Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

make a nagios for production

Browse source
This commit is contained in:
Stephen Smoogen 2017-03-17 15:40:55 +00:00
parent 3dfe192280
commit 62c2bc460a
7 changed files with 333 additions and 150 deletions
Download patch file Download diff file Expand all files Collapse all files

148
inventory/group_vars/nagios-new Normal file
View file

@ -0,0 +1,148 @@
---
lvm_size: 20000
mem_size: 2048
num_cpus: 2
# for systems that do not match the above - specify the same parameter in
# the host_vars/$hostname file
tcp_ports: [ 80, 443 ]
# These are consumed by a task in roles/fedmsg/base/main.yml
fedmsg_certs:
- service: shell
owner: root
group: sysadmin
can_send:
- logger.log
- service: nagios
owner: root
group: nagios
can_send:
- nagios.host.state.change
- nagios.service.state.change
fas_client_groups: sysadmin-noc
csi_security_category: High
csi_primary_contact: Fedora Admins - admin@fedoraproject.org
csi_purpose: Monitoring system
phx2_management_hosts:
- autocloud-backend-libvirt.mgmt.fedoraproject.org
- autocloud-backend-vbox.mgmt.fedoraproject.org
- autosign01.mgmt.fedoraproject.org
- backup01.mgmt.fedoraproject.org
- beaker-client01.mgmt.fedoraproject.org
- beaker-client02.mgmt.fedoraproject.org
- bvirthost01.mgmt.fedoraproject.org
- cosmos01.mgmt.fedoraproject.org
- data-analysis01.mgmt.fedoraproject.org
- dell-fx01.mgmt.fedoraproject.org
- dell-fx01-01.mgmt.fedoraproject.org
- dell-fx01-02.mgmt.fedoraproject.org
- dell-fx01-03.mgmt.fedoraproject.org
- dell-fx01-04.mgmt.fedoraproject.org
- dell-fx01-05.mgmt.fedoraproject.org
- dell-fx01-06.mgmt.fedoraproject.org
- dell-fx01-07.mgmt.fedoraproject.org
- dell-fx01-08.mgmt.fedoraproject.org
- dell-fx02.mgmt.fedoraproject.org
- dell-fx02-01.mgmt.fedoraproject.org
- dell-fx02-02.mgmt.fedoraproject.org
- dell-fx02-03.mgmt.fedoraproject.org
- dell-fx02-04.mgmt.fedoraproject.org
- dell-fx02-05.mgmt.fedoraproject.org
- dell-fx02-06.mgmt.fedoraproject.org
- dell-fx02-07.mgmt.fedoraproject.org
- dell-fx02-08.mgmt.fedoraproject.org
- download01.mgmt.fedoraproject.org
- download02.mgmt.fedoraproject.org
- download03.mgmt.fedoraproject.org
- download04.mgmt.fedoraproject.org
- download05.mgmt.fedoraproject.org
- fed-cloud01.mgmt.fedoraproject.org
- fed-cloud02.mgmt.fedoraproject.org
- fed-cloud03.mgmt.fedoraproject.org
- fed-cloud04.mgmt.fedoraproject.org
- fed-cloud05.mgmt.fedoraproject.org
- fed-cloud06.mgmt.fedoraproject.org
- fed-cloud07.mgmt.fedoraproject.org
- fed-cloud08.mgmt.fedoraproject.org
- fed-cloud09.mgmt.fedoraproject.org
- fed-cloud10.mgmt.fedoraproject.org
- fed-cloud11.mgmt.fedoraproject.org
- fed-cloud12.mgmt.fedoraproject.org
- fed-cloud13.mgmt.fedoraproject.org
- fed-cloud14.mgmt.fedoraproject.org
- fed-cloud15.mgmt.fedoraproject.org
- kvm01.mgmt.fedoraproject.org
- oldbox01.mgmt.fedoraproject.org
- qa09.mgmt.fedoraproject.org
- qa10.mgmt.fedoraproject.org
- qa11.mgmt.fedoraproject.org
- qa12.mgmt.fedoraproject.org
- qa13.mgmt.fedoraproject.org
- qa14.mgmt.fedoraproject.org
- rack47-serial.mgmt.fedoraproject.org
- rack48-serial.mgmt.fedoraproject.org
- rack50-serial.mgmt.fedoraproject.org
- rack51-serial.mgmt.fedoraproject.org
- rack52-serial.mgmt.fedoraproject.org
- retrace01.mgmt.fedoraproject.org
- retrace02.mgmt.fedoraproject.org
- vhcloud01.mgmt.fedoraproject.org
- virthost-comm03.mgmt.fedoraproject.org
- virthost-comm04.mgmt.fedoraproject.org
- virthost01.mgmt.fedoraproject.org
- virthost02.mgmt.fedoraproject.org
- virthost03.mgmt.fedoraproject.org
- virthost04.mgmt.fedoraproject.org
- virthost05.mgmt.fedoraproject.org
- virthost06.mgmt.fedoraproject.org
- virthost07.mgmt.fedoraproject.org
- virthost09.mgmt.fedoraproject.org
- virthost10.mgmt.fedoraproject.org
- virthost11.mgmt.fedoraproject.org
- virthost15.mgmt.fedoraproject.org
- virthost16.mgmt.fedoraproject.org
- virthost17.mgmt.fedoraproject.org
- virthost18.mgmt.fedoraproject.org
- virthost19.mgmt.fedoraproject.org
- virthost20.mgmt.fedoraproject.org
- virthost21.mgmt.fedoraproject.org
- virthost22.mgmt.fedoraproject.org
phx2_management_limited:
- bkernel01.mgmt.fedoraproject.org
- bkernel02.mgmt.fedoraproject.org
- fed-cloud-ppc01.mgmt.fedoraproject.org
- fed-cloud-ppc02.mgmt.fedoraproject.org
- moonshot01-ilo.mgmt.fedoraproject.org
- moonshot01-sw1.mgmt.fedoraproject.org
- moonshot01-sw2.mgmt.fedoraproject.org
- opengear01.mgmt.fedoraproject.org
- opengear02.mgmt.fedoraproject.org
- ppc8-01-fsp.mgmt.fedoraproject.org
- ppc8-02-fsp.mgmt.fedoraproject.org
- ppc8-03-fsp.mgmt.fedoraproject.org
- qa01.mgmt.fedoraproject.org
- qa02.mgmt.fedoraproject.org
- qa03.mgmt.fedoraproject.org
- qa04.mgmt.fedoraproject.org
- qa05.mgmt.fedoraproject.org
- qa06.mgmt.fedoraproject.org
- qa07.mgmt.fedoraproject.org
- qa08.mgmt.fedoraproject.org
- rack16-pdu-a.mgmt.fedoraproject.org
- rack16-pdu-b.mgmt.fedoraproject.org
- rack17-pdu-a.mgmt.fedoraproject.org
- rack17-pdu-b.mgmt.fedoraproject.org
- rack46-pdu-a.mgmt.fedoraproject.org
- rack46-pdu-b.mgmt.fedoraproject.org
- rack47-pdu-a.mgmt.fedoraproject.org
- rack48-pdu-a.mgmt.fedoraproject.org
- sign-vault03.mgmt.fedoraproject.org
- sign-vault04.mgmt.fedoraproject.org
- virthost-comm02.mgmt.fedoraproject.org
- virthost12.mgmt.fedoraproject.org
- virthost14.mgmt.fedoraproject.org

148
inventory/group_vars/nagios-new-stg Normal file
View file

@ -0,0 +1,148 @@
---
lvm_size: 20000
mem_size: 2048
num_cpus: 2
# for systems that do not match the above - specify the same parameter in
# the host_vars/$hostname file
tcp_ports: [ 80, 443 ]
# These are consumed by a task in roles/fedmsg/base/main.yml
fedmsg_certs:
- service: shell
owner: root
group: sysadmin
can_send:
- logger.log
- service: nagios
owner: root
group: nagios
can_send:
- nagios.host.state.change
- nagios.service.state.change
fas_client_groups: sysadmin-noc
csi_security_category: High
csi_primary_contact: Fedora Admins - admin@fedoraproject.org
csi_purpose: Monitoring system
phx2_management_hosts:
- autocloud-backend-libvirt.mgmt.fedoraproject.org
- autocloud-backend-vbox.mgmt.fedoraproject.org
- autosign01.mgmt.fedoraproject.org
- backup01.mgmt.fedoraproject.org
- beaker-client01.mgmt.fedoraproject.org
- beaker-client02.mgmt.fedoraproject.org
- bvirthost01.mgmt.fedoraproject.org
- cosmos01.mgmt.fedoraproject.org
- data-analysis01.mgmt.fedoraproject.org
- dell-fx01.mgmt.fedoraproject.org
- dell-fx01-01.mgmt.fedoraproject.org
- dell-fx01-02.mgmt.fedoraproject.org
- dell-fx01-03.mgmt.fedoraproject.org
- dell-fx01-04.mgmt.fedoraproject.org
- dell-fx01-05.mgmt.fedoraproject.org
- dell-fx01-06.mgmt.fedoraproject.org
- dell-fx01-07.mgmt.fedoraproject.org
- dell-fx01-08.mgmt.fedoraproject.org
- dell-fx02.mgmt.fedoraproject.org
- dell-fx02-01.mgmt.fedoraproject.org
- dell-fx02-02.mgmt.fedoraproject.org
- dell-fx02-03.mgmt.fedoraproject.org
- dell-fx02-04.mgmt.fedoraproject.org
- dell-fx02-05.mgmt.fedoraproject.org
- dell-fx02-06.mgmt.fedoraproject.org
- dell-fx02-07.mgmt.fedoraproject.org
- dell-fx02-08.mgmt.fedoraproject.org
- download01.mgmt.fedoraproject.org
- download02.mgmt.fedoraproject.org
- download03.mgmt.fedoraproject.org
- download04.mgmt.fedoraproject.org
- download05.mgmt.fedoraproject.org
- fed-cloud01.mgmt.fedoraproject.org
- fed-cloud02.mgmt.fedoraproject.org
- fed-cloud03.mgmt.fedoraproject.org
- fed-cloud04.mgmt.fedoraproject.org
- fed-cloud05.mgmt.fedoraproject.org
- fed-cloud06.mgmt.fedoraproject.org
- fed-cloud07.mgmt.fedoraproject.org
- fed-cloud08.mgmt.fedoraproject.org
- fed-cloud09.mgmt.fedoraproject.org
- fed-cloud10.mgmt.fedoraproject.org
- fed-cloud11.mgmt.fedoraproject.org
- fed-cloud12.mgmt.fedoraproject.org
- fed-cloud13.mgmt.fedoraproject.org
- fed-cloud14.mgmt.fedoraproject.org
- fed-cloud15.mgmt.fedoraproject.org
- kvm01.mgmt.fedoraproject.org
- oldbox01.mgmt.fedoraproject.org
- qa09.mgmt.fedoraproject.org
- qa10.mgmt.fedoraproject.org
- qa11.mgmt.fedoraproject.org
- qa12.mgmt.fedoraproject.org
- qa13.mgmt.fedoraproject.org
- qa14.mgmt.fedoraproject.org
- rack47-serial.mgmt.fedoraproject.org
- rack48-serial.mgmt.fedoraproject.org
- rack50-serial.mgmt.fedoraproject.org
- rack51-serial.mgmt.fedoraproject.org
- rack52-serial.mgmt.fedoraproject.org
- retrace01.mgmt.fedoraproject.org
- retrace02.mgmt.fedoraproject.org
- vhcloud01.mgmt.fedoraproject.org
- virthost-comm03.mgmt.fedoraproject.org
- virthost-comm04.mgmt.fedoraproject.org
- virthost01.mgmt.fedoraproject.org
- virthost02.mgmt.fedoraproject.org
- virthost03.mgmt.fedoraproject.org
- virthost04.mgmt.fedoraproject.org
- virthost05.mgmt.fedoraproject.org
- virthost06.mgmt.fedoraproject.org
- virthost07.mgmt.fedoraproject.org
- virthost09.mgmt.fedoraproject.org
- virthost10.mgmt.fedoraproject.org
- virthost11.mgmt.fedoraproject.org
- virthost15.mgmt.fedoraproject.org
- virthost16.mgmt.fedoraproject.org
- virthost17.mgmt.fedoraproject.org
- virthost18.mgmt.fedoraproject.org
- virthost19.mgmt.fedoraproject.org
- virthost20.mgmt.fedoraproject.org
- virthost21.mgmt.fedoraproject.org
- virthost22.mgmt.fedoraproject.org
phx2_management_limited:
- bkernel01.mgmt.fedoraproject.org
- bkernel02.mgmt.fedoraproject.org
- fed-cloud-ppc01.mgmt.fedoraproject.org
- fed-cloud-ppc02.mgmt.fedoraproject.org
- moonshot01-ilo.mgmt.fedoraproject.org
- moonshot01-sw1.mgmt.fedoraproject.org
- moonshot01-sw2.mgmt.fedoraproject.org
- opengear01.mgmt.fedoraproject.org
- opengear02.mgmt.fedoraproject.org
- ppc8-01-fsp.mgmt.fedoraproject.org
- ppc8-02-fsp.mgmt.fedoraproject.org
- ppc8-03-fsp.mgmt.fedoraproject.org
- qa01.mgmt.fedoraproject.org
- qa02.mgmt.fedoraproject.org
- qa03.mgmt.fedoraproject.org
- qa04.mgmt.fedoraproject.org
- qa05.mgmt.fedoraproject.org
- qa06.mgmt.fedoraproject.org
- qa07.mgmt.fedoraproject.org
- qa08.mgmt.fedoraproject.org
- rack16-pdu-a.mgmt.fedoraproject.org
- rack16-pdu-b.mgmt.fedoraproject.org
- rack17-pdu-a.mgmt.fedoraproject.org
- rack17-pdu-b.mgmt.fedoraproject.org
- rack46-pdu-a.mgmt.fedoraproject.org
- rack46-pdu-b.mgmt.fedoraproject.org
- rack47-pdu-a.mgmt.fedoraproject.org
- rack48-pdu-a.mgmt.fedoraproject.org
- sign-vault03.mgmt.fedoraproject.org
- sign-vault04.mgmt.fedoraproject.org
- virthost-comm02.mgmt.fedoraproject.org
- virthost12.mgmt.fedoraproject.org
- virthost14.mgmt.fedoraproject.org

28
inventory/group_vars/nagios-stg
View file

@ -1,28 +0,0 @@
---
lvm_size: 20000
mem_size: 2048
num_cpus: 2
# for systems that do not match the above - specify the same parameter in
# the host_vars/$hostname file
tcp_ports: [ 80, 443 ]
# These are consumed by a task in roles/fedmsg/base/main.yml
fedmsg_certs:
- service: shell
owner: root
group: sysadmin
can_send:
- logger.log
- service: nagios
owner: root
group: nagios
can_send:
- nagios.host.state.change
- nagios.service.state.change
fas_client_groups: sysadmin-noc
csi_security_category: High
csi_primary_contact: Fedora Admins - admin@fedoraproject.org
csi_purpose: Monitoring system

32
inventory/host_vars/nagios01.phx2.fedoraproject.org Normal file
View file

@ -0,0 +1,32 @@
---
nm: 255.255.255.0
gw: 10.5.126.254
dns: 10.5.126.21
eth0_ip: 10.5.126.241
ks_url: http://10.5.126.23/repo/rhel/ks/kvm-rhel-7
ks_repo: http://10.5.126.23/repo/rhel/RHEL7-x86_64/
volgroup: /dev/vg_virthost
vmhost: virthost18.phx2.fedoraproject.org
datacenter: phx2
tcp_ports: ['22', '80', '443', '67', '68']
udp_ports: ['67','68','69']
custom_rules: [
'-A INPUT -p tcp -m tcp -s 192.168.1.20 --dport 5666 -j ACCEPT',
'-A INPUT -p tcp -m tcp -s 10.5.126.13 --dport 873 -j ACCEPT',
'-A INPUT -p tcp -m tcp -s 192.168.1.59 --dport 873 -j ACCEPT',
]
csi_relationship: |
nagios01 is a test mode for monitoring nagios instance to the phx datacenter.
* This host relies on:
- the virthost it's hosted on (virthost17.phx2.fedoraproject.org)
- FAS to authenticate users
- VPN connectivity
* Things that rely on this host:
- Infrastructure team to be awair of the infra status. operations control process will fail
- if this host is down, it will be difficult to know the status of infra and provide reactive/proactive support
- if this host is down, dhcp/bootp leases/renew will fail. pxe booting will fail as well

120
inventory/host_vars/noc01.stg.phx2.fedoraproject.org
View file

@ -20,7 +20,6 @@ custom_rules: [
eth0_ip: 10.5.126.2 eth0_ip: 10.5.126.2
csi_relationship: | csi_relationship: |
noc01.stg is the internal monitoring nagios instance to the phx datacenter. noc01.stg is the internal monitoring nagios instance to the phx datacenter.
it is also the dhcp server serving all computing nodes
* This host relies on: * This host relies on:
- the virthost it's hosted on (virthost17.phx2.fedoraproject.org) - the virthost it's hosted on (virthost17.phx2.fedoraproject.org)
@ -32,122 +31,3 @@ csi_relationship: |
- if this host is down, it will be difficult to know the status of infra and provide reactive/proactive support - if this host is down, it will be difficult to know the status of infra and provide reactive/proactive support
- if this host is down, dhcp/bootp leases/renew will fail. pxe booting will fail as well - if this host is down, dhcp/bootp leases/renew will fail. pxe booting will fail as well
phx2_management_hosts:
- autocloud-backend-libvirt.mgmt.fedoraproject.org
- autocloud-backend-vbox.mgmt.fedoraproject.org
- autosign01.mgmt.fedoraproject.org
- backup01.mgmt.fedoraproject.org
- beaker-client01.mgmt.fedoraproject.org
- beaker-client02.mgmt.fedoraproject.org
- bvirthost01.mgmt.fedoraproject.org
- cosmos01.mgmt.fedoraproject.org
- data-analysis01.mgmt.fedoraproject.org
- dell-fx01.mgmt.fedoraproject.org
- dell-fx01-01.mgmt.fedoraproject.org
- dell-fx01-02.mgmt.fedoraproject.org
- dell-fx01-03.mgmt.fedoraproject.org
- dell-fx01-04.mgmt.fedoraproject.org
- dell-fx01-05.mgmt.fedoraproject.org
- dell-fx01-06.mgmt.fedoraproject.org
- dell-fx01-07.mgmt.fedoraproject.org
- dell-fx01-08.mgmt.fedoraproject.org
- dell-fx02.mgmt.fedoraproject.org
- dell-fx02-01.mgmt.fedoraproject.org
- dell-fx02-02.mgmt.fedoraproject.org
- dell-fx02-03.mgmt.fedoraproject.org
- dell-fx02-04.mgmt.fedoraproject.org
- dell-fx02-05.mgmt.fedoraproject.org
- dell-fx02-06.mgmt.fedoraproject.org
- dell-fx02-07.mgmt.fedoraproject.org
- dell-fx02-08.mgmt.fedoraproject.org
- download01.mgmt.fedoraproject.org
- download02.mgmt.fedoraproject.org
- download03.mgmt.fedoraproject.org
- download04.mgmt.fedoraproject.org
- download05.mgmt.fedoraproject.org
- fed-cloud01.mgmt.fedoraproject.org
- fed-cloud02.mgmt.fedoraproject.org
- fed-cloud03.mgmt.fedoraproject.org
- fed-cloud04.mgmt.fedoraproject.org
- fed-cloud05.mgmt.fedoraproject.org
- fed-cloud06.mgmt.fedoraproject.org
- fed-cloud07.mgmt.fedoraproject.org
- fed-cloud08.mgmt.fedoraproject.org
- fed-cloud09.mgmt.fedoraproject.org
- fed-cloud10.mgmt.fedoraproject.org
- fed-cloud11.mgmt.fedoraproject.org
- fed-cloud12.mgmt.fedoraproject.org
- fed-cloud13.mgmt.fedoraproject.org
- fed-cloud14.mgmt.fedoraproject.org
- fed-cloud15.mgmt.fedoraproject.org
- kvm01.mgmt.fedoraproject.org
- oldbox01.mgmt.fedoraproject.org
- qa09.mgmt.fedoraproject.org
- qa10.mgmt.fedoraproject.org
- qa11.mgmt.fedoraproject.org
- qa12.mgmt.fedoraproject.org
- qa13.mgmt.fedoraproject.org
- qa14.mgmt.fedoraproject.org
- rack47-serial.mgmt.fedoraproject.org
- rack48-serial.mgmt.fedoraproject.org
- rack50-serial.mgmt.fedoraproject.org
- rack51-serial.mgmt.fedoraproject.org
- rack52-serial.mgmt.fedoraproject.org
- retrace01.mgmt.fedoraproject.org
- retrace02.mgmt.fedoraproject.org
- vhcloud01.mgmt.fedoraproject.org
- virthost-comm03.mgmt.fedoraproject.org
- virthost-comm04.mgmt.fedoraproject.org
- virthost01.mgmt.fedoraproject.org
- virthost02.mgmt.fedoraproject.org
- virthost03.mgmt.fedoraproject.org
- virthost04.mgmt.fedoraproject.org
- virthost05.mgmt.fedoraproject.org
- virthost06.mgmt.fedoraproject.org
- virthost07.mgmt.fedoraproject.org
- virthost09.mgmt.fedoraproject.org
- virthost10.mgmt.fedoraproject.org
- virthost11.mgmt.fedoraproject.org
- virthost15.mgmt.fedoraproject.org
- virthost16.mgmt.fedoraproject.org
- virthost17.mgmt.fedoraproject.org
- virthost18.mgmt.fedoraproject.org
- virthost19.mgmt.fedoraproject.org
- virthost20.mgmt.fedoraproject.org
- virthost21.mgmt.fedoraproject.org
- virthost22.mgmt.fedoraproject.org
phx2_management_limited:
- bkernel01.mgmt.fedoraproject.org
- bkernel02.mgmt.fedoraproject.org
- fed-cloud-ppc01.mgmt.fedoraproject.org
- fed-cloud-ppc02.mgmt.fedoraproject.org
- moonshot01-ilo.mgmt.fedoraproject.org
- moonshot01-sw1.mgmt.fedoraproject.org
- moonshot01-sw2.mgmt.fedoraproject.org
- opengear01.mgmt.fedoraproject.org
- opengear02.mgmt.fedoraproject.org
- ppc8-01-fsp.mgmt.fedoraproject.org
- ppc8-02-fsp.mgmt.fedoraproject.org
- ppc8-03-fsp.mgmt.fedoraproject.org
- qa01.mgmt.fedoraproject.org
- qa02.mgmt.fedoraproject.org
- qa03.mgmt.fedoraproject.org
- qa04.mgmt.fedoraproject.org
- qa05.mgmt.fedoraproject.org
- qa06.mgmt.fedoraproject.org
- qa07.mgmt.fedoraproject.org
- qa08.mgmt.fedoraproject.org
- rack16-pdu-a.mgmt.fedoraproject.org
- rack16-pdu-b.mgmt.fedoraproject.org
- rack17-pdu-a.mgmt.fedoraproject.org
- rack17-pdu-b.mgmt.fedoraproject.org
- rack46-pdu-a.mgmt.fedoraproject.org
- rack46-pdu-b.mgmt.fedoraproject.org
- rack47-pdu-a.mgmt.fedoraproject.org
- rack48-pdu-a.mgmt.fedoraproject.org
- sign-vault03.mgmt.fedoraproject.org
- sign-vault04.mgmt.fedoraproject.org
- virthost-comm02.mgmt.fedoraproject.org
- virthost12.mgmt.fedoraproject.org
- virthost14.mgmt.fedoraproject.org

5
inventory/inventory
View file

@ -453,7 +453,10 @@ dhcp01.phx2.fedoraproject.org
noc01.phx2.fedoraproject.org noc01.phx2.fedoraproject.org
noc02.fedoraproject.org noc02.fedoraproject.org
[nagios-stg] [nagios-new]
nagios01.phx2.fedoraproject.org
[nagios-new-stg]
noc01.stg.phx2.fedoraproject.org noc01.stg.phx2.fedoraproject.org
[notifs-backend] [notifs-backend]

2
playbooks/groups/noc-stg.yml
View file

@ -1,5 +1,5 @@
# This is a basic playbook # This is a basic playbook
- include: "/srv/web/infra/ansible/playbooks/include/virt-create.yml myhosts=nagios-stg" - include: "/srv/web/infra/ansible/playbooks/include/virt-create.yml myhosts=nagios-new-stg:nagios-new"
- name: make the box be real - name: make the box be real
hosts: nagios-stg hosts: nagios-stg