1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
|
# This manifest is managed using cosmos
Exec {
path => "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
}
# include some of this stuff for additional features
#include cosmos::tools
#include cosmos::motd
#include cosmos::ntp
#include cosmos::rngtools
#include cosmos::preseed
include ufw
include apt
include cosmos
# you need a default node
node default {
}
# edit and uncomment to manage ssh root keys in a simple way
#class { 'cosmos::access':
# keys => [
# "ssh-rsa ..."
# ]
#}
# example config for the nameserver class which is matched in cosmos-rules.yaml
#class nameserver {
# package {'bind9':
# ensure => latest
# }
# service {'bind9':
# ensure => running
# }
# ufw::allow { "allow-dns-udp":
# ip => 'any',
# port => 53,
# proto => "udp"
# }
# ufw::allow { "allow-dns-tcp":
# ip => 'any',
# port => 53,
# proto => "tcp"
# }
#}
ufw::allow {"allow-ssh-tcp":
ip => 'any',
port => 22,
proto => 'tcp'
}
node 'sto-tug-kvm1.swamid.se' {
class { 'dhcp':
dnsdomain => [ 'eduid.se','sunet.se' ],
nameservers => ['130.242.80.14','130.242.80.99'],
ntpservers => ['pool.ntp.org'],
interfaces => ['eth0'],
#pxeserver => '130.242.125.5',
#pxefilename => 'pxelinux.0'
}
dhcp::pool {'install':
network => '130.242.125.0',
mask => '255.255.255.192',
gateway => '130.242.125.1',
range => ''
}
dhcp::host {
'foo': mac => "00:50:56:00:00:01", ip => "10.0.1.51";
}
}
|