Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions
19622 commits 9 branches 0 tags 111 MiB
Commit graph

138 commits

Author SHA1 Message Date
Patrick Uiterwijk
d318a7a2b0 Add certgetter01 ccd file 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-09-09 23:27:40 +00:00
Ralph Bean
e6e1faded6 VPN ccd entries for odcs and freshmaker. 2017-08-31 14:48:44 +00:00
Kevin Fenzi
0ed471745c add correct tags here so openvpn is installed 2017-08-22 22:47:14 +00:00
Kevin Fenzi
ab36495dd9 add vpn client and ccd files for os cluster 2017-08-22 21:40:12 +00:00
Ricky Elrod
627708c0ba Initial attempt at docker-registry02.phx2 and docker-registry03.phx2 
Signed-off-by: Ricky Elrod <codeblock@fedoraproject.org>
 2017-07-19 18:15:59 +00:00
Kevin Fenzi
273093ecbb put server ccd files under server subdir 2017-05-15 02:34:31 +00:00
Kevin Fenzi
881735b5eb another corner case since f24 has systemd and el6 does not 2017-05-14 23:45:27 +00:00
Kevin Fenzi
5055c83e85 and try and handle f24 here too 2017-05-14 23:39:39 +00:00
Kevin Fenzi
636d7623ad try and use correct logic 2017-05-14 23:36:21 +00:00
Kevin Fenzi
489dd32e32 and also handle it here 2017-05-14 23:30:27 +00:00
Kevin Fenzi
52318bbc49 try and handle cases for f24 not being updated to the new setup either 2017-05-14 23:26:45 +00:00
Kevin Fenzi
f381865238 handle server dh file 2017-05-14 22:31:19 +00:00
Kevin Fenzi
f12de13a1f someday I will get these versions all right 2017-05-14 21:59:08 +00:00
Kevin Fenzi
50c070a79b fix version here too 2017-05-14 21:56:00 +00:00
Kevin Fenzi
8c4162eaa4 fix version for rhel 2017-05-14 21:54:22 +00:00
Kevin Fenzi
714506a905 handle poor old rhel6 2017-05-14 21:51:47 +00:00
Kevin Fenzi
f400f56c6b fix handlers and disable notify for now until we roll this out 2017-05-14 21:38:08 +00:00
Kevin Fenzi
4629c0aa58 also install the ca in the right place 2017-05-14 21:02:27 +00:00
Patrick Uiterwijk
4cc1b78ff3 Check the certificate key usage 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2017-05-14 20:57:39 +00:00
Kevin Fenzi
42b69d73f3 also the server files 2017-05-14 20:56:30 +00:00
Kevin Fenzi
6005665db7 also need cert and key under client 2017-05-14 20:55:45 +00:00
Kevin Fenzi
179cc4dd54 switch openvpn to use seperate service units and directories for client and server, hopefully in a mostly transparent way that will not cause much outage 2017-05-14 19:01:17 +00:00
Ricky Elrod
6b09124d2f add ccd for ci-cc-rdu01.fedoraproject.org 
Signed-off-by: Ricky Elrod <codeblock@fedoraproject.org>
 2017-05-10 20:19:34 +00:00
Kevin Fenzi
8a6e51a9a6 change state=running to start=started as the old one is going away in ansible 2.7 2017-04-13 01:37:21 +00:00
Stephen Smoogen
36b265bb4b we have a new nagios vpn 2017-03-17 18:29:37 +00:00
Ricky Elrod
077087828a add ccd for modernpaste02 
Signed-off-by: Ricky Elrod <codeblock@fedoraproject.org>
 2017-02-28 06:00:00 +00:00
Stephen Smoogen
3cb4f2a75f and remove its little doggies too <<cackle>> 2017-02-22 20:32:01 +00:00
Ricky Elrod
3e66902fd4 add ccd for modernpaste01 
Signed-off-by: Ricky Elrod <codeblock@fedoraproject.org>
 2017-02-15 23:40:51 +00:00
Ralph Bean
bafba7f9a7 VPN ccd files for MBS frontend. 2017-01-10 17:03:24 +00:00
Tim Flink
67271dd51b adding vpn config for qa-prod01.qa 2016-12-16 01:35:06 +00:00
Stephen Smoogen
f3daded24a and we have new data for vpns 2016-12-01 21:55:02 +00:00
Stephen Smoogen
12a7979213 update files to put basics for proxy13/proxy14 into being 2016-12-01 17:46:58 +00:00
Patrick Uiterwijk
326a6e42da Create ccd files 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-10-13 14:37:15 +00:00
Kevin Fenzi
215c38198e Disable openvpn client handler for now 2016-08-31 18:57:02 +00:00
Kevin Fenzi
12ed1dd6f7 Update out vpn configs for better encryption. 2016-08-31 18:50:14 +00:00
Patrick Uiterwijk
135f18c726 Docke-candidate-registry ccd file 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-08-18 15:49:53 +00:00
Kevin Fenzi
1c6e9a11f4 Another pile of trailing whitespace fixes 2016-08-08 19:42:36 +00:00
Patrick Uiterwijk
eacefedadf Add osbs-master01 ccd file 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-07-14 13:01:21 +00:00
Patrick Uiterwijk
bb82361a04 Create docker-registry01 vpn config 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-07-12 17:14:35 +00:00
Patrick Uiterwijk
b6eb15c0ee Create mm-frontend-checkin01 
This server should be regarded as untrusted.

Related: CVE-2016-1000003
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-06-17 19:54:43 +00:00
Kevin Fenzi
7a10cd6b2f Drop mm-crawler03 - ticket 4877 2016-05-26 17:02:52 +00:00
Mikolaj Izdebski
c61b2f0e17 Remove VPN config for old Koschei host 2016-05-12 15:46:10 +00:00
Kevin Fenzi
e297178539 Add vpn ccd for koschei-web01 2016-05-12 15:33:08 +00:00
Stephen Smoogen
10d5884bd5 remove the old rdu download boxes we will decommission 2016-05-04 15:18:35 +00:00
Patrick Uiterwijk
e78464fff2 Create OpenVPN config for basset01 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-04-14 23:38:36 +00:00
Tim Flink
fb21045a5b adding vpn server side config for beaker01.qa 2016-04-14 19:56:40 +00:00
Patrick Uiterwijk
7861d0cc75 Create OpenVPN config for basset01 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
 2016-03-17 22:49:01 +00:00
Ralph Bean
3d53824019 vpn ccd file for zanata2fedmsg01. 2016-03-03 20:30:21 +00:00
Ralph Bean
33028dfd9f openvpn ccd files for pdc nodes. 2016-01-04 21:52:18 +00:00
Tim Flink
39ddb15e92 adding openqa01.qa to vpn 2015-12-01 21:59:11 +00:00