Versions Compared

Old Version 37

changes.mady.by.user Eigil Obrestad

Saved on

compared with

New Version 38

changes.mady.by.user Eigil Obrestad

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

KeyDescriptionExampleCreated byData-typeDatafile:

Used by:

profile::dns::<shortname>::keyThe TSIG key used for updates sent to this server. It can be useful to let this be a hiera-lookup for the zones managed by our own DNS servers.

'UvetjoX5zMiw/NbQr3biug=='

"%{hiera('profile::dns::key::update')}"

dnssec-keygen -a HMAC-MD5 -b 128 -n HOST <keyname>Stringcommon.yamlrole::bootstrap, role::dashboard

...

KeyDescriptionExampleCreated byData-typeDatafile:

Used by:

profile::pxe::imagesA list over image short-names (ID's used to identify images later).- '1604amd64'N/AList of stringscommon.yamlrole::bootstrap, role::dhcp
profile::pxe::<shortname>::nameA descriptive name of the specific image'Ubuntu 16.04 Server amd64'N/AStringcommon.yamlrole::bootstrap, role::dhcp
profile::pxe::<shortname>::kernelA URL to the kernel of the specific OS'http://archive.ubuntu.com/ubuntu/dists/xenial-proposed/main/installer-amd64/current/images/netboot/ubuntu-installer/amd64/linux'N/AStringcommon.yamlrole::bootstrap, role::dhcp
profile::pxe::<shortname>::initrdA URL to the initrd image of the specific OS'http://archive.ubuntu.com/ubuntu/dists/xenial-proposed/main/installer-amd64/current/images/netboot/ubuntu-installer/amd64/initrd.gz'N/AStringcommon.yamlrole::bootstrap, role::dhcp

...

KeyDescriptionExampleCreated byData-typeDatafile:Used by:
profile::dhcp::omapi::keyThe omapi key used to update the DHCP servers'omapi_key=='
dnssec-keygen -r /dev/urandom -a HMAC-MD5 -b 512 -n HOST key_name
Stringcommon.yaml

role::bootstrap, role::dashboard, role::dhcp

profile::dhcp::omapi::nameThe omapi key name

'key_name'

Stringcommon.yaml

role::bootstrap, role::dashboard, role::dhcp

profile::dhcp::searchdomainThe default search-domain handed to DHCP clients'cloud.domain.com'N/AStringcommon.yaml

role::bootstrap, role::dhcp

profile::dns::resolversThe DNS resolvers for clients to use

- '<ip-addres-DNS1>'

- '<ip-address-DNS2>'

N/AList of stringscommon.yaml

role::bootstrap, role::dhcp

...

KeyDescriptionExampleCreated byData-typeDatafile:Used by:
profile::dns::forwardersWhich DNS servers your DNS server should use to resolve domainnames where it is not an authorative DNS

- '<ip-addres-DNS1>'

- '<ip-address-DNS2>'

N/AList of stringscommon.yaml

role::bootstrap, role::dns::master

profile::dns::key::transferThe TSIG keys used for zone-transfers'UvetjoX5zMiw/NbQr3biug=='dnssec-keygen -a HMAC-MD5 -b 128 -n HOST <keyname>Stringcommon.yamlrole::bootstrap, role::dns::master, role::dns::slave
profile::dns::key::updateThe TSIG keys used for DNS updates'UvetjoX5zMiw/NbQr3biug=='dnssec-keygen -a HMAC-MD5 -b 128 -n HOST <keyname>Stringcommon.yamlrole::bootstrap, role::dns::master, role::dns::slave
profile::dns::slavesA list over DNS slave-servers which replicates the zone-files from the main DNS server. The hash is structured as key=Servername and value=DNS-IPv4'ns2.example.com': '192.0.2.130'N/AList of Hashescommon.yamlrole::bootstrap, role::dns::master, role::dns::slave
profile::dns::zonesA list over DNS zones managed by our DNS servers, or used by our dashboard. The hash is structured as key=DNS-zone and value=DNS-server-shortname.'zone.example.com': 'ns1'N/AList of Hashescommon.yamlrole::bootstrap, role::dashboard, role::dns::master, role::dns::slave

...

KeyDescriptionExampleCreated byData-typeDatafile:Used by:
profile::dns::<shortname>::ipv4The IPv4 address of a specific DNS server.'192.0.2.129'N/AStringcommon.yamlrole::bootstrap, role::dashboard, role::dns::master, role::dns::slave
profile::dns::<shortname>::nameThe fqdn of a specific DNS server'ns1.example.com'N/AStringcommon.yamlrole::bootstrap, role::dns::master, role::dns::slave

...

KeyDescriptionExampleCreated byData-typeDatafile:Used by:
profile::haproxy::management::ipv4The IPv4 address used in front og the loadbalancer used for managemnet services'192.0.2.151' N/AStringnetworking.yamlrole::bootstrap, role::puppet::db, role::puppet::server, role::mysql, role::balancer::management
profile::haproxy::management::ipv4::idThe VRRP id used by the IPv4 VRRP instance.11N/AIntegernetworking.yamlrole::bootstrap, role::balancer::management
profile::haproxy::management::ipv4::priorityThe VRRP priority used by the IPv4 VRRP instance.10 N/AIntegernetworking.yamlrole::bootstrap, role::balancer::management
profile::haproxy::management::ipv6The IPv4 address used in front og the loadbalancer used for managemnet services'2001:db8:beef:707::7b1'N/AStringnetworking.yamlrole::bootstrap, role::puppet::db, role::puppet::server, role::mysql, role::balancer::management 
profile::haproxy::management::ipv6::idThe VRRP id used by the IPv6 VRRP instance. 12N/AIntegernetworking.yamlrole::bootstrap, role::balancer::management
profile::haproxy::management::ipv6::priorityThe VRRP priority used by the IPv6 VRRP instance.10N/AIntegernetworking.yamlrole::bootstrap, role::balancer::management

...

