]> git.apps.os.sepia.ceph.com Git - ceph-cm-ansible.git/log
ceph-cm-ansible.git
9 years agoMake pmlogmerge_reduce configurable 239/head
Zack Cerza [Thu, 5 May 2016 22:27:23 +0000 (16:27 -0600)]
Make pmlogmerge_reduce configurable

Signed-off-by: Zack Cerza <zack@redhat.com>
9 years agoMake pmlogmerge_retain configurable
Zack Cerza [Thu, 5 May 2016 22:24:39 +0000 (16:24 -0600)]
Make pmlogmerge_retain configurable

Signed-off-by: Zack Cerza <zack@redhat.com>
9 years agoMerge pull request #238 from ceph/wip-pcp-js
Dan Mick [Wed, 4 May 2016 22:14:26 +0000 (15:14 -0700)]
Merge pull request #238 from ceph/wip-pcp-js

pcp: A dynamic dashboard with host- and time-selection

Reviewed-by: Dan Mick <dmick@redhat.com>
9 years agoMerge pull request #237 from ceph/wip-check4-selinux
Zack Cerza [Wed, 4 May 2016 21:20:05 +0000 (15:20 -0600)]
Merge pull request #237 from ceph/wip-check4-selinux

testnode: Skip NRPE selinux setup if selinux disabled

9 years agoindex.js 238/head
Zack Cerza [Mon, 25 Apr 2016 16:39:59 +0000 (10:39 -0600)]
index.js

9 years agotestnode: Skip NRPE selinux setup if selinux disabled 237/head
David Galloway [Tue, 3 May 2016 20:32:36 +0000 (16:32 -0400)]
testnode: Skip NRPE selinux setup if selinux disabled

Fixes: http://tracker.ceph.com/issues/15675
Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agoMerge pull request #236 from ceph/wip-xenial-nicnames
Dan Mick [Thu, 28 Apr 2016 23:33:34 +0000 (16:33 -0700)]
Merge pull request #236 from ceph/wip-xenial-nicnames

cobbler: Prevent systemd from renaming NICs

Reviewed-by: Dan Mick <dmick@redhat.com>
9 years agocobbler: Prevent systemd from renaming NICs 236/head
David Galloway [Thu, 28 Apr 2016 23:02:21 +0000 (19:02 -0400)]
cobbler: Prevent systemd from renaming NICs

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agoMerge pull request #235 from ceph/wip-no-getty
Dan Mick [Thu, 28 Apr 2016 19:49:52 +0000 (12:49 -0700)]
Merge pull request #235 from ceph/wip-no-getty

testnode: Remove manual configuration of getty

Reviewed-by: Dan Mick <dmick@redhat.com>
9 years agotestnode: Remove manual configuration of getty 235/head
David Galloway [Tue, 26 Apr 2016 20:49:28 +0000 (16:49 -0400)]
testnode: Remove manual configuration of getty

Manual configuration of the getty service is no longer required for
Trusty or later.  The system-specific "console=ttySX" parameter in
/proc/cmdline is enough to configure the SOL tty during Ubuntu
installation.

See http://tracker.ceph.com/issues/15269 for further explanation.

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agoMerge pull request #234 from ceph/wip-preseed-bootdev
Dan Mick [Wed, 27 Apr 2016 23:23:05 +0000 (16:23 -0700)]
Merge pull request #234 from ceph/wip-preseed-bootdev

cobbler: Only set bootdev in kickstart if installing Xenial.

Reviewed-by: Dan Mick <dmick@redhat.com>
9 years agocobbler: Only set bootdev in kickstart if installing Xenial. 234/head
David Galloway [Wed, 27 Apr 2016 21:00:00 +0000 (17:00 -0400)]
cobbler: Only set bootdev in kickstart if installing Xenial.

"bootdev string default" is only supported in Xenial.

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agoMerge pull request #233 from ceph/wip-preseed-bootdev
Zack Cerza [Wed, 27 Apr 2016 21:05:58 +0000 (15:05 -0600)]
Merge pull request #233 from ceph/wip-preseed-bootdev

cobbler: Only set bootdev in kickstart if installing Xenial.

9 years agocobbler: Only set bootdev in kickstart if installing Xenial. 233/head
David Galloway [Wed, 27 Apr 2016 21:00:00 +0000 (17:00 -0400)]
cobbler: Only set bootdev in kickstart if installing Xenial.

"bootdev string default" is only supported in Xenial.

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agoMerge pull request #232 from ceph/wip-xenial
Zack Cerza [Wed, 27 Apr 2016 17:55:25 +0000 (11:55 -0600)]
Merge pull request #232 from ceph/wip-xenial

Add support for Ubuntu 16.04 Xenial

9 years agocobbler: Make Ubuntu kickstart compatible with Xenial 232/head
David Galloway [Wed, 27 Apr 2016 16:38:52 +0000 (12:38 -0400)]
cobbler: Make Ubuntu kickstart compatible with Xenial

linux-firmware-nonfree package is not available in Xenial

Installer was also stopping after package install asking for
GRUB install destination.  Adding the 'bootdev string default'
line bypasses the message and is already the lab default so
shouldn't affect other distro versions.

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agotestnode: Add Xenial-specific packages
David Galloway [Wed, 27 Apr 2016 16:20:44 +0000 (12:20 -0400)]
testnode: Add Xenial-specific packages

Used roles/testnode/vars/ubuntu_14.yml as template.  Differences are:
 - libboost-thread1.54.0 updated to libboost-thread1.58.0
 - libcrypto++9 updated to libcrypto++9v5
 - libssl0.9.8 updated to libssl1.0.0
 - mpich2, libmpich2-dev, and dmapi not available in Xenial

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agoMerge pull request #229 from ceph/wip-nameserver
Dan Mick [Tue, 26 Apr 2016 01:27:20 +0000 (18:27 -0700)]
Merge pull request #229 from ceph/wip-nameserver

A role for an internal master nameserver

Reviewed-by: Dan Mick <dmick@redhat.com>
9 years agotestnode: Add sshd config for Ubuntu 16.04
David Galloway [Mon, 25 Apr 2016 19:25:42 +0000 (15:25 -0400)]
testnode: Add sshd config for Ubuntu 16.04

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agocobbler: Add Ubuntu 16.04 (Xenial Xerus)
David Galloway [Fri, 22 Apr 2016 15:14:36 +0000 (11:14 -0400)]
cobbler: Add Ubuntu 16.04 (Xenial Xerus)

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agoMerge pull request #231 from ceph/wip-nrpe-selinux
Dan Mick [Fri, 22 Apr 2016 23:03:49 +0000 (16:03 -0700)]
Merge pull request #231 from ceph/wip-nrpe-selinux

testnode: Update SELinux policy when configuring NRPE

9 years agotestnode: Update SELinux policy when configuring NRPE 231/head
David Galloway [Fri, 22 Apr 2016 22:50:10 +0000 (18:50 -0400)]
testnode: Update SELinux policy when configuring NRPE

The 'nagios_run_sudo' boolean was added after RHEL7.1 GA.

https://rhn.redhat.com/errata/RHBA-2015-1140.html

Attempting to set the boolean when it's not present causes ansible
to fail.  NRPE will cause SELinux failures in test jobs unless set
so the only other option would be to disable NRPE on
RHEL/CentOS <= 7.1

This change ensures the testnode has the latest version of SELinux
policy installed, and thus, ensuring the boolean exists.

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agoMerge pull request #230 from ceph/wip-pcp-perms
David Galloway [Fri, 22 Apr 2016 18:28:42 +0000 (14:28 -0400)]
Merge pull request #230 from ceph/wip-pcp-perms

pcp: Correct /var/log/pcp permissions for collectors

9 years agoCorrect /var/log/pcp permissions for collectors 230/head
Zack Cerza [Fri, 22 Apr 2016 18:20:27 +0000 (12:20 -0600)]
Correct /var/log/pcp permissions for collectors

Some hosts were getting a /var/log/pcp/pmmgr that was owned by root:root
for some reason.

Fixes: http://tracker.ceph.com/issues/15575
Signed-off-by: Zack Cerza <zack@redhat.com>
9 years agoMerge pull request #227 from ceph/wip-pcpweb-deb
David Galloway [Fri, 22 Apr 2016 17:47:14 +0000 (13:47 -0400)]
Merge pull request #227 from ceph/wip-pcpweb-deb

Add pcp-webapi on ubuntu upstream setups; set pmcd connect timeout for pmmgr

9 years agonameserver: Add check for ansible_version.major >= 2 229/head
David Galloway [Thu, 21 Apr 2016 20:09:56 +0000 (16:09 -0400)]
nameserver: Add check for ansible_version.major >= 2

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agonameserver: Add README
David Galloway [Thu, 21 Apr 2016 19:45:28 +0000 (15:45 -0400)]
nameserver: Add README

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agonameserver: Add ability to set named daemon options
David Galloway [Thu, 21 Apr 2016 06:41:54 +0000 (02:41 -0400)]
nameserver: Add ability to set named daemon options

The variable in defaults/main.yml will leave /etc/sysconfig/named
empty which is the package default.  We want IPv4 only however.
This is set in the secrets repo.

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agonameserver: Configure firewalld to allow DNS traffic
David Galloway [Thu, 21 Apr 2016 02:25:57 +0000 (22:25 -0400)]
nameserver: Configure firewalld to allow DNS traffic

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agonameserver: Add configuration task for named service
David Galloway [Wed, 20 Apr 2016 23:54:46 +0000 (19:54 -0400)]
nameserver: Add configuration task for named service

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agonameserver: Add named service handlers
David Galloway [Wed, 20 Apr 2016 23:24:35 +0000 (19:24 -0400)]
nameserver: Add named service handlers

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agonameserver: Add records task
David Galloway [Thu, 14 Apr 2016 02:16:34 +0000 (22:16 -0400)]
nameserver: Add records task

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agonameserver: Add packages task
David Galloway [Tue, 12 Apr 2016 20:28:06 +0000 (16:28 -0400)]
nameserver: Add packages task

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agonameserver: Initial role structure creation
David Galloway [Tue, 12 Apr 2016 19:54:23 +0000 (15:54 -0400)]
nameserver: Initial role structure creation

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agopcp_manager_package varies depending on the source 227/head
Zack Cerza [Thu, 21 Apr 2016 20:47:56 +0000 (14:47 -0600)]
pcp_manager_package varies depending on the source

Signed-off-by: Zack Cerza <zack@redhat.com>
9 years agoFix typo
Zack Cerza [Thu, 21 Apr 2016 20:47:38 +0000 (14:47 -0600)]
Fix typo

Signed-off-by: Zack Cerza <zack@redhat.com>
9 years agoMerge pull request #228 from ceph/wip-no-lstn
Zack Cerza [Thu, 21 Apr 2016 17:35:13 +0000 (11:35 -0600)]
Merge pull request #228 from ceph/wip-no-lstn

common: Replace bad epel mirror

9 years agocommon: Replace bad epel mirror 228/head
David Galloway [Thu, 21 Apr 2016 17:32:18 +0000 (13:32 -0400)]
common: Replace bad epel mirror

Mirror fedora-epel.mirror.lstn.net is almost a week out of date and
causing yum package transactions to fail due to bad repodata.  Replacing
with a mirror closer to the sepia and octo labs.

Fixes: http://tracker.ceph.com/issues/15539
Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agoSet PMCD_CONNECT_TIMEOUT
Zack Cerza [Thu, 21 Apr 2016 16:19:26 +0000 (10:19 -0600)]
Set PMCD_CONNECT_TIMEOUT

Signed-off-by: Zack Cerza <zack@redhat.com>
9 years agoEnable pcp-webapi on Ubuntu with upstream packages
Zack Cerza [Thu, 21 Apr 2016 16:16:53 +0000 (10:16 -0600)]
Enable pcp-webapi on Ubuntu with upstream packages

Signed-off-by: Zack Cerza <zack@redhat.com>
9 years agoMerge pull request #226 from ceph/wip-pcp-upstream
David Galloway [Wed, 20 Apr 2016 14:57:19 +0000 (10:57 -0400)]
Merge pull request #226 from ceph/wip-pcp-upstream

pcp: Optionally use upstream package repos

9 years agopcp: Optionally use upstream package repos 226/head
Zack Cerza [Fri, 15 Apr 2016 22:58:39 +0000 (16:58 -0600)]
pcp: Optionally use upstream package repos

Signed-off-by: Zack Cerza <zack@redhat.com>
9 years agoMerge pull request #225 from dachary/wip-xenial
Dan Mick [Tue, 12 Apr 2016 18:17:34 +0000 (11:17 -0700)]
Merge pull request #225 from dachary/wip-xenial

testnodes: add ubuntu 16.04 xenial support

Reviewed-by: Dan Mick <dmick@redhat.com>
9 years agoopenstack: console handling is done differently 225/head
Loic Dachary [Tue, 12 Apr 2016 06:57:52 +0000 (08:57 +0200)]
openstack: console handling is done differently

All hostnames starting with target are created for OpenStack and their
console is accessible via horizon or via other means. There is no need
to configure the serial console in this case.

Signed-off-by: Loic Dachary <loic@dachary.org>
9 years agotestnodes: add ubuntu 16.04 xenial support
Loic Dachary [Sat, 9 Apr 2016 06:56:17 +0000 (08:56 +0200)]
testnodes: add ubuntu 16.04 xenial support

Signed-off-by: Loic Dachary <loic@dachary.org>
9 years agoMerge pull request #219 from dachary/wip-paddles
Zack Cerza [Mon, 11 Apr 2016 22:43:31 +0000 (16:43 -0600)]
Merge pull request #219 from dachary/wip-paddles

minor boostrap paddles fixes

9 years agoMerge pull request #224 from dachary/wip-arch
Loic Dachary [Fri, 8 Apr 2016 16:09:11 +0000 (18:09 +0200)]
Merge pull request #224 from dachary/wip-arch

skip packages / repo unavailable on aarch64

Reviewed-by: Sébastien Han <shan@redhat.com>
9 years agoskip packages / repo unavailable on aarch64 224/head
Loic Dachary [Wed, 6 Apr 2016 19:04:16 +0000 (21:04 +0200)]
skip packages / repo unavailable on aarch64

Signed-off-by: Loic Dachary <loic@dachary.org>
9 years agoMerge pull request #222 from ceph/wip-nagios-load
Dan Mick [Fri, 8 Apr 2016 01:58:29 +0000 (18:58 -0700)]
Merge pull request #222 from ceph/wip-nagios-load

testnodes: Set sane warn/crit thresholds for nagios check_load

Reviewed-by: Dan Mick <dmick@redhat.com>
9 years agoRevert "replace hardcoded x86_64 with {{ansible_architecture}}"
Loic Dachary [Thu, 7 Apr 2016 07:01:39 +0000 (09:01 +0200)]
Revert "replace hardcoded x86_64 with {{ansible_architecture}}"

This reverts commit 74404d3e9f11c62fddb00fcc1616c02d7f520af3.

9 years agoMerge pull request #214 from ceph/wip-pcp
Dan Mick [Thu, 31 Mar 2016 20:22:35 +0000 (13:22 -0700)]
Merge pull request #214 from ceph/wip-pcp

A role for PCP

Reviewed-by: Dan Mick <dmick@redhat.com>
9 years agoEmbellish overview documentation 214/head
Zack Cerza [Thu, 31 Mar 2016 18:18:38 +0000 (12:18 -0600)]
Embellish overview documentation

Signed-off-by: Zack Cerza <zack@redhat.com>
9 years agoMention support for CentOS 6 and Debian 8
Zack Cerza [Thu, 31 Mar 2016 16:50:51 +0000 (10:50 -0600)]
Mention support for CentOS 6 and Debian 8

Signed-off-by: Zack Cerza <zack@redhat.com>
9 years agoSupport Fedora as a collector
Zack Cerza [Thu, 31 Mar 2016 16:14:07 +0000 (10:14 -0600)]
Support Fedora as a collector

Signed-off-by: Zack Cerza <zack@redhat.com>
9 years agoMove pcp toward the beginning of the playbook
Zack Cerza [Thu, 31 Mar 2016 15:52:43 +0000 (09:52 -0600)]
Move pcp toward the beginning of the playbook

Signed-off-by: Zack Cerza <zack@redhat.com>
9 years agoDon't depend on the users role
Zack Cerza [Thu, 31 Mar 2016 15:39:39 +0000 (09:39 -0600)]
Don't depend on the users role

It's not a real dependency; if we want to update users on the node we
can run the users.yml playbook.

Signed-off-by: Zack Cerza <zack@redhat.com>
9 years agoSet PMCD_CONNECT_TIMEOUT in pmmgr.options
Zack Cerza [Thu, 31 Mar 2016 15:34:56 +0000 (09:34 -0600)]
Set PMCD_CONNECT_TIMEOUT in pmmgr.options

With ~400 hosts, polling takes a very long time with default values.
Dropping the connect timeout to 0.1s speeds things way up.

Signed-off-by: Zack Cerza <zack@redhat.com>
9 years agoRemove lab_domain from target-host
Zack Cerza [Thu, 31 Mar 2016 15:26:55 +0000 (09:26 -0600)]
Remove lab_domain from target-host

Signed-off-by: Zack Cerza <zack@redhat.com>
9 years agoMerge pull request #223 from ceph/wip-sam-ansible
Zack Cerza [Wed, 30 Mar 2016 22:45:33 +0000 (16:45 -0600)]
Merge pull request #223 from ceph/wip-sam-ansible

Don't use sudo for rpm --rebuild-db and remove more packages for testnode

9 years agoInitial PCP role for performance monitoring
Zack Cerza [Fri, 18 Mar 2016 00:21:50 +0000 (18:21 -0600)]
Initial PCP role for performance monitoring

http://pcp.io/

Signed-off-by: Zack Cerza <zack@redhat.com>
9 years agotestnodes: Set sane warn/crit thresholds for nagios check_load 222/head
David Galloway [Wed, 30 Mar 2016 15:49:09 +0000 (11:49 -0400)]
testnodes: Set sane warn/crit thresholds for nagios check_load

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agotestnode/tasks/yum_systems.yml: don't use sudo for rpm --rebuilddb 223/head
Samuel Just [Tue, 29 Mar 2016 20:01:44 +0000 (13:01 -0700)]
testnode/tasks/yum_systems.yml: don't use sudo for rpm --rebuilddb

Introduced: 4706498a68d5afd134867754676a874b2603b44b
Signed-off-by: Samuel Just <sjust@redhat.com>
9 years agotestnode: remove python-rbd and python-cephfs as well
Samuel Just [Tue, 29 Mar 2016 17:33:21 +0000 (10:33 -0700)]
testnode: remove python-rbd and python-cephfs as well

Signed-off-by: Samuel Just <sjust@redhat.com>
9 years agoMerge pull request #221 from ceph/wip-apt-clean
vasukulkarni [Tue, 29 Mar 2016 19:52:02 +0000 (12:52 -0700)]
Merge pull request #221 from ceph/wip-apt-clean

Package fixes and workarounds

9 years agotestnode/tasks/apt: force yes on upgrade 221/head
Samuel Just [Mon, 28 Mar 2016 19:48:06 +0000 (12:48 -0700)]
testnode/tasks/apt: force yes on upgrade

Fixes: http://tracker.ceph.com/issues/15280
Signed-off-by: Samuel Just <sjust@redhat.com>
9 years agotestnode/vars/apt_systems.yml: add ceph-fs-common[-dbg] to ceph_packages_to_remove
Samuel Just [Fri, 25 Mar 2016 01:59:26 +0000 (18:59 -0700)]
testnode/vars/apt_systems.yml: add ceph-fs-common[-dbg] to ceph_packages_to_remove

Signed-off-by: Samuel Just <sjust@redhat.com>
9 years agoroles/testnode/vars/yum_systems.yml: add missing ceph_packages_to_remove
Samuel Just [Thu, 24 Mar 2016 19:01:19 +0000 (12:01 -0700)]
roles/testnode/vars/yum_systems.yml: add missing ceph_packages_to_remove

I added iozone and mod_fastcgi to ceph_packages_to_remove rather than
ceph_dependency_packages_to_remove since we build them?

Signed-off-by: Samuel Just <sjust@redhat.com>
9 years agotestnode/tasks/yum_systems.yml: always rebuild rpmdb
Samuel Just [Thu, 24 Mar 2016 21:29:39 +0000 (14:29 -0700)]
testnode/tasks/yum_systems.yml: always rebuild rpmdb

Signed-off-by: Samuel Just <sjust@redhat.com>
9 years agotestnode/tasks/apt_systems.yml: always clean apt cache
Samuel Just [Wed, 23 Mar 2016 20:24:25 +0000 (13:24 -0700)]
testnode/tasks/apt_systems.yml: always clean apt cache

Intended as a work around for #15090 (apt-get update
hash sum mismatch).

