140 lines
4.9 KiB
Plaintext
140 lines
4.9 KiB
Plaintext
---
|
|
###############################################################################
|
|
# Seed node configuration.
|
|
|
|
# User with which to access the seed via SSH during bootstrap, in order to
|
|
# setup the Kayobe user account. Default is {{ os_distribution }}.
|
|
seed_bootstrap_user: "{{ os_distribution }}"
|
|
|
|
###############################################################################
|
|
# Seed network interface configuration.
|
|
|
|
# List of networks to which seed nodes are attached.
|
|
seed_network_interfaces: >
|
|
{{ (seed_default_network_interfaces +
|
|
seed_extra_network_interfaces) | select | unique | list }}
|
|
|
|
# List of default networks to which seed nodes are attached.
|
|
seed_default_network_interfaces: >
|
|
{{ [admin_oc_net_name,
|
|
oob_oc_net_name,
|
|
provision_oc_net_name] | select | unique | list }}
|
|
|
|
# List of extra networks to which seed nodes are attached.
|
|
seed_extra_network_interfaces: []
|
|
|
|
# Whether to enable SNAT on seed nodes. Default is false.
|
|
seed_enable_snat: false
|
|
|
|
###############################################################################
|
|
# Seed node software RAID configuration.
|
|
|
|
# List of software RAID arrays. See mrlesmithjr.mdadm role for format.
|
|
seed_mdadm_arrays: []
|
|
|
|
###############################################################################
|
|
# Seed node encryption configuration.
|
|
|
|
# List of block devices to encrypt. See stackhpc.luks role for format.
|
|
seed_luks_devices: []
|
|
|
|
###############################################################################
|
|
# Seed node LVM configuration.
|
|
|
|
# List of seed volume groups. See mrlesmithjr.manage-lvm role for format.
|
|
seed_lvm_groups: "{{ seed_lvm_groups_default + seed_lvm_groups_extra }}"
|
|
|
|
# Default list of seed volume groups. See mrlesmithjr.manage-lvm role for
|
|
# format.
|
|
seed_lvm_groups_default: "{{ [seed_lvm_group_data] if seed_lvm_group_data_enabled | bool else [] }}"
|
|
|
|
# Additional list of seed volume groups. See mrlesmithjr.manage-lvm role for
|
|
# format.
|
|
seed_lvm_groups_extra: []
|
|
|
|
# Whether a 'data' LVM volume group should exist on the seed. By default this
|
|
# contains a 'docker-volumes' logical volume for Docker volume storage. It will
|
|
# also be used for Docker container and image storage if
|
|
# 'docker_storage_driver' is set to 'devicemapper'. Default is true if
|
|
# 'docker_storage_driver' is set to 'devicemapper', or false otherwise.
|
|
seed_lvm_group_data_enabled: "{{ docker_storage_driver == 'devicemapper' }}"
|
|
|
|
# Seed LVM volume group for data. See mrlesmithjr.manage-lvm role for format.
|
|
seed_lvm_group_data:
|
|
vgname: data
|
|
disks: "{{ seed_lvm_group_data_disks }}"
|
|
create: True
|
|
lvnames: "{{ seed_lvm_group_data_lvs }}"
|
|
|
|
# List of disks for use by seed LVM data volume group. Default to an invalid
|
|
# value to require configuration.
|
|
seed_lvm_group_data_disks:
|
|
- changeme
|
|
|
|
# List of LVM logical volumes for the data volume group.
|
|
seed_lvm_group_data_lvs:
|
|
- "{{ seed_lvm_group_data_lv_docker_volumes }}"
|
|
|
|
# Docker volumes LVM backing volume.
|
|
seed_lvm_group_data_lv_docker_volumes:
|
|
lvname: docker-volumes
|
|
size: "{{ seed_lvm_group_data_lv_docker_volumes_size }}"
|
|
create: True
|
|
filesystem: "{{ seed_lvm_group_data_lv_docker_volumes_fs }}"
|
|
mount: True
|
|
mntp: /var/lib/docker/volumes
|
|
|
|
# Size of docker volumes LVM backing volume.
|
|
seed_lvm_group_data_lv_docker_volumes_size: 75%VG
|
|
|
|
# Filesystem for docker volumes LVM backing volume. ext4 allows for shrinking.
|
|
seed_lvm_group_data_lv_docker_volumes_fs: ext4
|
|
|
|
###############################################################################
|
|
# Seed node sysctl configuration.
|
|
|
|
# Dict of sysctl parameters to set.
|
|
seed_sysctl_parameters: {}
|
|
|
|
###############################################################################
|
|
# Seed node user configuration.
|
|
|
|
# List of users to create. This should be in a format accepted by the
|
|
# singleplatform-eng.users role.
|
|
seed_users: "{{ users_default }}"
|
|
|
|
###############################################################################
|
|
# Seed node additional containers configuration
|
|
|
|
# Dict of container images to start
|
|
# Example:
|
|
# seed_containers:
|
|
# squid:
|
|
# name: "squid"
|
|
# image: "stackhpc/squid:3.5.20-1"
|
|
# pre: "{{ kayobe_env_config_path }}/containers/squid/pre.yml"
|
|
# post: "{{ kayobe_env_config_path }}/containers/squid/post.yml"
|
|
#
|
|
seed_containers: {}
|
|
|
|
###############################################################################
|
|
# Seed node firewalld configuration.
|
|
|
|
# Whether to install and enable firewalld.
|
|
seed_firewalld_enabled: false
|
|
|
|
# A list of zones to create. Each item is a dict containing a 'zone' item.
|
|
seed_firewalld_zones: []
|
|
|
|
# A firewalld zone to set as the default. Default is unset, in which case the
|
|
# default zone will not be changed.
|
|
seed_firewalld_default_zone:
|
|
|
|
# A list of firewall rules to apply. Each item is a dict containing arguments
|
|
# to pass to the firewalld module. Arguments are omitted if not provided, with
|
|
# the following exceptions:
|
|
# - offline: true
|
|
# - permanent: true
|
|
# - state: enabled
|
|
seed_firewalld_rules: []
|