From 6ebd3cc29b26d793419e800a39693bdde803cda7 Mon Sep 17 00:00:00 2001
From: Kevin Fenzi <kevin@scrye.com>
Date: Sun, 7 Dec 2014 16:53:39 +0000
Subject: [PATCH] Add a proxy02.stg instance

---
 inventory/group_vars/proxies-stg              | 15 ++++++
 .../proxy02.stg.phx2.fedoraproject.org        | 10 ++++
 inventory/inventory                           |  2 +
 playbooks/groups/proxies.yml                  | 47 +++++++++++++++++++
 4 files changed, 74 insertions(+)
 create mode 100644 inventory/group_vars/proxies-stg
 create mode 100644 inventory/host_vars/proxy02.stg.phx2.fedoraproject.org
 create mode 100644 playbooks/groups/proxies.yml

diff --git a/inventory/group_vars/proxies-stg b/inventory/group_vars/proxies-stg
new file mode 100644
index 0000000000..f1d45a2cd8
--- /dev/null
+++ b/inventory/group_vars/proxies-stg
@@ -0,0 +1,15 @@
+---
+# Define resources for this group of hosts here. 
+lvm_size: 30000
+mem_size: 8192
+num_cpus: 2
+
+custom_rules: [
+    # Need for rsync from log01 for logs.
+    '-A INPUT -p tcp -m tcp -s 10.5.126.13 --dport 873 -j ACCEPT',
+    '-A INPUT -p tcp -m tcp -s 192.168.1.59 --dport 873 -j ACCEPT',
+ ]
+
+tcp_ports: [ 80, 443 ]
+
+fas_client_groups: sysadmin-noc
diff --git a/inventory/host_vars/proxy02.stg.phx2.fedoraproject.org b/inventory/host_vars/proxy02.stg.phx2.fedoraproject.org
new file mode 100644
index 0000000000..fefec01fbe
--- /dev/null
+++ b/inventory/host_vars/proxy02.stg.phx2.fedoraproject.org
@@ -0,0 +1,10 @@
+---
+nm: 255.255.255.0
+gw: 10.5.126.254
+dns: 10.5.126.21
+
+volgroup: vg_virthost16
+
+eth0_ip: 10.5.126.35
+
+vmhost: virthost16.phx2.fedoraproject.org
diff --git a/inventory/inventory b/inventory/inventory
index 58b7a45862..390c2403fc 100644
--- a/inventory/inventory
+++ b/inventory/inventory
@@ -411,6 +411,7 @@ proxy09.fedoraproject.org
 
 [proxies-stg]
 proxy01.stg.phx2.fedoraproject.org
+proxy02.stg.phx2.fedoraproject.org
 
 [qa]
 qa01.dev.fedoraproject.org
@@ -473,6 +474,7 @@ paste01.stg.phx2.fedoraproject.org
 pkgdb01.stg.phx2.fedoraproject.org
 pkgs01.stg.phx2.fedoraproject.org
 proxy01.stg.phx2.fedoraproject.org
+proxy02.stg.phx2.fedoraproject.org
 releng01.stg.phx2.fedoraproject.org
 summershum01.stg.phx2.fedoraproject.org
 sundries01.stg.phx2.fedoraproject.org
diff --git a/playbooks/groups/proxies.yml b/playbooks/groups/proxies.yml
new file mode 100644
index 0000000000..f1c07b8a67
--- /dev/null
+++ b/playbooks/groups/proxies.yml
@@ -0,0 +1,47 @@
+# create a new proxy server
+
+- name: make new proxy server
+  hosts: proxies-stg
+  user: root
+  gather_facts: False
+  accelerate: "{{ accelerated }}"
+
+  vars_files: 
+   - /srv/web/infra/ansible/vars/global.yml
+   - "{{ private }}/vars.yml"
+   - /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
+
+  tasks:
+  - include: "{{ tasks }}/virt_instance_create.yml"
+
+  handlers:
+  - include: "{{ handlers }}/restart_services.yml"
+
+- name: make the box be real
+  hosts: fproxies-stg
+  user: root
+  gather_facts: True
+  accelerate: "{{ accelerated }}"
+
+  vars_files: 
+   - /srv/web/infra/ansible/vars/global.yml
+   - "{{ private }}/vars.yml"
+   - /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
+
+  roles:
+  - base
+  - hosts
+  - rkhunter
+  - denyhosts
+  - nagios_client
+  - fas_client
+  - collectd/base
+  - sudo
+
+  tasks:
+  - include: "{{ tasks }}/yumrepos.yml"
+  - include: "{{ tasks }}/2fa_client.yml"
+  - include: "{{ tasks }}/motd.yml"
+
+  handlers:
+  - include: "{{ handlers }}/restart_services.yml"