Skip to content

Instantly share code, notes, and snippets.

@suggestable

suggestable/conf.d_haproxy.yml Secret

Created August 29, 2018 10:21
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save suggestable/94ac20e8944658fd0de1bb29ca82798e to your computer and use it in GitHub Desktop.
Save suggestable/94ac20e8944658fd0de1bb29ca82798e to your computer and use it in GitHub Desktop.
Download ZIP
Current openstack-ansible configs
Raw
conf.d_haproxy.yml
# The nodes where haproxy will run
haproxy_hosts:
os-controller1:
ip: 10.10.16.11
os-controller2:
ip: 10.10.16.12
os-controller3:
ip: 10.10.16.13
Raw
env.d_cinder-volume.yml
---
# Important note:
# When using LVM or any iSCSI-based cinder backends, such as NetApp with
# iSCSI protocol, the cinder-volume service *must* run on metal.
# Reference: https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1226855
container_skel:
cinder_volumes_container:
properties:
is_metal: true
Raw
openstack_hostnames_ips.yml
{
"os-controller1": {
"ansible_host": "10.10.16.11",
"container_address": "10.10.16.11"
},
"os-controller1_cinder_api_container-aa5cb294": {
"ansible_host": "10.10.22.106",
"container_address": "10.10.22.106"
},
"os-controller1_galera_container-f46c9623": {
"ansible_host": "10.10.18.149",
"container_address": "10.10.18.149"
},
"os-controller1_glance_container-39c60963": {
"ansible_host": "10.10.19.62",
"container_address": "10.10.19.62"
},
"os-controller1_heat_api_container-d027d667": {
"ansible_host": "10.10.21.163",
"container_address": "10.10.21.163"
},
"os-controller1_horizon_container-b1080895": {
"ansible_host": "10.10.23.25",
"container_address": "10.10.23.25"
},
"os-controller1_keystone_container-8c8d984d": {
"ansible_host": "10.10.20.223",
"container_address": "10.10.20.223"
},
"os-controller1_memcached_container-e4225d39": {
"ansible_host": "10.10.22.197",
"container_address": "10.10.22.197"
},
"os-controller1_neutron_server_container-01bf4244": {
"ansible_host": "10.10.19.252",
"container_address": "10.10.19.252"
},
"os-controller1_nova_api_container-74815243": {
"ansible_host": "10.10.19.214",
"container_address": "10.10.19.214"
},
"os-controller1_rabbit_mq_container-76e4b1e4": {
"ansible_host": "10.10.23.250",
"container_address": "10.10.23.250"
},
"os-controller1_repo_container-6b657346": {
"ansible_host": "10.10.18.70",
"container_address": "10.10.18.70"
},
"os-controller1_swift_proxy_container-a26e4dff": {
"ansible_host": "10.10.19.170",
"container_address": "10.10.19.170"
},
"os-controller1_utility_container-714b8368": {
"ansible_host": "10.10.19.247",
"container_address": "10.10.19.247"
},
"os-controller2": {
"ansible_host": "10.10.16.12",
"container_address": "10.10.16.12"
},
"os-controller2_cinder_api_container-0cb7d206": {
"ansible_host": "10.10.20.144",
"container_address": "10.10.20.144"
},
"os-controller2_galera_container-d6b51cea": {
"ansible_host": "10.10.18.237",
"container_address": "10.10.18.237"
},
"os-controller2_glance_container-b0b9a1de": {
"ansible_host": "10.10.19.8",
"container_address": "10.10.19.8"
},
"os-controller2_heat_api_container-c9d722a3": {
"ansible_host": "10.10.20.63",
"container_address": "10.10.20.63"
},
"os-controller2_horizon_container-c6825462": {
"ansible_host": "10.10.17.20",
"container_address": "10.10.17.20"
},
"os-controller2_keystone_container-6ea8b7ef": {
"ansible_host": "10.10.18.232",
"container_address": "10.10.18.232"
},
"os-controller2_memcached_container-15626610": {
"ansible_host": "10.10.20.241",
"container_address": "10.10.20.241"
},
"os-controller2_neutron_server_container-493a0d15": {
"ansible_host": "10.10.17.28",
"container_address": "10.10.17.28"
},
"os-controller2_nova_api_container-10271f79": {
"ansible_host": "10.10.18.55",
"container_address": "10.10.18.55"
},
"os-controller2_rabbit_mq_container-9c72914a": {
"ansible_host": "10.10.20.202",
"container_address": "10.10.20.202"
},
"os-controller2_repo_container-827cfce8": {
"ansible_host": "10.10.22.30",
"container_address": "10.10.22.30"
},
"os-controller2_swift_proxy_container-ca01b883": {
"ansible_host": "10.10.17.88",
"container_address": "10.10.17.88"
},
"os-controller2_utility_container-221df35e": {
"ansible_host": "10.10.17.99",
"container_address": "10.10.17.99"
},
"os-controller3": {
"ansible_host": "10.10.16.13",
"container_address": "10.10.16.13"
},
"os-controller3_cinder_api_container-44109633": {
"ansible_host": "10.10.20.158",
"container_address": "10.10.20.158"
},
"os-controller3_galera_container-5b27080e": {
"ansible_host": "10.10.18.146",
"container_address": "10.10.18.146"
},
"os-controller3_glance_container-1ac0e4a6": {
"ansible_host": "10.10.19.49",
"container_address": "10.10.19.49"
},
"os-controller3_heat_api_container-18b24b58": {
"ansible_host": "10.10.23.203",
"container_address": "10.10.23.203"
},
"os-controller3_horizon_container-53863166": {
"ansible_host": "10.10.19.24",
"container_address": "10.10.19.24"
},
"os-controller3_keystone_container-d0fabad5": {
"ansible_host": "10.10.17.15",
"container_address": "10.10.17.15"
},
"os-controller3_memcached_container-7c67562e": {
"ansible_host": "10.10.18.107",
"container_address": "10.10.18.107"
},
"os-controller3_neutron_server_container-00b25e3d": {
"ansible_host": "10.10.23.105",
"container_address": "10.10.23.105"
},
"os-controller3_nova_api_container-89da1862": {
"ansible_host": "10.10.23.180",
"container_address": "10.10.23.180"
},
"os-controller3_rabbit_mq_container-f60f3124": {
"ansible_host": "10.10.18.152",
"container_address": "10.10.18.152"
},
"os-controller3_repo_container-912369f2": {
"ansible_host": "10.10.22.198",
"container_address": "10.10.22.198"
},
"os-controller3_swift_proxy_container-f26dd2d4": {
"ansible_host": "10.10.22.56",
"container_address": "10.10.22.56"
},
"os-controller3_utility_container-267379bf": {
"ansible_host": "10.10.21.11",
"container_address": "10.10.21.11"
},
"os-nova1": {
"ansible_host": "10.10.16.21",
"container_address": "10.10.16.21"
},
"os-nova2": {
"ansible_host": "10.10.16.22",
"container_address": "10.10.16.22"
},
"os-nova3": {
"ansible_host": "10.10.16.23",
"container_address": "10.10.16.23"
},
"os-syslog": {
"ansible_host": "10.10.16.10",
"container_address": "10.10.16.10"
},
"os-syslog_rsyslog_container-f3cb3031": {
"ansible_host": "10.10.17.50",
"container_address": "10.10.17.50"
}
}
Raw
openstack_user_config.yml
#(sanitised version)
---
cidr_networks:
management: 10.10.16.0/21
tunnel: 10.10.0.0/21
storage: 172.16.72.0/21
used_ips:
- "10.10.16.1,10.10.16.255"
- "10.10.0.1,10.10.0.255"
- "172.16.72.1,172.16.72.255"
global_overrides:
internal_lb_vip_address: 10.10.16.2
external_lb_vip_address: 172.16.54.5
management_bridge: br-mgmt
tunnel_bridge: br-vxlan
storage_bridge: br-storage
provider_networks:
- network:
group_binds:
- all_containers
- hosts
type: "raw"
container_bridge: "br-mgmt"
container_interface: "eth1"
container_type: "veth"
ip_from_q: "management"
is_container_address: true
is_ssh_address: true
- network:
group_binds:
- glance_api
- cinder_api
- cinder_volume
- nova_compute
- swift_proxy
type: "raw"
container_bridge: "br-storage"
container_type: "veth"
container_interface: "eth2"
container_mtu: "9000"
ip_from_q: "storage"
- network:
group_binds:
- neutron_linuxbridge_agent
container_bridge: "br-vxlan"
container_type: "veth"
container_interface: "eth10"
container_mtu: "9000"
ip_from_q: "tunnel"
type: "vxlan"
range: "1:2000"
net_name: "vxlan"
- network:
group_binds:
- neutron_linuxbridge_agent
container_bridge: "br-vlan"
container_type: "veth"
container_interface: "eth11"
type: "vlan"
range: "2000:4000"
net_name: "vlan"
- network:
group_binds:
- neutron_linuxbridge_agent
container_bridge: "br-vlan"
container_type: "veth"
container_interface: "eth12"
host_bind_override: "eth12"
type: "flat"
net_name: "flat"
swift:
storage_network: br-storage
replication_network: br-storage
part_power: 8
repl_number: 3
min_part_hours: 1
region: 1
zone: 0
weight: 100
mount_point: /srv/node
drives:
- name: sdb
- name: sdc
storage_policies:
- policy:
name: gold
index: 0
default: True
- policy:
name: silver
index: 1
repl_number: 3
deprecated: True
- policy:
name: ec10-4
index: 2
policy_type: erasure_coding
ec_type: jerasure_rs_vand
ec_num_data_fragments: 10
ec_num_parity_fragments: 4
ec_object_segment_size: 1048576
swift-proxy_hosts:
os-controller1:
ip: 10.10.16.11
container_vars:
swift_proxy_vars:
read_affinity: "r1=100"
write_affinity: "r1"
write_affinity_node_count: "2 * replicas"
os-controller2:
ip: 10.10.16.12
container_vars:
swift_proxy_vars:
read_affinity: "r2=100"
write_affinity: "r2"
write_affinity_node_count: "2 * replicas"
os-controller3:
ip: 10.10.16.13
container_vars:
swift_proxy_vars:
read_affinity: "r3=100"
write_affinity: "r3"
write_affinity_node_count: "2 * replicas"
swift_hosts:
os-nova1:
ip: 10.10.16.21
container_vars:
swift_vars:
zone: 0
os-nova2:
ip: 10.10.16.22
container_vars:
swift_vars:
zone: 0
os-nova3:
ip: 10.10.16.23
container_vars:
swift_vars:
zone: 0
shared-infra_hosts:
os-controller1:
ip: 10.10.16.11
os-controller2:
ip: 10.10.16.12
os-controller3:
ip: 10.10.16.13
repo-infra_hosts:
os-controller1:
ip: 10.10.16.11
os-controller2:
ip: 10.10.16.12
os-controller3:
ip: 10.10.16.13
os-infra_hosts:
os-controller1:
ip: 10.10.16.11
os-controller2:
ip: 10.10.16.12
os-controller3:
ip: 10.10.16.13
identity_hosts:
os-controller1:
ip: 10.10.16.11
os-controller2:
ip: 10.10.16.12
os-controller3:
ip: 10.10.16.13
network_hosts:
os-controller1:
ip: 10.10.16.11
os-controller2:
ip: 10.10.16.12
os-controller3:
ip: 10.10.16.13
compute_hosts:
os-nova1:
ip: 10.10.16.21
os-nova2:
ip: 10.10.16.22
os-nova3:
ip: 10.10.16.23
storage-infra_hosts:
os-controller1:
ip: 10.10.16.11
os-controller2:
ip: 10.10.16.12
os-controller3:
ip: 10.10.16.13
storage_hosts:
os-controller1:
ip: 10.10.16.11
container_vars:
cinder_storage_availability_zone: cinderAZ_1
cinder_default_availability_zone: cinderAZ_1
cinder_backends:
limit_container_types: cinder_volume
unity300iscsi:
volume_backend_name: "Unity 300 iSCSI"
volume_driver: cinder.volume.drivers.dell_emc.unity.Driver
storage_protocol: iSCSI
san_ip: 172.16.50.3
san_login: openstack.cinder
san_password: <password>
os-controller2:
ip: 10.10.16.12
container_vars:
cinder_storage_availability_zone: cinderAZ_1
cinder_default_availability_zone: cinderAZ_1
cinder_backends:
limit_container_types: cinder_volume
unity300iscsi:
volume_backend_name: "Unity 300 iSCSI"
volume_driver: cinder.volume.drivers.dell_emc.unity.Driver
storage_protocol: iSCSI
san_ip: 172.16.50.3
san_login: openstack.cinder
san_password: <password>
os-controller3:
ip: 10.10.16.13
container_vars:
cinder_storage_availability_zone: cinderAZ_1
cinder_default_availability_zone: cinderAZ_1
cinder_backends:
limit_container_types: cinder_volume
unity300iscsi:
volume_backend_name: "Unity 300 iSCSI"
volume_driver: cinder.volume.drivers.dell_emc.unity.Driver
storage_protocol: iSCSI
san_ip: 172.16.50.3
san_login: openstack.cinder
san_password: <password>
log_hosts:
os-syslog:
ip: 10.10.16.10
haproxy_hosts:
os-controller1:
ip: 10.10.16.11
os-controller2:
ip: 10.10.16.12
os-controller3:
ip: 10.10.16.13
image_hosts:
os-controller1:
ip: 10.10.16.11
os-controller2:
ip: 10.10.16.12
os-controller3:
ip: 10.10.16.13
Raw
user_variables.yml
# (sanitised version)
---
debug: true
glance_default_store: cinder
haproxy_keepalived_external_vip_cidr: "{{external_lb_vip_address}}/32"
haproxy_keepalived_internal_vip_cidr: "{{internal_lb_vip_address}}/32"
haproxy_keepalived_external_interface: eno3
haproxy_keepalived_internal_interface: br-mgmt
nova_cpu_allocation_ratio: 1.0
nova_disk_allocation_ratio: 1.0
nova_ram_allocation_ratio: 1.0
nova_system_user_uid: 10000
nova_system_group_gid: 10000
openstack_service_publicuri_proto: https
openstack_external_ssl: true
haproxy_ssl: false
haproxy_bind_on_non_local: true
apply_security_hardening: false
galera_cluster_name: openstack_galera_cluster
@markyeatman
Copy link

(sanitised version)

debug: true

glance_default_store: cinder

haproxy_keepalived_external_vip_cidr: "{{external_lb_vip_address}}/32"
haproxy_keepalived_internal_vip_cidr: "{{internal_lb_vip_address}}/32"
haproxy_keepalived_external_interface: eno3
haproxy_keepalived_internal_interface: br-mgmt

nova_cpu_allocation_ratio: 1.0
nova_disk_allocation_ratio: 1.0
nova_ram_allocation_ratio: 1.0
nova_system_user_uid: 10000
nova_system_group_gid: 10000

openstack_service_publicuri_proto: https
openstack_external_ssl: true
haproxy_ssl: true
haproxy_bind_on_non_local: true

apply_security_hardening: false
galera_cluster_name: openstack_galera_cluster

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment