From df5291beb5f7e098983896b073383c315b1c0ad3 Mon Sep 17 00:00:00 2001 From: Vasyl Kaigorodov Date: Fri, 28 Aug 2015 16:33:45 +0200 Subject: [PATCH] Ticket #4696 setup anon rsync for repos.fedorapeople.org - inventory/host_vars/people01.fedoraproject.org: added port 873 for the firewall - added new rsyncd config file for people01.fedoraproject.org This probably might/should be just for the whole "people" hostgroup. --- .../host_vars/people01.fedoraproject.org | 2 +- .../rsyncd.conf.people01.fedoraproject.org | 25 +++++++++++++++++++ 2 files changed, 26 insertions(+), 1 deletion(-) create mode 100644 roles/rsyncd/files/rsyncd.conf.people01.fedoraproject.org diff --git a/inventory/host_vars/people01.fedoraproject.org b/inventory/host_vars/people01.fedoraproject.org index 4b0c9ca461..2510b5c204 100644 --- a/inventory/host_vars/people01.fedoraproject.org +++ b/inventory/host_vars/people01.fedoraproject.org @@ -16,7 +16,7 @@ datacenter: ibiblio fedmsg_fqdn: people01.vpn.fedoraproject.org -tcp_ports: [80, 443, 9418] +tcp_ports: [80, 443, 9418, 873] nrpe_procs_warn: 900 nrpe_procs_crit: 1000 diff --git a/roles/rsyncd/files/rsyncd.conf.people01.fedoraproject.org b/roles/rsyncd/files/rsyncd.conf.people01.fedoraproject.org new file mode 100644 index 0000000000..b63c4e377b --- /dev/null +++ b/roles/rsyncd/files/rsyncd.conf.people01.fedoraproject.org @@ -0,0 +1,25 @@ +pid file = /var/run/rsyncd.pid +syslog facility = daemon +dont compress = *.gz *.tgz *.zip *.z *.rpm *.deb *.bz2 *.iso +use chroot = false +transfer logging = false +exclude = .snapshot/ .~tmp~/ /.private/ /.private/** **/.nfs* + + +# For distributing applications +[log] +comment = Server Logs +path = /var/log +uid = root +gid = root +read only = yes +hosts allow = 10.5.126.13 192.168.1.59 + +[people-repos] +comment = repos.fedorapeople.org content +path = /srv/repos +uid = nobody +gid = nobody +read only = yes +ignore nonreadable = yes +list = true