fuel-noop-fixtures/hiera/neut_vlan.compute.ssl.yaml

843 lines
20 KiB
YAML

---
tasks:
- priority: 100
type: puppet
uids:
- '5'
parameters:
puppet_modules: "/etc/puppet/modules"
puppet_manifest: "/etc/puppet/modules/osnailyfacter/modular/fuel_pkgs/fuel_pkgs.pp"
timeout: 600
cwd: "/"
- priority: 200
type: puppet
uids:
- '5'
parameters:
puppet_modules: "/etc/puppet/modules"
puppet_manifest: "/etc/puppet/modules/osnailyfacter/modular/hiera/hiera.pp"
timeout: 3600
cwd: "/"
- priority: 300
type: puppet
uids:
- '5'
parameters:
puppet_modules: "/etc/puppet/modules"
puppet_manifest: "/etc/puppet/modules/osnailyfacter/modular/globals/globals.pp"
timeout: 3600
cwd: "/"
- priority: 400
type: puppet
uids:
- '5'
parameters:
puppet_modules: "/etc/puppet/modules"
puppet_manifest: "/etc/puppet/modules/osnailyfacter/modular/logging/logging.pp"
timeout: 3600
cwd: "/"
- priority: 500
type: puppet
uids:
- '5'
parameters:
puppet_modules: "/etc/puppet/modules"
puppet_manifest: "/etc/puppet/modules/osnailyfacter/modular/tools/tools.pp"
timeout: 3600
cwd: "/"
- priority: 600
type: puppet
uids:
- '5'
parameters:
puppet_modules: "/etc/puppet/modules"
puppet_manifest: "/etc/puppet/modules/osnailyfacter/modular/netconfig/netconfig.pp"
timeout: 3600
cwd: "/"
- priority: 700
type: puppet
uids:
- '5'
parameters:
puppet_modules: "/etc/puppet/modules"
puppet_manifest: "/etc/puppet/modules/osnailyfacter/modular/netconfig/connectivity_tests.pp"
timeout: 3600
cwd: "/"
- priority: 800
type: puppet
uids:
- '5'
parameters:
puppet_modules: "/etc/puppet/modules"
puppet_manifest: "/etc/puppet/modules/osnailyfacter/modular/firewall/firewall.pp"
timeout: 3600
cwd: "/"
- priority: 900
type: puppet
uids:
- '5'
parameters:
puppet_modules: "/etc/puppet/modules"
puppet_manifest: "/etc/puppet/modules/osnailyfacter/modular/ssl/ssl_add_trust_chain.pp"
timeout: 3600
cwd: "/"
- priority: 1000
type: puppet
uids:
- '5'
parameters:
puppet_modules: "/etc/puppet/modules"
puppet_manifest: "/etc/puppet/modules/osnailyfacter/modular/hosts/hosts.pp"
timeout: 3600
cwd: "/"
- priority: 1100
type: puppet
uids:
- '5'
parameters:
puppet_modules: "/etc/puppet/modules"
puppet_manifest: "/etc/puppet/modules/osnailyfacter/modular/roles/compute.pp"
timeout: 3600
cwd: "/"
- priority: 1200
type: puppet
uids:
- '5'
parameters:
puppet_modules: "/etc/puppet/modules"
puppet_manifest: "/etc/puppet/modules/osnailyfacter/modular/openstack-network/openstack-network-compute.pp"
timeout: 3600
cwd: "/"
user_node_name: Untitled (2a:ee)
uid: '5'
resume_guests_state_on_host_boot: true
syslog:
syslog_port: '514'
syslog_transport: tcp
syslog_server: ''
metadata:
weight: 50
label: Syslog
libvirt_type: qemu
host_uuid: '00000000-0000-0000-0000-000000000000'
puppet:
modules: rsync://10.122.5.2:/puppet/liberty-9.0/modules/
manifests: rsync://10.122.5.2:/puppet/liberty-9.0/manifests/
mysql:
