manifests/autossh.pp


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39

class sshd::autossh($host,
              $port = undef, # this should be a remote->local hash
              $remote_user = undef,
              $user = 'root',
) {
  if $port {
    $port_ensure = $port
  }
  else {
    # random port between 10000 and 20000
    $port_ensure = fqdn_rand(10000) + 10000
  }
  if $remote_user {
    $remote_user_ensure = $remote_user
  }
  else {
    $remote_user_ensure = "host-$fqdn"
  }
  file {
    '/etc/init.d/autossh':
      mode   => '0555',
      source => 'puppet:///modules/sshd/autossh.init.d';
    '/etc/default/autossh':
      mode    => '0444',
      content => "USER=$user\nDAEMON_ARGS='-o ServerAliveInterval=15 -o ServerAliveCountMax=4 -q -N -R $port_ensure:localhost:22 $remote_user_ensure@$host'\n";
  }
  package { 'autossh':
    ensure => present,
  }
  service { 'autossh':
    ensure    => running,
    enable    => true,
    subscribe => [
                  File['/etc/init.d/autossh'],
                  File['/etc/default/autossh'],
                  Package['autossh'],
                  ],
  }
}