summaryrefslogtreecommitdiff
path: root/puppet/modules/site_config/manifests
AgeCommit message (Collapse)Author
2013-01-29fix deprecation warnings in site_configvarac
2013-01-29run stage declaration moved to site.ppvarac
2013-01-23require that the unbound package is installed before attempting to makeMicah Anderson
sub-directories under /etc/unbound (#1412)
2013-01-20configure fqdn for hostvarac
2013-01-20remove bind9 service stop (#1421)varac
2013-01-17unfortunately the version of unbound that is in wheezy does not support wildcardMicah Anderson
include directives, so this commit works around this by doing something less elegant than before. When we have the newer unbound available, we should switch to that method instead.
2013-01-16Swtich from bind9 as the local caching resolver to unbound. This will enable usMicah Anderson
to do tor lookups over DNS on servers, if tor services are defined. To do this, we remove the bind9 configurations from site_config::resolvconf.pp and replace it with site_config::caching_resolver with a basic unbound configuration that can be used everywhere. The unbound configuration enables a /etc/unbound/conf.d directory for additional config snippits that can be dropped in from other places. This will be used for setting up different interfaces in the vpn gateway, for example. There will be a set of transition package/file absent blocks to clean up providers.
2012-12-19move apt-get upgrade to inital stagevarac
2012-12-16named.options -> named.conf.optionsvarac
2012-12-16bind: use local, ipv4 only name-caching resolver (fixes #1171)varac
2012-12-14moved site_config::apt to site_aptvarac
2012-12-11neglected to add the 'refreshonly' parameter to the exec in previous commitMicah Anderson
2012-12-11change hostname exec to only apply when either the /etc/hostname or ↵Micah Anderson
/etc/hosts files are changed (otherwise it runs on every run)
2012-12-11set up an 'initial' run stage to happen before the 'main' run stage and put theMicah Anderson
site_config::hosts to be in the initial run stage to make sure the hostname is set before anything else.
2012-12-11remove extra space in hostname execMicah Anderson
2012-12-11test to see if the hosts value is empty before trying to reference it in a ↵Micah Anderson
template also set the hostname to what the hiera 'name' is set to
2012-12-11setup /etc/hosts based on a template and the hiera value 'hosts'Micah Anderson
This will replace the existing /etc/hosts, so we will want to make this more smart later
2012-11-29include apt in the site_config/apt classMicah Anderson
2012-11-29disable apt pdiffs, they are slow on fast linksMicah Anderson
2012-11-21move site_config::eip to site_openvpn (Feature #943)varac
2012-10-30no need for configuring authorized_keys as leap_cli cares for thatvarac
2012-10-30commentingvarac
2012-10-29also provide openvpn_tcp/udp_cidr variablevarac
2012-10-29openvpn_tcp/udp_network_prefix and openvpn_tcp/udp_netmask variablesvarac
2012-10-29no need for gateway_addressvarac
2012-10-29reenabled site_openvpn::server_config, leap_add_second_ip.sh @rebootvarac
2012-10-29double double quoting solvedvarac
2012-10-29pass variable to leap_add_second_ip.shvarac
2012-10-29use script to add second ipvarac
2012-10-26removed label for ip addrvarac
2012-10-26linted, variable updatedvarac
2012-10-26beginning config of main interfacevarac
2012-10-25use hiera gateway_address and interface variablesvarac
2012-10-12add third dns server (swiss privacy found.)varac
2012-10-12fixes resolvconf callvarac
2012-10-12new resolvconf module uses parameterized classvarac
2012-10-12ssh_keys -> ssh_pubkeys for clarityvarac
2012-10-12+ site_config::resolvconfvarac
2012-10-08+ site_shorewall::eipvarac
2012-10-04typo in eip.ppvarac
2012-10-04use different parameter for each configvarac
2012-10-04finished site_openvpn::server_configvarac
2012-10-04+ site_config::sshdvarac
2012-10-04+ site_openvpn::keysvarac
2012-10-04moved most includes to site_configvarac
2012-10-04don't pull openvpn config from hieravarac
2012-10-04added site_config::eipvarac