root_password: PBmaN2YX
wsrep_password: FsatnsoY
quantum: true
use_cow_images: true
glance:
image_cache_max_size: '5368709120'
user_password: DztOMLWg
db_password: LtDxFLyX
glance_glare:
user_password: 23dfhbWd
ceilometer:
db_password: HUn68NQb
user_password: ycMeNdmo
metering_secret: zjAKZxtd
enabled: false
aodh:
user_password: Be0Oloop
db_password: Thu5ieY6
cobbler:
profile: ubuntu_1404_x86_64
mongo:
enabled: false
quantum_settings:
database:
passwd: bnQfjm1A
keystone:
admin_password: glXcjTAY
L3:
use_namespaces: true
L2:
phys_nets:
physnet1:
bridge: br-floating
physnet2:
bridge: br-prv
vlan_range: 1000:1030
base_mac: fa:16:3e:00:00:00
segmentation_type: vlan
predefined_networks:
net04_ext:
shared: false
L2:
network_type: flat
physnet: physnet1
router_ext: true
segment_id:
L3:
nameservers: []
subnet: 10.122.6.0/24
floating: 10.122.6.130:10.122.6.254
gateway: 10.122.6.1
enable_dhcp: false
tenant: admin
net04:
shared: false
L2:
network_type: vlan
router_ext: false
physnet: physnet2
segment_id:
L3:
nameservers:
- 8.8.4.4
- 8.8.8.8
subnet: 10.122.8.0/24
floating:
gateway: 10.122.8.1
enable_dhcp: true
tenant: admin
metadata:
metadata_proxy_shared_secret: orn88mVY
use_vcenter: false
management:
network_role: mgmt/vip
ipaddr: 10.122.7.7
node_roles:
- controller
- primary-controller
namespace: haproxy
openstack_version: liberty-9.0
kernel_params:
kernel: console=ttyS0,9600 console=tty0 net.ifnames=0 biosdevname=0 rootdelay=90
nomodeset
metadata:
weight: 40
label: Kernel parameters
provision:
image_data:
"/boot":
container: gzip
uri: http://10.122.5.2:8080/targetimages/env_1_ubuntu_1404_amd64-boot.img.gz
format: ext2
"/":
container: gzip
uri: http://10.122.5.2:8080/targetimages/env_1_ubuntu_1404_amd64.img.gz
format: ext4
codename: trusty
method: image
metadata:
restrictions:
- action: hide
condition: 'true'
weight: 80
label: Provision
storage:
iser: false
volumes_ceph: false
per_pool_pg_nums:
compute: 128
default_pg_num: 128
volumes: 128
images: 128
backups: 128
".rgw": 128
objects_ceph: false
ephemeral_ceph: false
volumes_lvm: true
images_vcenter: false
osd_pool_size: '2'
pg_num: 128
images_ceph: false
metadata:
weight: 60
label: Storage
nova:
db_password: of31Rxsy
user_password: n0KfayKg
state_path: "/var/lib/nova"
master_ip: 10.122.5.2
priority: 300
external_dns:
dns_list:
- 8.8.8.8
metadata:
weight: 90
label: Host OS DNS Servers
murano:
db_password: gjBrHFFZ
user_password: crLmJ5b0
enabled: false
rabbit_password: ra45kjwS
murano_settings:
murano_repo_url: http://storage.apps.openstack.org/
metadata:
restrictions:
- action: hide
message: Murano is not enabled on the Additional Components section
condition: settings:additional_components.murano.value == false
weight: 20
label: Murano Settings
role: compute
deployment_mode: ha_compact
external_mongo:
mongo_db_name: ceilometer
mongo_replset: ''
mongo_user: ceilometer
hosts_ip: ''
mongo_password: ceilometer
metadata:
restrictions:
- action: hide
message: Ceilometer and MongoDB are not enabled on the Additional Components
section
condition: settings:additional_components.mongo.value == false
weight: 20
label: External MongoDB
online: true
keystone:
db_password: H4N630IH
admin_token: cKHHVACg
nova_quota: false
public:
network_role: public/vip
ipaddr: 10.122.6.6
node_roles:
- controller
- primary-controller
namespace: haproxy
corosync:
verified: false
group: 226.94.1.1
port: '12000'
metadata:
restrictions:
- action: hide
condition: 'true'
weight: 50
label: Corosync
metadata:
weight: 30
label: Common
status: discover
swift:
user_password: zr0zBVgi
repo_setup:
installer_kernel:
local: "/var/www/nailgun/ubuntu/x86_64/images/linux"
remote_relative: dists/trusty/main/installer-amd64/current/images/netboot/ubuntu-installer/amd64/linux
repos:
- name: ubuntu
section: main universe multiverse
uri: http://archive.ubuntu.com/ubuntu/
priority:
suite: trusty
type: deb
- name: ubuntu-updates
section: main universe multiverse
uri: http://archive.ubuntu.com/ubuntu/
priority:
suite: trusty-updates
type: deb
- name: ubuntu-security
section: main universe multiverse
uri: http://archive.ubuntu.com/ubuntu/
priority:
suite: trusty-security
type: deb
- name: mos
section: main restricted
uri: http://10.122.5.2:8080/liberty-9.0/ubuntu/x86_64
priority: 1050
suite: mos7.0
type: deb
- name: mos-updates
section: main restricted
uri: http://mirror.fuel-infra.org/mos-repos/ubuntu/7.0/
priority: 1050
suite: mos7.0-updates
type: deb
- name: mos-security
section: main restricted
uri: http://mirror.fuel-infra.org/mos-repos/ubuntu/7.0/
priority: 1050
suite: mos7.0-security
type: deb
- name: mos-holdback
section: main restricted
uri: http://mirror.fuel-infra.org/mos-repos/ubuntu/7.0/
priority: 1100
suite: mos7.0-holdback
type: deb
- name: Auxiliary
section: main restricted
uri: http://10.122.5.2:8080/liberty-9.0/ubuntu/auxiliary
priority: 1150
suite: auxiliary
type: deb
metadata:
always_editable: true
weight: 50
label: Repositories
installer_initrd:
local: "/var/www/nailgun/ubuntu/x86_64/images/initrd.gz"
remote_relative: dists/trusty/main/installer-amd64/current/images/netboot/ubuntu-installer/amd64/initrd.gz
vrouter:
network_role: mgmt/vip
ipaddr: 10.122.7.6
node_roles:
- controller
- primary-controller
namespace: vrouter
fail_if_error: false
sahara:
db_password: dfoFKl7u
user_password: jYjxogYn
enabled: false
network_metadata:
nodes:
node-5:
swift_zone: '5'
uid: '5'
fqdn: node-5.domain.local
network_roles:
murano/api: 10.122.7.3
keystone/api: 10.122.7.3
neutron/api: 10.122.7.3
mgmt/database: 10.122.7.3
sahara/api: 10.122.7.3
ceilometer/api: 10.122.7.3
aodh/api: 10.122.7.3
ceph/public: 10.122.7.3
mgmt/messaging: 10.122.7.3
management: 10.122.7.3
swift/api: 10.122.7.3
storage: 10.122.9.4
mgmt/corosync: 10.122.7.3
cinder/api: 10.122.7.3
swift/replication: 10.122.9.4
admin/pxe: 10.122.5.4
mongo/db: 10.122.7.3
neutron/private:
neutron/floating:
fw-admin: 10.122.5.4
glance/api: 10.122.7.3
glance/glare: 10.122.7.3
heat/api: 10.122.7.3
mgmt/vip: 10.122.7.3
nova/api: 10.122.7.3
horizon: 10.122.7.3
nova/migration: 10.122.7.3
mgmt/memcache: 10.122.7.3
cinder/iscsi: 10.122.9.4
ceph/replication: 10.122.9.4
user_node_name: Untitled (2a:ee)
node_roles:
- compute
name: node-5
node-4:
swift_zone: '4'
uid: '4'
fqdn: node-4.domain.local
network_roles:
murano/api: 10.122.7.2
keystone/api: 10.122.7.2
neutron/api: 10.122.7.2
mgmt/database: 10.122.7.2
sahara/api: 10.122.7.2
ceilometer/api: 10.122.7.2
aodh/api: 10.122.7.2
ceph/public: 10.122.7.2
mgmt/messaging: 10.122.7.2
management: 10.122.7.2
swift/api: 10.122.7.2
storage: 10.122.9.5
mgmt/corosync: 10.122.7.2
cinder/api: 10.122.7.2
swift/replication: 10.122.9.5
admin/pxe: 10.122.5.5
mongo/db: 10.122.7.2
neutron/private:
neutron/floating:
fw-admin: 10.122.5.5
glance/api: 10.122.7.2
glance/glare: 10.122.7.2
heat/api: 10.122.7.2
mgmt/vip: 10.122.7.2
nova/api: 10.122.7.2
horizon: 10.122.7.2
nova/migration: 10.122.7.2
mgmt/memcache: 10.122.7.2
cinder/iscsi: 10.122.9.5
ceph/replication: 10.122.9.5
user_node_name: Untitled (a7:46)
node_roles:
- compute
name: node-4
node-1:
swift_zone: '1'
uid: '1'
fqdn: node-1.domain.local
network_roles:
keystone/api: 10.122.7.1
neutron/api: 10.122.7.1
mgmt/database: 10.122.7.1
sahara/api: 10.122.7.1
heat/api: 10.122.7.1
ceilometer/api: 10.122.7.1
aodh/api: 10.122.7.1
ex: 10.122.6.2
ceph/public: 10.122.7.1
mgmt/messaging: 10.122.7.1
management: 10.122.7.1
swift/api: 10.122.7.1
storage: 10.122.9.1
mgmt/corosync: 10.122.7.1
cinder/api: 10.122.7.1
public/vip: 10.122.6.2
swift/replication: 10.122.9.1
ceph/radosgw: 10.122.6.2
admin/pxe: 10.122.5.3
mongo/db: 10.122.7.1
neutron/private:
neutron/floating:
fw-admin: 10.122.5.3
glance/api: 10.122.7.1
glance/glare: 10.122.7.1
mgmt/vip: 10.122.7.1
murano/api: 10.122.7.1
nova/api: 10.122.7.1
horizon: 10.122.7.1
nova/migration: 10.122.7.1
mgmt/memcache: 10.122.7.1
cinder/iscsi: 10.122.9.1
ceph/replication: 10.122.9.1
user_node_name: Untitled (d8:bb)
node_roles:
- cinder
- primary-controller
name: node-1
node-3:
swift_zone: '3'
uid: '3'
fqdn: node-3.domain.local
network_roles:
keystone/api: 10.122.7.5
neutron/api: 10.122.7.5
mgmt/database: 10.122.7.5
sahara/api: 10.122.7.5
heat/api: 10.122.7.5
ceilometer/api: 10.122.7.5
aodh/api: 10.122.7.5
ex: 10.122.6.3
ceph/public: 10.122.7.5
mgmt/messaging: 10.122.7.5
management: 10.122.7.5
swift/api: 10.122.7.5
storage: 10.122.9.2
mgmt/corosync: 10.122.7.5
cinder/api: 10.122.7.5
public/vip: 10.122.6.3
swift/replication: 10.122.9.2
ceph/radosgw: 10.122.6.3
admin/pxe: 10.122.5.6
mongo/db: 10.122.7.5
neutron/private:
neutron/floating:
fw-admin: 10.122.5.6
glance/api: 10.122.7.5
glance/glare: 10.122.7.5
mgmt/vip: 10.122.7.5
murano/api: 10.122.7.5
nova/api: 10.122.7.5
horizon: 10.122.7.5
nova/migration: 10.122.7.5
mgmt/memcache: 10.122.7.5
cinder/iscsi: 10.122.9.2
ceph/replication: 10.122.9.2
user_node_name: Untitled (03:15)
node_roles:
- cinder
- controller
name: node-3
node-2:
swift_zone: '2'
uid: '2'
fqdn: node-2.domain.local
network_roles:
keystone/api: 10.122.7.4
neutron/api: 10.122.7.4
mgmt/database: 10.122.7.4
sahara/api: 10.122.7.4
heat/api: 10.122.7.4
ceilometer/api: 10.122.7.4
aodh/api: 10.122.7.4
ex: 10.122.6.4
ceph/public: 10.122.7.4
mgmt/messaging: 10.122.7.4
management: 10.122.7.4
swift/api: 10.122.7.4
storage: 10.122.9.3
mgmt/corosync: 10.122.7.4
cinder/api: 10.122.7.4
public/vip: 10.122.6.4
swift/replication: 10.122.9.3
ceph/radosgw: 10.122.6.4
admin/pxe: 10.122.5.7
mongo/db: 10.122.7.4
neutron/private:
neutron/floating:
fw-admin: 10.122.5.7
glance/api: 10.122.7.4
glance/glare: 10.122.7.4
mgmt/vip: 10.122.7.4
murano/api: 10.122.7.4
nova/api: 10.122.7.4
horizon: 10.122.7.4
nova/migration: 10.122.7.4
mgmt/memcache: 10.122.7.4
cinder/iscsi: 10.122.9.3
ceph/replication: 10.122.9.3
user_node_name: Untitled (68:63)
node_roles:
- cinder
- controller
name: node-2
vips:
vrouter_pub:
network_role: public/vip
node_roles:
- controller
- primary-controller
namespace: vrouter
ipaddr: 10.122.6.5
management:
network_role: mgmt/vip
node_roles:
- controller
- primary-controller
namespace: haproxy
ipaddr: 10.122.7.7
public:
network_role: public/vip
node_roles:
- controller
- primary-controller
namespace: haproxy
ipaddr: 10.122.6.6
vrouter:
network_role: mgmt/vip
node_roles:
- controller
- primary-controller
namespace: vrouter
ipaddr: 10.122.7.6
network_scheme:
transformations:
- action: add-br
name: br-fw-admin
- action: add-br
name: br-mgmt
- action: add-br
name: br-storage
- action: add-br
name: br-prv
provider: ovs
- action: add-patch
bridges:
- br-prv
- br-fw-admin
provider: ovs
mtu: 65000
- action: add-port
bridge: br-fw-admin
name: eth0
- action: add-port
bridge: br-mgmt
name: eth0.101
- action: add-port
bridge: br-storage
name: eth0.102
roles:
murano/api: br-mgmt
keystone/api: br-mgmt
neutron/api: br-mgmt
mgmt/database: br-mgmt
sahara/api: br-mgmt
ceilometer/api: br-mgmt
aodh/api: br-mgmt
ceph/public: br-mgmt
mgmt/messaging: br-mgmt
management: br-mgmt
swift/api: br-mgmt
storage: br-storage
mgmt/corosync: br-mgmt
cinder/api: br-mgmt
swift/replication: br-storage
admin/pxe: br-fw-admin
mongo/db: br-mgmt
neutron/private: br-prv
fw-admin: br-fw-admin
glance/api: br-mgmt
glance/glare: br-mgmt
heat/api: br-mgmt
mgmt/vip: br-mgmt
nova/api: br-mgmt
horizon: br-mgmt
nova/migration: br-mgmt
mgmt/memcache: br-mgmt
cinder/iscsi: br-storage
ceph/replication: br-storage
interfaces:
eth4:
vendor_specific:
driver: e1000
bus_info: '0000:00:07.0'
eth3:
vendor_specific:
driver: e1000
bus_info: '0000:00:06.0'
eth2:
vendor_specific:
driver: e1000
bus_info: '0000:00:05.0'
eth1:
vendor_specific:
driver: e1000
bus_info: '0000:00:04.0'
eth0:
vendor_specific:
driver: e1000
bus_info: '0000:00:03.0'
version: '1.1'
provider: lnx
endpoints:
br-fw-admin:
IP:
- 10.122.5.4/24
gateway: 10.122.5.2
br-storage:
IP:
- 10.122.9.4/24
br-mgmt:
IP:
- 10.122.7.3/24
br-prv:
IP: none
heat:
db_password: GqzWSxBW
user_password: uMxK47eJ
enabled: true
auth_encryption_key: 9431f2b16d26488b896e64d236953521
rabbit_password: jnXk99nV
storage_network_range: 10.122.9.0/24
fuel_version: '7.0'
rabbit:
password: WYcvKQyZ
public_network_assignment:
assign_to_all_nodes: false
metadata:
restrictions:
- action: hide
condition: cluster:net_provider != 'neutron'
weight: 50
label: Public network assignment
use_cinder: true
test_vm_image:
os_name: cirros
img_path: "/usr/share/cirros-testvm/cirros-x86_64-disk.img"
container_format: bare
min_ram: 64
disk_format: qcow2
glance_properties: ''
img_name: TestVM
public: 'true'
management_network_range: 10.122.7.0/24
neutron_advanced_configuration:
neutron_dvr: false
neutron_l2_pop: false
metadata:
restrictions:
- action: hide
condition: cluster:net_provider != 'neutron'
weight: 45
label: Neutron Advanced Configuration
base_syslog:
syslog_port: '514'
syslog_server: 10.122.5.2
vms_conf: []
workloads_collector:
username: fuel_stats_user
enabled: true
create_user: false
password: ATGggm00
tenant: services
metadata:
restrictions:
- action: hide
condition: 'true'
weight: 10
label: Workloads Collector User
auth_key: ''
puppet_debug: true
access:
email: admin@localhost
password: admin
user: admin
tenant: admin
metadata:
weight: 10
label: Access
last_controller: node-3
fqdn: node-5.domain.local
public_ssl:
hostname: public.fuel.local
horizon: true
services: true
cert_data:
content: 'somedataaboutyourkeypair'
cert_source: self_signed
metadata:
weight: 110
label: Public TLS
auto_assign_floating_ip: false
vrouter_pub:
network_role: public/vip
ipaddr: 10.122.6.5
node_roles:
- controller
- primary-controller
namespace: vrouter
mp:
- weight: '1'
point: '1'
- weight: '2'
point: '2'
neutron_mellanox:
vf_num: '16'
plugin: disabled
metadata:
restrictions:
- action: hide
condition: not ('experimental' in version:feature_groups)
enabled: true
weight: 50
toggleable: false
label: Mellanox Neutron components
horizon:
secret_key: 1b0d6af1962c94205a5dbbffbb98ba66d651bd4bec78c7c385ad75eb07ad0fcb
debug: false
cinder:
db_password: qeN6frZT
user_password: 7Al0iWfl
fixed_key: 264ecf97cf69264f775e549fe5fd1ce3db6a92df94d37745819892803a83b19c
deployment_id: 1
external_ntp:
ntp_list:
- 0.fuel.pool.ntp.org
- 1.fuel.pool.ntp.org
- 2.fuel.pool.ntp.org
metadata:
weight: 100
label: Host OS NTP Servers
hugepages:
- {count: 512, numa_id: 0, size: 2048}
- {count: 8, numa_id: 1, size: 1048576}
openstack_version_prev: