Last active
August 29, 2015 14:22
-
-
Save ralfschimmel/fe76fff5500e678c589b to your computer and use it in GitHub Desktop.
Cloud-Init
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #cloud-config | |
| coreos: | |
| update: | |
| group: onderwijs | |
| server: https://topicus.update.core-os.net/v1/update/ | |
| fleet: | |
| metadata: host=MSJL007 | |
| etcd2: | |
| discovery: https://discovery.etcd.io/e275fbabe45188f1246d8fc16282cc39 | |
| name: MSJL007 | |
| advertise-client-urls: http://10.168.2.2:2379 | |
| initial-advertise-peer-urls: http://10.168.2.2:2380 | |
| listen-client-urls: http://0.0.0.0:2379,http://0.0.0.0:4001 | |
| listen-peer-urls: http://0.0.0.0:2380,http://0.0.0.0:7001 | |
| units: | |
| - name: reset-interfaces.service | |
| command: start | |
| content: | | |
| [Unit] | |
| Description=Bring interfaces down and restart networking post boot (for bonding of the network interfaces). | |
| After=network-online.target | |
| [Service] | |
| Type=oneshot | |
| ExecStart=/tmp/reset-interfaces | |
| - name: sshd.service | |
| command: start | |
| - name: etcd2.service | |
| command: start | |
| - name: fleet.service | |
| command: start | |
| - name: docker-tcp.socket | |
| command: start | |
| enable: true | |
| content: | | |
| [Unit] | |
| Description=Docker Socket for the API | |
| [Socket] | |
| ListenStream=2375 | |
| BindIPv6Only=both | |
| Service=docker.service | |
| [Install] | |
| WantedBy=sockets.target | |
| write_files: | |
| - path: /tmp/reset-interfaces | |
| permissions: 0700 | |
| owner: root | |
| content: | | |
| #!/bin/bash | |
| logger "Resetting all network interfaces for bonding." | |
| ip link set enp5s0f0 down | |
| ip link set enp5s0f1 down | |
| ip link set enp7s0f0 down | |
| ip link set enp7s0f1 down | |
| systemctl restart systemd-networkd | |
| logger "Private Network interfaces have been reset" | |
| rm /tmp/reset-interfaces | |
| - path: /etc/systemd/network/10-private-bond.network | |
| permissions: 0644 | |
| owner: root | |
| content: | | |
| [Match] | |
| Name=enp5* | |
| [Network] | |
| Bond=bondprivate | |
| - path: /etc/systemd/network/20-private-bond.netdev | |
| permissions: 0644 | |
| owner: root | |
| content: | | |
| [NetDev] | |
| Name=bondprivate | |
| Kind=bond | |
| [Bond] | |
| Mode=4 | |
| MIIMonitorSec=100 | |
| - path: /etc/systemd/network/30-setup-private-bond-ipv4.network | |
| permissions: 0644 | |
| owner: root | |
| content: | | |
| [Match] | |
| Name=bondprivate | |
| [Network] | |
| DNS=8.8.8.8 | |
| DNS=8.8.4.4 | |
| Address=10.168.2.2/24 | |
| - path: /etc/systemd/network/10-public-bond.network | |
| permissions: 0644 | |
| owner: root | |
| content: | | |
| [Match] | |
| Name=enp7* | |
| [Network] | |
| Bond=bondpublic | |
| - path: /etc/systemd/network/20-public-bond.netdev | |
| permissions: 0644 | |
| owner: root | |
| content: | | |
| [NetDev] | |
| Name=bondpublic | |
| Kind=bond | |
| [Bond] | |
| Mode=4 | |
| MIIMonitorSec=100 | |
| - path: /etc/systemd/network/30-setup-public-bond-ipv4.network | |
| permissions: 0644 | |
| owner: root | |
| content: | | |
| [Match] | |
| Name=bondpublic | |
| [Network] | |
| DNS=8.8.8.8 | |
| DNS=8.8.4.4 | |
| Address=37.48.108.37/27 | |
| Gateway=37.48.108.62 | |
| - path: /etc/systemd/system/docker.service.d/50-insecure-registry.conf | |
| content: | | |
| [Service] | |
| Environment=DOCKER_OPTS='--insecure-registry="0.0.0.0/0"' | |
| - path: /etc/environment | |
| permissions: 0644 | |
| content: | | |
| COREOS_PUBLIC_IPV4=37.48.108.37 | |
| COREOS_PRIVATE_IPV4=10.168.2.2 | |
| users: | |
| - name: core | |
| passwd: $6$rounds=4096$RR3X3xF2qs10df9/$tjRRv4zyUAf1xUSnGc16nbBicSIyJoueCK8U0eyXC3bdF6hfjQib74VtxXlo68F0HRxY7Bz7ax3RwQbACAv4W0 | |
| groups: | |
| - sudo | |
| - docker | |
| ssh_authorized_keys: | |
| - ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDnj9XEQRe1qWHUStA1S3MKw3paM7O+aMIrOHp+EZiHRoUibVhANMp7h0gTINEeJVuLQwB9P9VUEzwflRSAfyV3WraBYVHUVpzyNOukfmY1ey2vjH3eg2z/zKJYRDwwam4qoE2B8sH2zIA+r8M9b9Xl1dg43V1O6E1BUEcrqfPyacxcDM86DSNjfvkAIwOELZST6EyWbtWs/HddlLBoh5n2fEWqRsyTva1xgayTzixAUKAmrXnZqWI0yEs6nRb47yl5GaJB9L2OUYfKSPBXoM5KcWE0fMKLgPDLmz0dlbxrpH8w02cQNpLaXmMKV9tEI8RdbTPbjFH5U+yy96bSRrJD ralf@Ralfs-MBP13.local | |
| - ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDmOoJe5zaOq0CxPzlL5mhecMSs2AxtZO/2PS9NYDW4sJ8uPTNUk5BApmPy9JhSg0skDs8eWtNBDIaqDlj7fyQxj4A7/7w2ypy7TkI5i6kd+vKYkxIVq8s+JUK9T7C6i6x8mYB00SWrrYDsbLk1GSGuXcovmDP0H+t/0Xmd7gpccSodImq0SXnNMpWjX3qMfRTw6vlWYZORD4NIeI0SUAo9wYvvUtkBUxcSKQCmEUZ0KhAtj8MMJ96cPpXrefOag24eD2ejgHheU5oA6lBhoHH7lOd76LLmKMxpSLyOWT8uVm0dkalQbrAwI33S3poNjcVJvu3aHCvKn9fFuB5V97yn vincent.heet@topicus.nl | |
| - ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDawzf5JttuD97dJy+pxfhBC3QasvngIgyZuwHD9SFnU0euNVHG5kqoOHGLFuhtTzajD6LtLvp3Yzif+kz2S1/1Sw4UzQq10XZTBhZRcjetv0eCkIHeCWxW8ASmRAuJrR+5zpT+H3miNSYREj92ZmIZJHmVvz5GPYJedjqHdcnFkLs2BEHr4bWPaRx7dKS2fPrbg/lQzKXcuXbgkAXXh0oQYOCc/HhDOe1ujtOwBtGNZxpS/YVY5tYiFX0doYvfyonSq/ZZv+9bbI/lFGgKXoWr0i6VcvyYCwJwzPm8QAnNd5kuTKkmyVYbfOP9cP/s+P9cYn5lFtdUJvl3u9flv7a1 martijnlenderink@Martijns-MacBook-Pro.local | |
| - ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCpmQ+LxtCgPSA42QHfsM3XdIdvLFLZkb7XcA/s94X6i/5HyViflACadNWidHkuCiYbs69kjXKAU7W29xhvr35wfwBQzYHpRbvxyOIwJm5Ed7yIEsXoGf1oOegAVVL8G8NzWc3fuFJjp+Uix7CpbY7NuYbfJuKots5DHSQshn9/OMWFrgh9klmjufPvIGbmoLzBTOJhQIc7Io4+tk81Ghbb9KFbj7YXtfSNTqF99bkFzWD7AqCcJSVh1WTkPsKT+0Ly+Z3B+n/7g3s+J63VDfzK/cIVomH8htMwf0k02iRSnq7kllGpg+OpPGqduTapiZTcRdfDvD5OKjEn0OjUnduD matthijs.bloemendal@topicus.nl | |
| - ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEAjI6fqffZfUEdJnqQWSBcmMnP2lE6WHbZ51OfT0Y/ooIqbdwnvJWy9SZAk2s9f8m8TTvOlZlnM9n2IG3tFJrPLQOdBd5ndCUKIbT/DsQqJLd/fDAUM9ogTdl5HYqydw3F6xCXG8Qwr/PnNNlN3FbA0uaGVCdimlCmPFcewSc0FCgk+XVwdOWkDxTftXV1anrYweutSCv6gG5SYOf7rDE9R+3WP/EUsYEqZLIqAD0Xe3hWIF86VrJ9lEFABepyFAr1iYtGmbeyRxELhteMshNq9g9qBvaRSfd5ZE+Ovu1gx3ScAf0Cg4KfcnSNSxI0+zTzxArPswVN/ow8FUzT3t177Q== rsa-key-20141121 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment