resolvoptions: []
allow_dns_query: []
roles:
+ archive_master:
+ - sibelius.debian.org
bugsmx:
- buxtehude.debian.org
bugs_master:
include ferm::zivit
}
- if $::hostname in [glinka,rietz,sibelius] {
+ if $::hostname in [glinka,rietz] {
ferm::rule { 'dsa-rsync':
domain => '(ip ip6)',
description => 'Allow rsync access',
--- /dev/null
+uid = nobody
+gid = nogroup
+max connections = 25
+syslog facility = daemon
+socket options = SO_KEEPALIVE
+timeout = 7200
+log file = /var/log/rsyncd/rsyncd-archive.log
+
+[debian-archive]
+ path = /srv/mirrors/debian-archive
+ comment = Debian Historical Archives (use -H to save space)
+ read only = true
+
+[archive]
+ path = /srv/mirrors/debian-archive
+ comment = Debian Archive (use -H to save space)
+ read only = true
+ list = no
--- /dev/null
+class roles::archive_master {
+ $sslname = 'archive-master.debian.org'
+
+ rsync::site { 'archive_master':
+ source => 'puppet:///modules/roles/archive_master/rsyncd.conf',
+ max_clients => 100,
+ sslname => $sslname,
+ }
+
+ ssl::service { $sslname:
+ key => true,
+ tlsaport => [],
+ }
+}
projects / mirror / dsa-puppet.git / commitdiff