Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

add some keepalived to db-koji.stg

Browse source
This commit is contained in:
Kevin Fenzi 2016-10-11 16:33:09 +00:00
parent c4b77adc87
commit 5837634ee3
3 changed files with 25 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

13
inventory/host_vars/db-koji01.stg.phx2.fedoraproject.org
View file

@ -27,7 +27,13 @@ kernel_shmmax: 68719476736
#
# Only allow postgresql access from the frontend node and other db nodes
#
custom_rules: [ '-A INPUT -p tcp -m tcp -s 10.5.126.86 --dport 5432 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 10.5.126.188 --dport 5432 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 10.5.126.189 --dport 5432 -j ACCEPT' ]
custom_rules: [
'-A INPUT -p tcp -m tcp -s 10.5.126.86 --dport 5432 -j ACCEPT',
'-A INPUT -p tcp -m tcp -s 10.5.126.188 --dport 5432 -j ACCEPT',
'-A INPUT -p tcp -m tcp -s 10.5.126.189 --dport 5432 -j ACCEPT',
'-A INPUT -d 224.0.0.0/8 -j ACCEPT',
'-A INPUT -p vrrp -j ACCEPT',
]
#
# Large updates pushes cause lots of db threads doing the tag moves, so up this from default.
@ -36,3 +42,8 @@ nrpe_procs_warn: 600
nrpe_procs_crit: 700
shared_buffers: "8GB"
effective_cache_size: "24GB"
# Keepalived variables
keepalived_interface: eth0
keepalived_priority: 100
keepalived_ipaddress: 10.5.125.190/24

13
inventory/host_vars/db-koji02.stg.phx2.fedoraproject.org
View file

@ -27,7 +27,13 @@ kernel_shmmax: 68719476736
#
# Only allow postgresql access from the frontend node.
#
custom_rules: [ '-A INPUT -p tcp -m tcp -s 10.5.126.86 --dport 5432 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 10.5.126.188 --dport 5432 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 10.5.126.189 --dport 5432 -j ACCEPT' ]
custom_rules: [
'-A INPUT -p tcp -m tcp -s 10.5.126.86 --dport 5432 -j ACCEPT',
'-A INPUT -p tcp -m tcp -s 10.5.126.188 --dport 5432 -j ACCEPT',
'-A INPUT -p tcp -m tcp -s 10.5.126.189 --dport 5432 -j ACCEPT',
'-A INPUT -d 224.0.0.0/8 -j ACCEPT',
'-A INPUT -p vrrp -j ACCEPT',
]
#
# Large updates pushes cause lots of db threads doing the tag moves, so up this from default.
@ -36,3 +42,8 @@ nrpe_procs_warn: 600
nrpe_procs_crit: 700
shared_buffers: "8GB"
effective_cache_size: "24GB"
# Keepalived variables
keepalived_interface: eth0
keepalived_priority: 50
keepalived_ipaddress: 10.5.125.190/24

1
playbooks/groups/postgresql-server-bdr.yml
View file

@ -25,6 +25,7 @@
- collectd/base
- collectd/postgres # This requires a 'databases' var to be set in host_vars
- sudo
- keepalived
tasks:
- include: "{{ tasks }}/yumrepos.yml"