summaryrefslogtreecommitdiffstats
path: root/puppet-infracloud/manifests/site.pp
blob: 8cbfef8c7137c175620ca0a3e0642b6a32319d00 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
# SPDX-license-identifier: Apache-2.0
##############################################################################
# Copyright (c) 2016 RedHat and others.
# All rights reserved. This program and the accompanying materials
# are made available under the terms of the Apache License, Version 2.0
# which accompanies this distribution, and is available at
# http://www.apache.org/licenses/LICENSE-2.0
##############################################################################
node 'controller00.opnfvlocal' {
  $group = 'infracloud'
  include ::sudoers

  class { 'opnfv::server':
    iptables_public_tcp_ports => [80,5000,5671,8774,9292,9696,35357], # logs,keystone,rabbit,nova,glance,neutron,keystone
    sysadmins                 => hiera('sysadmins', []),
    enable_unbound            => false,
    purge_apt_sources         => false,
  }
  class { 'opnfv::controller':
    keystone_rabbit_password         => hiera('keystone_rabbit_password'),
    neutron_rabbit_password          => hiera('neutron_rabbit_password'),
    nova_rabbit_password             => hiera('nova_rabbit_password'),
    root_mysql_password              => hiera('infracloud_mysql_password'),
    keystone_mysql_password          => hiera('keystone_mysql_password'),
    glance_mysql_password            => hiera('glance_mysql_password'),
    neutron_mysql_password           => hiera('neutron_mysql_password'),
    nova_mysql_password              => hiera('nova_mysql_password'),
    keystone_admin_password          => hiera('keystone_admin_password'),
    glance_admin_password            => hiera('glance_admin_password'),
    neutron_admin_password           => hiera('neutron_admin_password'),
    nova_admin_password              => hiera('nova_admin_password'),
    keystone_admin_token             => hiera('keystone_admin_token'),
    ssl_key_file_contents            => hiera('ssl_key_file_contents'),
    ssl_cert_file_contents           => hiera('ssl_cert_file_contents'),
    br_name                          => hiera('bridge_name'),
    controller_public_address        => $::fqdn,
    neutron_subnet_cidr              => hiera('neutron_subnet_cidr'),
    neutron_subnet_gateway           => hiera('neutron_subnet_gateway'),
    neutron_subnet_allocation_pools  => hiera('neutron_subnet_allocation_pools'),
    opnfv_password                   => hiera('opnfv_password'),
  }
}

node 'compute00.opnfvlocal' {
  $group = 'infracloud'
  include ::sudoers

  class { 'opnfv::server':
    sysadmins                 => hiera('sysadmins', []),
    enable_unbound            => false,
    purge_apt_sources         => false,
  }

  class { 'opnfv::compute':
    nova_rabbit_password             => hiera('nova_rabbit_password'),
    neutron_rabbit_password          => hiera('neutron_rabbit_password'),
    neutron_admin_password           => hiera('neutron_admin_password'),
    ssl_cert_file_contents           => hiera('ssl_cert_file_contents'),
    ssl_key_file_contents            => hiera('ssl_key_file_contents'),
    br_name                          => hiera('bridge_name'),
    controller_public_address        => 'controller00.opnfvlocal',
    virt_type                        => hiera('virt_type'),
  }
}

node 'jumphost.opnfvlocal' {
  class { 'opnfv::server':
    sysadmins                 => hiera('sysadmins', []),
    enable_unbound            => false,
    purge_apt_sources         => false,
  }
}

node 'baremetal.opnfvlocal', 'lfpod5-jumpserver' {
  class { '::opnfv::server':
    iptables_public_udp_ports => [67, 69],
    sysadmins                 => hiera('sysadmins', []),
    enable_unbound            => false,
    purge_apt_sources         => false,
  }

  class { '::infracloud::bifrost':
    ironic_inventory          => hiera('ironic_inventory', {}),
    ironic_db_password        => hiera('ironic_db_password'),
    mysql_password            => hiera('bifrost_mysql_password'),
    ipmi_passwords            => hiera('ipmi_passwords'),
    ssh_private_key           => hiera('bifrost_ssh_private_key'),
    ssh_public_key            => hiera('bifrost_ssh_public_key'),
    vlan                      => hiera('infracloud_vlan'),
    gateway_ip                => hiera('infracloud_gateway_ip'),
    default_network_interface => hiera('default_network_interface'),
    dhcp_static_mask          => hiera('dhcp_static_mask'),
    dhcp_pool_start           => hiera('dhcp_pool_start'),
    dhcp_pool_end             => hiera('dhcp_pool_end'),
    network_interface         => hiera('network_interface'),
    ipv4_nameserver           => hiera('ipv4_nameserver'),
    ipv4_subnet_mask          => hiera('ipv4_subnet_mask'),
    bridge_name               => hiera('bridge_name'),
    dib_dev_user_password     => hiera('dib_dev_user_password'),
  }
}