ansible/inventory/group_vars/batcave

---
lvm_size: 500000
mem_size: 24576
num_cpus: 10

tcp_ports: [ 80, 443, 8443, 8444 ]

# Neeed for rsync from log01 for logs.
custom_rules: [ '-A INPUT -p tcp -m tcp -s 10.5.126.13 --dport 873 -j ACCEPT', '-A INPUT -p tcp -m tcp -s 192.168.1.59 --dport 873 -j ACCEPT' ]

fas_client_groups: sysadmin-ask,sysadmin-atomic,sysadmin-cvs,sysadmin-main,sysadmin-web,sysadmin-noc,sysadmin-hosted,sysadmin-releng,sysadmin-qa,sysadmin-tools,sysadmin-cloud,sysadmin-bot,sysadmin-centos,sysadmin-koschei,sysadmin-datanommer,sysadmin-fedimg,fi-apprentice,sysadmin-regcfp,sysadmin-badges,sysadmin-mbs,sysadmin-veteran,sysadmin-coreos,sysadmin-upstreamfirst,sysadmin-releasemonitoring,sysadmin-fpdc,sysadmin-messaging,sysadmin-libravatar,sysadmin-gnome

ansible_base: /srv/web/infra
freezes: false
nfs_mount_opts: "rw,hard,bg,intr,noatime,nodev,nosuid,sec=sys,nfsvers=3"

fedmsg_certs:
- service: shell
  owner: root
  group: sysadmin
  can_send:
  - ansible.playbook.complete
  - ansible.playbook.start
  - logger.log
- service: scm
  owner: root
  group: sysadmin
  can_send:
  - infragit.receive

# For the MOTD
csi_security_category: High
csi_primary_contact: admin@fedoraproject.org / sysadmin-main-members
csi_purpose: Central management host for ansible
csi_relationship: |
    From the batcave batman ventures out to fight crime and protect gotham city!

    batcave is the central management host for ansible. 
    It also is the infrastructure.fedoraproject.org website with various content.
    It houses a number of infrastructure git repos. 

    * This host relies on:
    The virthost it's hosted on (virthost22)

    * Things that rely on this host:
    Things that access rhel/fedora/infra rpm repos, including builders and infra hosts.
    If this host is down, ansible runs cannot be made to update other hosts.
    If this host is down, crime may go up in gotham city.

nrpe_procs_warn: 900
nrpe_procs_crit: 1000
vpn: true