Skip to content
/ puppet-mod-profiles Public

Module to manage the puppet 'implementation layer'.

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

mtulio/puppet-mod-profiles

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
manifests
manifests
 
 
spec
spec
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
Gemfile
Gemfile
 
 
README.md
README.md
 
 
Rakefile
Rakefile
 
 
metadata.json
metadata.json
 
 

Repository files navigation

profiles

Puppet Forge Build Status

Table of Contents

  1. Overview
  2. Profiles
  3. Limitations
  4. Development
  5. Release Notes

1. Overview

Module to manage the puppet 'abstraction layer'. Here you can define profiles for your roles. This class will work better with 'roles' class [business layer]. You can add one or more profile for each 'role'.

2. Profiles

  • Linux
  • NMS/Zabbix
  • Webserver/Nginx [soon]
  • Webserver/APACHE [soon]

2.1 Linux

Description

Profile to configure Linux system using module 'mtulio-linux'

Dependencies

Module 'Linux'

Files

See module description

Usage

  • Basic security level
include ::profiles
class {'::profiles::linux':
  security_level => 'basic',
}
  • Define your own repository of configuration [module]
class {'::profiles' :
  gb_repo_base => '0_REPOSITORY',
  gb_pool      => 'dmz',
}
class {'::profiles::linux' :
  security_level => 'basic',
}

2.2 NMS

2.2.1 Zabbix Agent

Description

Profile to configure zabbix Agent on a Linux server

Dependencies

Module 'Zabbix'

Files

See module description

Usage
  • Configure Zabbix Agent with the basic parameters defined on class '::profiles::nms::zabbix_agent'. (check out the class to customize the parameters of your organization)
 include profiles
 class { 'profiles::nms::zabbix_agent' : }

2.3 Security

2.3.1 DNS Sec

Description

Profile to configure DNS server on a Linux System

Dependencies

Module 'DNSsec'

Files

See module description

Usage
  • Configure DNS server (BIND9) using DNSsec. Script will sign all zones under directory /var/named/chroot/var/named/master/zones/ with prefix 'db.'. Remember to keep keys on sub directory 'keys/':
include profiles
class {'profiles::security::dns':
  server_type    => 'master',
  dnssec_enabled => 'yes',
}

3. Limitations

OS compatibility:

  • Red Hat family 7+

We're working to support more OS.

4. Development

See project page at https://github.com/mtulio/puppet-mod-profiles

5. Release Notes

[1.1.1]

  • Fix Warnings

[1.1.0] <--

  • Review code layout of Linux profile
  • Create a class to manage users [add/remove]
  • Add DNS profiles [security/dns]

[1.0.0]

  • Add Profile Linux [base and sshd configuration]
  • Add Profile Zabbix

About

Module to manage the puppet 'implementation layer'.

Resources

Readme
Activity

Stars

1 star

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages