WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-04-28 04:22:18 +08:00
Code Issues Packages Projects Releases Wiki Activity
20,712 Commits 9 Branches 0 Tags
15aa64b80784bbd34d7b6f85e3a9ce43cfc94de4
Commit Graph

97 Commits

Author SHA1 Message Date
Patrick Uiterwijk
c3e5a23426 Add ccd files 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-11-23 14:19:11 +00:00
Patrick Uiterwijk
50b92d5e54 Nuke transitional datanommer and new db-datanommer01 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-10-17 22:36:16 +00:00
Patrick Uiterwijk
936e8b261a yum accepted pkg=, package calls it name= 
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
 2017-10-09 00:38:26 +02:00
Patrick Uiterwijk
adcbf72f03 Packageize this, packageize that, packageize the world 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-10-08 22:25:52 +00:00
Patrick Uiterwijk
466f5c184d add transitional-datanommer01 ccd file 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-10-05 11:25:46 +00:00
Patrick Uiterwijk
d318a7a2b0 Add certgetter01 ccd file 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-09-09 23:27:40 +00:00
Ralph Bean
e6e1faded6 VPN ccd entries for odcs and freshmaker. 2017-08-31 14:48:44 +00:00
Kevin Fenzi
ab36495dd9 add vpn client and ccd files for os cluster 2017-08-22 21:40:12 +00:00
Ricky Elrod
627708c0ba Initial attempt at docker-registry02.phx2 and docker-registry03.phx2 
Signed-off-by: Ricky Elrod <codeblock@fedoraproject.org>
 2017-07-19 18:15:59 +00:00
Kevin Fenzi
273093ecbb put server ccd files under server subdir 2017-05-15 02:34:31 +00:00
Patrick Uiterwijk
4cc1b78ff3 Check the certificate key usage 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-05-14 20:57:39 +00:00
Kevin Fenzi
42b69d73f3 also the server files 2017-05-14 20:56:30 +00:00
Kevin Fenzi
179cc4dd54 switch openvpn to use seperate service units and directories for client and server, hopefully in a mostly transparent way that will not cause much outage 2017-05-14 19:01:17 +00:00
Ricky Elrod
6b09124d2f add ccd for ci-cc-rdu01.fedoraproject.org 
Signed-off-by: Ricky Elrod <codeblock@fedoraproject.org>
 2017-05-10 20:19:34 +00:00
Kevin Fenzi
8a6e51a9a6 change state=running to start=started as the old one is going away in ansible 2.7 2017-04-13 01:37:21 +00:00
Stephen Smoogen
36b265bb4b we have a new nagios vpn 2017-03-17 18:29:37 +00:00
Ricky Elrod
077087828a add ccd for modernpaste02 
Signed-off-by: Ricky Elrod <codeblock@fedoraproject.org>
 2017-02-28 06:00:00 +00:00
Stephen Smoogen
3cb4f2a75f and remove its little doggies too <<cackle>> 2017-02-22 20:32:01 +00:00
Ricky Elrod
3e66902fd4 add ccd for modernpaste01 
Signed-off-by: Ricky Elrod <codeblock@fedoraproject.org>
 2017-02-15 23:40:51 +00:00
Ralph Bean
bafba7f9a7 VPN ccd files for MBS frontend. 2017-01-10 17:03:24 +00:00
Tim Flink
67271dd51b adding vpn config for qa-prod01.qa 2016-12-16 01:35:06 +00:00
Stephen Smoogen
f3daded24a and we have new data for vpns 2016-12-01 21:55:02 +00:00
Stephen Smoogen
12a7979213 update files to put basics for proxy13/proxy14 into being 2016-12-01 17:46:58 +00:00
Patrick Uiterwijk
326a6e42da Create ccd files 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-10-13 14:37:15 +00:00
Kevin Fenzi
12ed1dd6f7 Update out vpn configs for better encryption. 2016-08-31 18:50:14 +00:00
Patrick Uiterwijk
135f18c726 Docke-candidate-registry ccd file 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-08-18 15:49:53 +00:00
Kevin Fenzi
1c6e9a11f4 Another pile of trailing whitespace fixes 2016-08-08 19:42:36 +00:00
Patrick Uiterwijk
eacefedadf Add osbs-master01 ccd file 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-07-14 13:01:21 +00:00
Patrick Uiterwijk
bb82361a04 Create docker-registry01 vpn config 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-07-12 17:14:35 +00:00
Patrick Uiterwijk
b6eb15c0ee Create mm-frontend-checkin01 
This server should be regarded as untrusted.

Related: CVE-2016-1000003
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-06-17 19:54:43 +00:00
Kevin Fenzi
7a10cd6b2f Drop mm-crawler03 - ticket 4877 2016-05-26 17:02:52 +00:00
Mikolaj Izdebski
c61b2f0e17 Remove VPN config for old Koschei host 2016-05-12 15:46:10 +00:00
Kevin Fenzi
e297178539 Add vpn ccd for koschei-web01 2016-05-12 15:33:08 +00:00
Stephen Smoogen
10d5884bd5 remove the old rdu download boxes we will decommission 2016-05-04 15:18:35 +00:00
Patrick Uiterwijk
e78464fff2 Create OpenVPN config for basset01 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-04-14 23:38:36 +00:00
Tim Flink
fb21045a5b adding vpn server side config for beaker01.qa 2016-04-14 19:56:40 +00:00
Patrick Uiterwijk
7861d0cc75 Create OpenVPN config for basset01 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-03-17 22:49:01 +00:00
Ralph Bean
3d53824019 vpn ccd file for zanata2fedmsg01. 2016-03-03 20:30:21 +00:00
Ralph Bean
33028dfd9f openvpn ccd files for pdc nodes. 2016-01-04 21:52:18 +00:00
Tim Flink
39ddb15e92 adding openqa01.qa to vpn 2015-12-01 21:59:11 +00:00
Kevin Fenzi
08b8ba352a Add hosts file and vpn ccd for mdapi01 2015-11-17 17:28:50 +00:00
Patrick Uiterwijk
8c9fcd56d1 Add mirrorlist-ibiblio02 vpn ccd 2015-10-25 00:54:36 +00:00
Patrick Uiterwijk
b1db3bafd8 Disable persist-tun for openvpn 
This should solve the issue where RHEL7 machines that get a network
hiccup need an OpenVPN restart to restore their routes.

The code is broken in the current upstream OpenVPN release, such that
it does tear down some of the routes during a ping-restart (when the
connection is dropped due to network hiccups), but the reconnection
code does not restore the routes.
I am working on an upstream patch to fix this, but in the meantime
disabling persist-tun will make sure that OpenVPN does the entire
initialization upon reconnection, which makes sure that all routes
are created.

Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2015-10-21 18:26:32 +00:00
Kevin Fenzi
301a9cea82 Add first cut at a infinote server (config to come) 2015-10-09 19:03:59 +00:00
Ralph Bean
c891127d1a Add CCD files for statscache-web. 2015-10-09 18:17:21 +00:00
Patrick Uiterwijk
9533446335 Add proxy12 on ibiblio05 2015-10-09 17:00:14 +00:00
Kevin Fenzi
4b8b54b795 Add ccd file too 2015-10-06 16:52:44 +00:00
Stephen Smoogen
2322011063 add a batcave ccd 2015-09-28 20:38:41 +00:00
Kevin Fenzi
2873cdd427 Move all puppet_private stuff to ansible private so we can stop using puppet private. 2015-09-25 18:16:23 +00:00
Ralph Bean
824875d592 ccd files for new autocloud prod web nodes. 2015-09-24 19:44:10 +00:00