Blame pillar/role/login.sls
|
Theo Chatzimichos |
754b1a |
{% if salt['grains.get']('include_secrets', True) %}
|
|
Theo Chatzimichos |
6d7c2c |
include:
|
|
Theo Chatzimichos |
6d7c2c |
- secrets.role.login
|
|
Theo Chatzimichos |
754b1a |
{% endif %}
|
|
Theo Chatzimichos |
6d7c2c |
|
|
Theo Chatzimichos |
6d7c2c |
keepalived:
|
|
Theo Chatzimichos |
6d7c2c |
global_defs:
|
|
Theo Chatzimichos |
6d7c2c |
router_id: OPENSUSE_LOGIN2_NUE
|
|
Theo Chatzimichos |
e87bb2 |
vrrp_sync_group:
|
|
Theo Chatzimichos |
e87bb2 |
VRRP_OPENSUSE_LOGIN2_PRIVATEGROUP:
|
|
Theo Chatzimichos |
e87bb2 |
group:
|
|
Christian Boltz |
259b0a |
- VRRP_OPENSUSE_LOGIN2_PRIVATE_IPV4
|
|
Christian Boltz |
259b0a |
- VRRP_OPENSUSE_LOGIN2_PRIVATE_IPV6
|
|
Theo Chatzimichos |
6d7c2c |
vrrp_instance:
|
|
Theo Chatzimichos |
e87bb2 |
VRRP_OPENSUSE_LOGIN2_PRIVATE_IPV4:
|
|
Theo Chatzimichos |
6d7c2c |
advert_int: 1
|
|
Theo Chatzimichos |
6d7c2c |
authentication:
|
|
Theo Chatzimichos |
6d7c2c |
auth_type: PASS
|
|
Theo Chatzimichos |
6d7c2c |
# auth_pass included from pillar/secrets/role/login.sls
|
|
Theo Chatzimichos |
6d7c2c |
interface: private
|
|
Theo Chatzimichos |
6d7c2c |
notify: /usr/bin/keepalived_notify_monitoring.sh
|
|
Theo Chatzimichos |
6d7c2c |
promote_secondaries: ''
|
|
Theo Chatzimichos |
6d7c2c |
smtp_alert: ''
|
|
Theo Chatzimichos |
6d7c2c |
virtual_ipaddress:
|
|
Theo Chatzimichos |
6d7c2c |
# shuttle needed to connect to the LDAP server
|
|
Theo Chatzimichos |
6d7c2c |
# login2-opensuse.suse.de
|
|
Theo Chatzimichos |
6d7c2c |
- 149.44.161.63/25 dev shuttle
|
|
Theo Chatzimichos |
6d7c2c |
# external IPs
|
|
Theo Chatzimichos |
6d7c2c |
# login2.opensuse.org
|
|
Theo Chatzimichos |
6d7c2c |
- 195.135.221.161/25 dev external
|
|
Theo Chatzimichos |
6d7c2c |
# login IPs
|
|
Theo Chatzimichos |
6d7c2c |
# private IPs
|
|
Theo Chatzimichos |
6d7c2c |
# daffy.infra.opensuse.org.
|
|
Theo Chatzimichos |
6d7c2c |
- 192.168.47.16/24 dev private
|
|
Theo Chatzimichos |
6d7c2c |
virtual_router_id: 60
|
|
Theo Chatzimichos |
6d7c2c |
virtual_routes:
|
|
Theo Chatzimichos |
6d7c2c |
- 149.44.160.0/23 via 149.44.161.126 dev shuttle
|
|
Theo Chatzimichos |
6d7c2c |
- 137.65.227.0/29 via 149.44.161.126 dev shuttle
|
|
Theo Chatzimichos |
6d7c2c |
- 137.65.244.208/32 via 149.44.161.126 dev shuttle
|
|
Theo Chatzimichos |
6d7c2c |
- 192.168.252.0/24 via 192.168.47.254 dev private
|
|
Theo Chatzimichos |
6d7c2c |
- 192.168.253.0/24 via 192.168.47.254 dev private
|
|
Theo Chatzimichos |
6d7c2c |
- default via 195.135.221.129 dev external
|
|
Theo Chatzimichos |
e87bb2 |
VRRP_OPENSUSE_LOGIN2_PRIVATE_IPV6:
|
|
Theo Chatzimichos |
e87bb2 |
advert_int: 1
|
|
Theo Chatzimichos |
e87bb2 |
authentication:
|
|
Theo Chatzimichos |
e87bb2 |
auth_type: PASS
|
|
Theo Chatzimichos |
e87bb2 |
# auth_pass included from pillar/secrets/role/login.sls
|
|
Theo Chatzimichos |
e87bb2 |
interface: private
|
|
Theo Chatzimichos |
e87bb2 |
notify: /usr/bin/keepalived_notify_monitoring.sh
|
|
Theo Chatzimichos |
e87bb2 |
promote_secondaries: ''
|
|
Theo Chatzimichos |
e87bb2 |
smtp_alert: ''
|
|
Theo Chatzimichos |
e87bb2 |
virtual_ipaddress:
|
|
Theo Chatzimichos |
e87bb2 |
# external IPs
|
|
Theo Chatzimichos |
e87bb2 |
# login2.opensuse.org
|
|
Christian Boltz |
eeb107 |
- 2001:67c:2178:8::161/64 dev external
|
|
Theo Chatzimichos |
e87bb2 |
virtual_router_id: 60
|
|
Theo Chatzimichos |
6257b3 |
openldap:
|
|
Theo Chatzimichos |
6257b3 |
tls_reqcert: allow
|