KeyDescriptionExampleCreated byData-typeDatafile

Used by

profile::mysqlcluster::serversThis is a list over IPv4 addresses used by servers in the cluster. This list are used when a server starts up, to discover at least one of the machines already in the cluster.

- '192.0.2.201'

N/AStringcommon.yamlrole::bootstrap, role::mysql
profile::mysqlcluster::masterThe fqdn of one of the mysql-servers. This are in theory used by the puppet-galera module to start one server in case all servers are down.'mysql1.example.com'N/AStringcommon.yamlrole::bootstrap, role::mysql
profile::mysqlcluster::root_passwordThis is the password of the mysql root user'OwT$Etc$=|;h(=upip#3'pwgen -s -y 20 -1Stringcommon.yamlrole::bootstrap, role::mysql
profile::mysqlcluster::status_passwordThis is the password of the mysql status user

';^8P"M,Oem6le\T"am!0'

pwgen -s -y 20 -1Stringcommon.yamlrole::bootstrap, role::mysql
profile::mysqlcluster::haproxy_passwordThis is the password of the mysql haproxy user. This user is so that haproxy can create more robust checks than just see if port 3306 is open.'4g36-&jHNFF?J-7yQZHa'pwgen -s -y 20 -1Stringcommon.yamlrole::bootstrap, role::mysql

...

KeyDescriptionExampleCreated byData-typeDatafile:

Used by

profile::postgres::ipv4The IPv4 address to use in front of the postgres servers.'192.0.2.204'N/A Stringcommon.yamlrole::bootstrap, role::postgres::master, role::postgres::slave, role::puppet::db
profile::postgres::ipv4::idThe VRRP id to use for the VRRP instance negotiating for postgres's IPv4 address13N/AIntegercommon.yamlrole::bootstrap, role::postgres::master, role::postgres::slave
profile::postgres::ipv4::priorityThe VRRP priority to use for the VRRP instance negotiating for postgres's IPv4 address10N/AIntegercommon.yamlrole::bootstrap, role::postgres::master, role::postgres::slave
profile::postgres::ipv6The IPv6 address to use in front of the postgres servers.'2001:db8:beef:707::9:6591'N/A Stringcommon.yamlrole::bootstrap, role::postgres::master, role::postgres::slave, role::puppet::db
profile::postgres::ipv6::idThe VRRP id to use for the VRRP instance negotiating for postgres's IPv6 address14N/AIntegercommon.yamlrole::bootstrap, role::postgres::master, role::postgres::slave
profile::postgres::ipv6::priorityThe VRRP priority to use for the VRRP instance negotiating for postgres's IPv6 address10N/AIntegercommon.yamlrole::bootstrap, role::postgres::master, role::postgres::slave
profile::postgres::masterserverA fqdn identifying the postgres server which is supposed to be the master. This affects which servers are going to create databases and users.'pgsql1.example.com'N/AStringcommon.yamlrole::bootstrap, role::postgres::master, role::postgres::slave
profile::postgres::passwordThe password for the "postgres" postgresql user.'d4Cwfl)W}onosE~Y[]G,'pwgen -s -y 20 -1Stringcommon.yamlrole::bootstrap, role::postgres::master, role::postgres::slave
profile::postgres::replicatorpasswordThe password used for the "replicator" postgresql user.'Gz,j*>Qt'dF{-\Sr4N-_'pwgen -s -y 20 -1Stringcommon.yamlrole::bootstrap, role::postgres::master, role::postgres::slave

...

KeyDescriptionExampleCreated byData-typeDatafile:

Used by

profile::puppet::aptkeyThe gpg key used to authenticate the puppetlabs apt repository'6F6B15509CF8E59E6E469F327F438280EF8D349F'puppetlabsStringcommon.yamlAll
profile::puppet::caserverThe fqdn of the puppetca server'puppetca.example.com'N/AStringcommon.yamlAll
profile::puppet::environmentThe puppet environment a certain host should be configured to use. This needs to be a valid puppet environment, but it will also be owerridden by the ENC, so it is not important exactly which environment are listed her as long as it exists. If you do not use an ENC, this is the puppet environment a client will retrieve config from.'production'N/AStringcommon.yamlAll
profile::puppet::hostnameThis is the fqdn the clients use to contact the puppetmasters.'puppet.example.com'N/AStringcommon.yamlAll
profile::puppet::r10k::repoThe path to the git-repository which r10k uses to retrieve environments and modules.'https://github.com/myorg/r10k.git'N/AStringcommon.yamlrole::bootstrap, role::puppet::server, role::puppet::ca
profile::puppet::runintervalHow often the puppet client should run. Given as a string consisting of a number and a prefix (h, m).'60m'N/AStringcommon.yamlAll
profile::puppetdb::database::name

The name of the postgres database used by puppetdb

'puppetdb'N/AStringcommon.yamlrole::bootstrap, role::puppet::db, role::postgres::master
profile::puppetdb::database::userThe username of the postgres database used by puppetdb'puppetdb'N/AStringcommon.yamlrole::bootstrap, role::puppet::db, role::postgres::master
profile::puppetdb::database::passThe password of the postgres database used by puppetdb'teY.>&3@Ub$X-OGxOFQ7'pwgen -s -y 20 -1Stringcommon.yamlrole::bootstrap, role::puppet::db, role::postgres::master
profile::puppetdb::hostnameThe hostname which the puppetservers use to contact the puppetdb service'puppetdb.example.com'N/AStringcommon.yamlrole::bootstrap, role::puppet::server role::puppet::ca

...