---
# Note that the matching is done with re.match()
.*\.sunet\.se$:
net:
infra_ca_rp:
sunet::nagios::nrpe:
checks:
- nrpe_check_apt
- nrpe_check_dynamic_disk
- nrpe_check_entropy
- nrpe_check_load
- nrpe_check_memory
- nrpe_check_ntp_time
- nrpe_check_reboot
- nrpe_check_scriptherder
- nrpe_check_total_procs_lax
- nrpe_check_uptime
- nrpe_check_users
- nrpe_check_zombie_procs
sunet::server:
disable_all_local_users: true
disable_ipv6_privacy: true
install_scriptherder: true
unattended_upgrades: true
sunet::invent::client:
export_endpoint: https://ni-frontend-test.sunet.se
invent_retention_days: 1
baas2-backuptest-prod-1.sunet.se:
net::baas2_restoretest:
node_type: 'backupnode'
sunet::baas2:
nodename: 378A9E0ADCC5
backup_dirs:
- '/opt/backup-test'
baas2-restoretest-prod-1.sunet.se:
net::baas2_restoretest:
node_type: 'restorenode'
backup_nodename: 378A9E0ADCC5
sunet::baas2:
nodename: B0DA416B08FC
backup_dirs:
- '/opt/baas2'
metrics-cd-test-1.sunet.se:
sunet::certbot::acmed:
sunet::dockerhost2:
sunet::influx:
servicename: metrics-cd-test.sunet.se
influxdb2_tag: ci-docker-influxdb2-292
legacy_settings: false
influx_producer_networks:
- '130.242.121.23/32' # vpn1.sunet.se
- '192.36.171.97/32' # graph-internal-1.sunet.se
monitornetops-sto1-prod-1.sunet.se:
sunet::dockerhost2:
sunet::naemon_monitor:
domain: monitor-netops.sunet.se
naemon_tag: v2024-03-05-01
thruk_tag: v2024-02-12-01
histou_tag: v2023-10-04-02
nagflux_tag: v2023-10-04-01
thruk_admins:
- mariah@sunet.se
- pahol@sunet.se
- paulo@sunet.se
- jonas@sunet.se
- salu@sunet.se
- thorslund@sunet.se
thruk_users:
- '*@sunet.se'
default_host_group: sunet::nagios::nrpe
nrpe_group: sunet::nagios::nrpe
naemon_extra_volumes:
- /etc/naemon/conf.d/netops:/etc/naemon/conf.d/netops:ro
pahol-test1.sunet.se:
sunet::baas2:
version: 8.1.22.0
install_tbmr: true
nodename: 6BA7708D7A1E
exclude_list:
- '/home/no-backup/.../*'
- '/root/no-backup/.../*'
pypi-1.sunet.se:
sunet::pypi:
sunet::dockerhost2:
sunet::dehydrated::client:
domain: pypi.sunet.se
sunet::baas2:
nodename: A8P9U1IAR58I
backup_dirs:
- '/opt/pypi/packages'
sunet::server:
disable_ipv6_privacy: true
unattended_upgrades: true
ntpd_config: false
sshd_config: false
test-das-federator.lab.sunet.se:
sunet::certbot::acmed:
karchive.sunet.se:
sunet::dockerhost2:
net::karchive:
docker_tag: latest
git_repo_url: ssh://git@platform.sunet.se:22022/Network/configuration-backup.git
git_user: /root
lb-sthb-test-1.sunet.se:
sunet::dockerhost2:
sunet::lb::load_balancer:
interface: 'ens3'
lb-tug-test-1.sunet.se:
sunet::dockerhost2:
sunet::lb::load_balancer:
interface: 'ens3'
nifrontend-sto1-prod-1.sunet.se:
autoupdate:
sunet::dockerhost2:
sunet::invent::receiver:
vhost: nifrontend-sto1-prod-1.sunet.se
sunet::invent::scanner:
image_path: '/opt/receiver/images'
install_docker_io: false
'^zoomproxy+\S+-[1-3]\.sunet\.se':
sunet::dockerhost2:
autoupdate:
net::zoom_metadata:
filename: /etc/satosa/metadata/zoom.xml
url: https://sunet.zoom.us/saml/metadata/sp
sunet::satosa:
satosa_tag: 8.4.0
sunet::frontend::register_sites:
sites:
'zoom-saas-idp-proxy.sunet.se':
frontends:
- 'sthb-lb-1.sunet.se'
- 'tug-lb-1.sunet.se'
port: '443'
cisoas-sto4-prod-1.sunet.se:
net::cisoassistant:
sunet::dehydrated::client:
domain: cisoas-sto4-prod-1.sunet.se
ni-sto1-test-1.sunet.se:
autoupdate: