WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-04-30 13:32:30 +08:00
Code Issues Packages Projects Releases Wiki Activity
43,401 Commits 9 Branches 0 Tags
7aa7553b84af5dc8efa78e9d8a4e50dde369052d
Commit Graph

26358 Commits

Author SHA1 Message Date
Kevin Fenzi
41dcbe734f haproxy: correct bootstrap hostname 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-24 14:40:16 -07:00
Kevin Fenzi
a5e3b32175 haproxy: add stg rdu3 openshift apis 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-24 14:36:30 -07:00
Kevin Fenzi
aa3e21cb89 nftables / kojibuilder/rdu3: also allow proxy01/10.iad2 external ips for kojipkgs there, fix after move 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-24 12:17:42 -07:00
Kevin Fenzi
327bf02f05 nftables / kojibuilder: more copypasta 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-24 11:55:12 -07:00
Kevin Fenzi
3b73e26506 nftables / kojibuilder: move rdu3 to the proper section, fix syntax errors 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-24 11:50:14 -07:00
James Antill
f446135409 Add rdu3 DB names to conditionals in postgresql_server tasks. 
Signed-off-by: James Antill <james@and.org>
 2025-06-24 18:47:31 +00:00
Kevin Fenzi
ef87a8d197 nftables / kojibuilder: adjust ipa rules to allow rdu3 to us iad2 servers for now 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-24 11:38:42 -07:00
Kevin Fenzi
96dbff9277 nftables / kojibuilder / rdu3: temp allow external iad infra 
Right now we are sending infra web requests (like for packages) to the
iad2 batcave01 via external. Lets allow this so we can install builders,
then change dns/drop it once we move.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-24 11:23:20 -07:00
Kevin Fenzi
0efed466be nftables: some more tweaks, add batcave01.iad2 to be able to manage rdu3 builders, adjust osuosl for new external ips 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-24 10:35:37 -07:00
James Antill
b697488d03 nftables.kojibuilder: NFS is also split, not shared. 
Signed-off-by: James Antill <james@and.org>
 2025-06-24 11:40:21 -04:00
Aurélien Bompard
2e243f0b28 SSSd wants its conf snippets to have the same perms as sssd.conf 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-24 17:38:45 +02:00
Greg Sutcliffe
1a17a7f9e6 postfix: quick-and-dirty fix for SMTP nftables on bastion.rdu3 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
 2025-06-24 10:17:51 +01:00
Greg Sutcliffe
11fb7208ad postfix: Set relayhost correctly for rdu3 hosts 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
 2025-06-24 10:17:51 +01:00
Aurélien Bompard
573a151de1 RabbitMQ: use the new configuration file format in RDU3 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-24 10:00:03 +02:00
James Antill
34ff986944 nftables.kojibuilder: Add more rdu3 changes. Add comments. 
Signed-off-by: James Antill <james@and.org>
 2025-06-24 01:09:58 -04:00
Kevin Fenzi
58bdf975c0 dns: actually serve the rdu3 mgmt zone to requests for it instead of the iad2 one 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-23 15:53:20 -07:00
Kevin Fenzi
d7ecffec22 nftables / staging / rdu3: allow noc01 in rdu3 staging 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-23 15:33:45 -07:00
Kevin Fenzi
63b3d333d6 bvmhost-a64 for rdu3 
Here's the 4 bvmhost's for rdu3 + one staging one.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-23 14:22:10 -07:00
Dusty Mabe
b7bd7b0e35 openshift-apps/coreos-cincinnati: switch to following main branch 
If we ever need to use a git sha here again we can just update the
fcos_cincinnati_git_ref vars the same way we did in the past. For
now let's just follow what's in the main branch.
 2025-06-23 14:53:07 -04:00
Aurélien Bompard
f185573c41 Do stuff on iad2_internal also on rdu3_internal 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-23 19:02:44 +02:00
Kevin Fenzi
20ba9db962 kickstarts: drop tmpwatch from aarch64 kickstart 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-23 09:40:29 -07:00
David Kirwan
038d535eee forgejo: add missing templating variable 
Signed-off-by: David Kirwan <davidkirwanirl@gmail.com>
 2025-06-23 17:37:52 +01:00
David Kirwan
b43d4f815a forgejo: backups, OADP operator configuration (WIP) 
Signed-off-by: David Kirwan <davidkirwanirl@gmail.com>
 2025-06-23 17:34:38 +01:00
Aurélien Bompard
d22bde741d Nagios: template the mail_queue.cfg file 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-23 18:11:28 +02:00
Aurélien Bompard
0b7bab72e6 Nagios: filter the hostgroups again 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-23 17:37:32 +02:00
Aurélien Bompard
2695b3448a Toddlers in IPA: use the full host name 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-23 17:24:03 +02:00
Aurélien Bompard
8be052d10f Toddler cleaning-packager-groups: fix service name 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-23 17:05:17 +02:00
Greg Sutcliffe
2516ee6097 DHCPd: fix macs for openqa hosts in rdu3 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
 2025-06-23 14:20:03 +01:00
Greg Sutcliffe
d150e3b678 Kickstart: Add Fedora OpenQA to with_items list 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
 2025-06-23 13:20:49 +01:00
Aurélien Bompard
aefb2eb4bc Filter staging-hosts 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-23 14:14:29 +02:00
Greg Sutcliffe
b51f712959 Kickstart: Add Fedora OpenQA ks 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
 2025-06-23 13:11:04 +01:00
Aurélien Bompard
2c2c06bde0 Filter the mirrorlist-proxies services 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-23 14:05:33 +02:00
Aurélien Bompard
1531c45283 Try to filter the group contents instead of the group names 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-23 12:10:52 +02:00
Michal Konecny
f431d2f851 [ipa/server] Remove the version restriction 
https://issues.redhat.com/browse/RHEL-97591 is now resolved so we can
remove the versions restriction.
 2025-06-23 09:23:46 +00:00
Aurélien Bompard
d3246f3c64 Filter the other nagios templates 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-23 11:20:06 +02:00
Aurélien Bompard
72881d29d2 Filter the mincheckgrp hostgroup 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-23 10:43:38 +02:00
Aurélien Bompard
3ab4e21dbc Filter the no_ping group 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-23 10:40:34 +02:00
Aurélien Bompard
933060bc15 Don't change the template name, or it will be the name of the remote file 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-23 10:27:35 +02:00
Aurélien Bompard
9007df7619 Don't change the template name, or it will be the name of the remote file 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-23 10:27:03 +02:00
Aurélien Bompard
b8fea68959 Try to exclude rdu3 hosts from the iad2 nagios template 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-23 09:12:25 +02:00
Kevin Fenzi
8366badfc5 batcave: trust ssh host certs signed by our CA for *rdu3 
This should fix some weird connection issues we were seeing.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-22 15:41:42 -07:00
Kevin Fenzi
2c7461ef7f mariadb: we are NOT replicating, so do not keep replciation logs 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-22 14:44:36 -07:00
James Antill
1bb4982217 rabbitmq: Enable the plugins by hand, in el9, for now. 
Signed-off-by: James Antill <james@and.org>
 2025-06-22 17:35:52 -04:00
James Antill
c83547366e Move the user removal after the HTTP management has started, again. 
Signed-off-by: James Antill <james@and.org>
 2025-06-22 17:13:53 -04:00
James Antill
9421e125cb rabbitmq: Expliticly set HOME to /var/lib/rabbitmq. 
Signed-off-by: James Antill <james@and.org>
 2025-06-22 20:49:03 +00:00
Kevin Fenzi
2431c26eed releng: drop this local call too 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-22 13:43:03 -07:00
Kevin Fenzi
ce16f972b1 releng: likely we do not want local here 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-22 13:31:31 -07:00
Kevin Fenzi
1263d8b1ed releng-compose machines for rdu3 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-22 09:36:18 -07:00
Kevin Fenzi
94564716c9 rsyncd: allow rdu3 ips to sync, in particular proxies in rdu3 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-22 09:10:16 -07:00
Kevin Fenzi
6d0efee3cb nagios / client: allow noc01.rdu3 access to nrpe 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-22 09:01:18 -07:00