificate, used for incoming console connections. + TLS Certificate = "<%= @bacula_ssl_server_cert %>" + TLS Key = "<%= @bacula_ssl_server_key %>" + + Heartbeat Interval = 60 } ######################################################################## @@ -30,85 +41,76 @@ Director { ######################################################################## FileSet { Name = "Standard Set" + Ignore FileSet Changes = yes Include { Options { signature = SHA1 compression = GZIP9 + aclsupport = yes + xattrsupport = yes + } + Options { + wild = "/swapfile*" + exclude = yes } - File = "\\|bash -c \"df -Pkl -x tmpfs | tail -n +2 | awk '{print \$NF}' \"" + File = "\\|/usr/local/sbin/bacula-backup-dirs" # Dont backup directories that contain .nobackup files Exclude Dir Containing = .nobackup } Exclude { - File = /var/lib/bacula - File = /var/cache/apt/ + File = /.fsck + File = /.journal + File = /dev + File = /home/buildd/build-trees + File = /lib/init/rw File = /nonexistant File = /proc - File = /tmp - File = /.journal - File = /.fsck + File = /srv/chroot File = /sys - File = /lib/init/rw - File = /var/run + File = /tmp + File = /srv/apache-cache/mod_cache_disk + File = /var/cache/apache2/mod_cache_disk + File = /var/cache/apt + File = /var/lib/apt + File = /var/lib/bacula + File = /var/lib/munin-async File = /var/lock - File = /dev + File = /var/log/samhain + File = /var/run + File = "\\|bash -c 'grep -s -v ^# /etc/bacula/local-exclude || true'" } } -######################################################################## -# A fileset for the catalog, one sql dump of the db # -######################################################################## -FileSet { - Name = "Catalog" - Include { - Options { - signature = SHA1 - compression = GZIP9 - } - File = "/var/lib/bacula/bacula.sql" - } -} - -######################################################################## -# The job schedules # -######################################################################## - -# When to do the backups, full backup on first sunday of the month, -# differential (i.e. incremental since full) every other sunday, -# and incremental backups other days -Schedule { - Name = "WeeklyCycle" - Run = Full 1st sat at 00:35 - Run = Differential 2nd-5th sat at 00:35 - Run = Incremental sun-fri at 00:35 -} - -# This schedule does the catalog. It starts after the WeeklyCycle -Schedule { - Name = "WeeklyCycleAfterBackup" - Run = Full sun-sat at 02:10 -} ######################################################################## # Generic catalog service # ######################################################################## Catalog { Name = MyCatalog - dbname = bacula; DB Address = ""; dbuser = "bacula"; dbpassword = "s3kr1t" + dbname = <%= @db_name %>; + dbport = <%= @db_port %>; + dbaddress = "<%= @db_address %>"; + dbsslmode = verify-ca; +<% if @db_sslca %> + dbsslca = "<%= @db_sslca %>"; +<% end %> + dbuser = "<%= @db_user %>"; + dbpassword = "<%= @db_password %>" } ######################################################################## # Message delivery # ######################################################################## Messages { - Name = Standard + Name = <%= @messages_name %> mailcommand = "/usr/lib/bacula/bsmtp -h localhost -f \"\(Bacula\) %r\" -s \"Bacula: %t %e of %c %l\" %r" operatorcommand = "/usr/lib/bacula/bsmtp -h localhost -f \"\(Bacula\) %r\" -s \"Bacula: Intervention needed for %j\" %r" - mail = <%= bacula_operator_email %> = all, !skipped - operator = <%= bacula_operator_email %> = mount + mail = <%= @operator_email %> = all + operator = <%= @operator_email %> = mount console = all, !skipped, !saved - append = "/var/lib/bacula/log" = all, !skipped + syslog = all + append = "/var/lib/bacula/log" = all catalog = all } @@ -116,32 +118,10 @@ Messages { Messages { Name = Daemon mailcommand = "/usr/lib/bacula/bsmtp -h localhost -f \"\(Bacula\) %r\" -s \"Bacula daemon message\" %r" - mail = <%= bacula_operator_email %> = all, !skipped + mail = <%= @operator_email %> = all console = all, !skipped, !saved - append = "/var/lib/bacula/log" = all, !skipped -} - -######################################################################## -# Storage config # -######################################################################## - -Storage { - Name = <%= bacula_filestor_name %> - Address = <%= bacula_storage_address %> - SDPort = <%= bacula_storage_port %> - Password = "<%= bacula_storage_secret %>" - Device = <%= bacula_filestor_device %> - Media Type = <%= bacula_filestor_name %> - Maximum Concurrent Jobs = 10 -} - -######################################################################## -# Console, limited # -######################################################################## -Console { - Name = <%= bacula_monitor_name %> - Password = "<%= bacula_monitor_secret %>" - CommandACL = status, .status + syslog = all + append = "/var/lib/bacula/log" = all } ######################################################################## @@ -152,59 +132,29 @@ JobDefs { Type = Backup Level = Incremental FileSet = "Standard Set" - Schedule = "WeeklyCycle" - Storage = <%=bacula_filestor_name%> - Messages = Standard - Pool = <%=bacula_pool_name%> - Differential Backup Pool = <%=bacula_pool_name%>diff - Incremental Backup Pool = <%=bacula_pool_name%>inc - Max Full Interval = 1 month + Accurate = yes + Messages = <%= @messages_name %> + Max Full Interval = 50 days Priority = 10 Write Bootstrap = "/var/lib/bacula/%c.bsr" Maximum Concurrent Jobs = 20 + Client Run After Job = "/usr/local/sbin/postbaculajob -c \"%c\" -d \"%d\" -i \"%i\" -l \"%l\" -n \"%n\" -o /var/log/bacula/client-after.state" } ######################################################################## -# Pool definition # +# Standard Restore template, to be changed by Console program # +# Only one such job is needed for all Jobs/Clients/Storage ... # ######################################################################## -Pool { - Name = <%= bacula_pool_name %> - Pool Type = Backup - Recycle = no - AutoPrune = yes - Volume Retention = 1 year - Label Format = "${Client}-${Year}-${Month:p/2/0/r}-${Day:p/2/0/r}_${Hour:p/2/0/r}:${Minute:p/2/0/r}" - Volume Use Duration = 23h - Maximum Volume Jobs = 1 - Maximum Volume Bytes = 50G - Action On Purge = Truncate +Job { + Name = "RestoreFiles" + Type = Restore + FileSet = "Standard Set" + Client = <%= @some_client_name%> + Pool = <%= @some_pool_name %> + Messages = <%= @messages_name %> + Where = /var/tmp/bacula-restores } -Pool { - Name = <%= bacula_pool_name %>diff - Pool Type = Backup - Recycle = no - AutoPrune = yes - Volume Retention = 1 year - Label Format = "${Client}-${Year}-${Month:p/2/0/r}-${Day:p/2/0/r}_${Hour:p/2/0/r}:${Minute:p/2/0/r}" - Volume Use Duration = 23h - Maximum Volume Jobs = 1 - Maximum Volume Bytes = 50G - Action On Purge = Truncate -} - -Pool { - Name = <%= bacula_pool_name %>inc - Pool Type = Backup - Recycle = no - AutoPrune = yes - Volume Retention = 1 year - Label Format = "${Client}-${Year}-${Month:p/2/0/r}-${Day:p/2/0/r}_${Hour:p/2/0/r}:${Minute:p/2/0/r}" - Volume Use Duration = 23h - Maximum Volume Jobs = 1 - Maximum Volume Bytes = 50G - Action On Purge = Truncate -} # Scratch pool definition Pool { @@ -212,33 +162,6 @@ Pool { Pool Type = Backup } -######################################################################## -# Generic jobs # -######################################################################## -# Backup the catalog database (after the nightly save) -Job { - Name = "BackupCatalog" - JobDefs = "Standardbackup" - Level = Full - FileSet="Catalog" - Schedule = "WeeklyCycleAfterBackup" - # This creates an ASCII copy of the catalog - # Arguments to make_catalog_backup.pl are: - # make_catalog_backup.pl - RunBeforeJob = "/etc/bacula/scripts/make_catalog_backup.pl MyCatalog" - # This deletes the copy of the catalog - RunAfterJob = "/etc/bacula/scripts/delete_catalog_backup" - Write Bootstrap = "/var/lib/bacula/%n.bsr" - Priority = 15 # run after main backup - RunScript { - RunsWhen=After - RunsOnClient=No - Console = "purge volume action=all allpools storage=File" - } - # Wonder how i can get this to be dynamic. FIXME. - Client = barbrady-fd -} - ######################################################################## # And now include all the generated configs # ########################################################################