Signed-off-by: Samuel Just <sjust@redhat.com>
9 years agoMerge pull request #220 from dachary/wip-arch
Zack Cerza [Mon, 28 Mar 2016 20:17:56 +0000 (14:17 -0600)]
Merge pull request #220 from dachary/wip-arch

replace hardcoded x86_64 with {{ansible_architecture}}

9 years agoreplace hardcoded x86_64 with {{ansible_architecture}} 220/head
Loic Dachary [Sun, 27 Mar 2016 15:32:40 +0000 (17:32 +0200)]
replace hardcoded x86_64 with {{ansible_architecture}}

Signed-off-by: Thierry Delamare <t.delamare@laposte.net>
Signed-off-by: Loic Dachary <loic@dachary.org>
9 years agopaddles: cope with undefined paddles_address 219/head
Loic Dachary [Fri, 25 Mar 2016 17:08:21 +0000 (18:08 +0100)]
paddles: cope with undefined paddles_address

Signed-off-by: Thierry Delamare <t.delamare@laposte.net>
Signed-off-by: Loic Dachary <loic@dachary.org>
9 years agopaddles: do not fail to disable if apache2 if not there
Loic Dachary [Fri, 25 Mar 2016 17:07:45 +0000 (18:07 +0100)]
paddles: do not fail to disable if apache2 if not there

If apache2 is not installed no need to disable it.

Signed-off-by: Thierry Delamare <t.delamare@laposte.net>
Signed-off-by: Loic Dachary <loic@dachary.org>
9 years agoMerge pull request #218 from ceph/wip-auth-openvpn
Dan Mick [Thu, 24 Mar 2016 21:57:35 +0000 (14:57 -0700)]
Merge pull request #218 from ceph/wip-auth-openvpn

gateway: modify auth-openvpn script to ignore comments and blank lines

Reviewed-by: Dan Mick <dmick@redhat.com>
9 years agogateway: modify auth-openvpn script to ignore comments and blank lines 218/head
David Galloway [Thu, 24 Mar 2016 20:45:23 +0000 (16:45 -0400)]
gateway: modify auth-openvpn script to ignore comments and blank lines

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agoMerge pull request #217 from ceph/wip-gw-tweaks
Dan Mick [Thu, 24 Mar 2016 18:18:06 +0000 (11:18 -0700)]
Merge pull request #217 from ceph/wip-gw-tweaks

gateway: Add logrotate to to-do

9 years agogateway: Add logrotate to to-do 217/head
David Galloway [Thu, 24 Mar 2016 18:12:12 +0000 (14:12 -0400)]
gateway: Add logrotate to to-do

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agoMerge pull request #216 from ceph/wip-gw-tweaks
Dan Mick [Thu, 24 Mar 2016 18:09:08 +0000 (11:09 -0700)]
Merge pull request #216 from ceph/wip-gw-tweaks

gateway: Adding additional functionality and some missing files

Reviewed-by: Dan Mick <dmick@redhat.com>
9 years agogateway: Add defaults for vars in secrets repo 216/head
David Galloway [Wed, 23 Mar 2016 15:08:15 +0000 (11:08 -0400)]
gateway: Add defaults for vars in secrets repo

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agogateway: Renaming 'copy secrets' task
David Galloway [Tue, 22 Mar 2016 22:02:11 +0000 (18:02 -0400)]
gateway: Renaming 'copy secrets' task

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agogateway: Write universal 'auth-openvpn' user auth script
David Galloway [Tue, 22 Mar 2016 21:52:58 +0000 (17:52 -0400)]
gateway: Write universal 'auth-openvpn' user auth script

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agogateway: Manage service state based on openvpn_server_name
David Galloway [Tue, 22 Mar 2016 21:36:47 +0000 (17:36 -0400)]
gateway: Manage service state based on openvpn_server_name

Also updated list of secrets we maintain

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agogateway: Create openvpn_data_dir if it doesn't exist
David Galloway [Tue, 22 Mar 2016 21:34:25 +0000 (17:34 -0400)]
gateway: Create openvpn_data_dir if it doesn't exist

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agogateway: Add common role
David Galloway [Tue, 22 Mar 2016 21:32:31 +0000 (17:32 -0400)]
gateway: Add common role

Configures epel repo and grants ssh access to admin_users

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agoMerge pull request #215 from ceph/wip-gw
Dan Mick [Tue, 22 Mar 2016 20:07:58 +0000 (13:07 -0700)]
Merge pull request #215 from ceph/wip-gw

New role to manage OpenVPN gateway

Reviewed-by: Dan Mick <dmick@redhat.com>
9 years agogateway: Final documentation update for initial PR 215/head
David Galloway [Mon, 21 Mar 2016 19:25:14 +0000 (15:25 -0400)]
gateway: Final documentation update for initial PR

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agogateway: add openvpn_users list from secrets repo
David Galloway [Mon, 21 Mar 2016 21:41:13 +0000 (17:41 -0400)]
gateway: add openvpn_users list from secrets repo

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agogateway: Add task to write CA, key, and cert
David Galloway [Mon, 21 Mar 2016 19:48:49 +0000 (15:48 -0400)]
gateway: Add task to write CA, key, and cert

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agogateway: Add check to ensure service is running
David Galloway [Mon, 21 Mar 2016 19:29:09 +0000 (15:29 -0400)]
gateway: Add check to ensure service is running

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agogateway: Users task
David Galloway [Fri, 18 Mar 2016 22:14:24 +0000 (18:14 -0400)]
gateway: Users task

Takes 'ovpn' variable from secrets repo users and write to openvpn server

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agogateway: Set packages needed for gateway role
David Galloway [Fri, 18 Mar 2016 19:43:45 +0000 (15:43 -0400)]
gateway: Set packages needed for gateway role

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agoCreate initial files for new 'gateway' role
David Galloway [Fri, 18 Mar 2016 19:42:48 +0000 (15:42 -0400)]
Create initial files for new 'gateway' role

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agoMerge pull request #213 from ceph/wip-nrpe-user
Zack Cerza [Wed, 16 Mar 2016 23:10:05 +0000 (17:10 -0600)]
Merge pull request #213 from ceph/wip-nrpe-user

testnodes: Configure per-OS nrpe user and group name

9 years agotestnodes: Configure per-OS nrpe user and group name 213/head
David Galloway [Wed, 16 Mar 2016 20:42:16 +0000 (16:42 -0400)]
testnodes: Configure per-OS nrpe user and group name

NRPE on CentOS/RHEL ignore the nrpe_user variable in nrpe.cfg due to the
systemd init file.  See https://github.com/NagiosEnterprises/nrpe/issues/28

The 'nagios' user is created by default on *.deb
The 'nrpe' user is created by default on *.rpm

Further reading: https://www.mooash.me/2014/10/24/nagios-nrpe-ansible-role/

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agoMerge pull request #212 from ceph/wip-nrpe-selinux
Zack Cerza [Wed, 16 Mar 2016 18:54:36 +0000 (12:54 -0600)]
Merge pull request #212 from ceph/wip-nrpe-selinux

testnodes: configure selinux for nagios monitoring

9 years agotestnodes: configure selinux for nagios monitoring 212/head
David Galloway [Wed, 16 Mar 2016 17:06:45 +0000 (13:06 -0400)]
testnodes: configure selinux for nagios monitoring

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agoMerge pull request #210 from ceph/wip-cobbler-tz
Dan Mick [Wed, 16 Mar 2016 17:40:03 +0000 (10:40 -0700)]
Merge pull request #210 from ceph/wip-cobbler-tz

cobbler: set testnodes timezone during kickstart

Reviewed-by: Dan Mick <dmick@redhat.com>
9 years agoMerge pull request #211 from ceph/wip-nrpe-service
Dan Mick [Wed, 16 Mar 2016 01:48:31 +0000 (18:48 -0700)]
Merge pull request #211 from ceph/wip-nrpe-service

testnode: add check to make sure NRPE service is running

Reviewed-by: Dan Mick<dmick@redhat.com>
9 years agoUpdating documentation to reflect NRPE support on CentOS and RHEL now 211/head
David Galloway [Wed, 16 Mar 2016 01:36:32 +0000 (21:36 -0400)]
Updating documentation to reflect NRPE support on CentOS and RHEL now

Signed-off-by: David Galloway <dgallowa@redhat.com>
9 years agotestnode: add check to make sure NRPE service is running
David Galloway [Wed, 16 Mar 2016 01:29:39 +0000 (21:29 -0400)]
testnode: add check to make sure NRPE service is running

Signed-off-by: David Galloway <dgallowa@redhat.com>