| Commit message (Collapse) | Author | Age | Files | Lines |
|\
| |
| | |
Make os_firewall_manage_iptables run on python3
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
It fail with that traceback:
Traceback (most recent call last):
File \"/tmp/ansible_ib5gpbsp/ansible_module_os_firewall_manage_iptables.py\", line 273, in <module>
main()
File \"/tmp/ansible_ib5gpbsp/ansible_module_os_firewall_manage_iptables.py\", line 257, in main
iptables_manager.add_rule(port, protocol)
File \"/tmp/ansible_ib5gpbsp/ansible_module_os_firewall_manage_iptables.py\", line 87, in add_rule
self.verify_chain()
File \"/tmp/ansible_ib5gpbsp/ansible_module_os_firewall_manage_iptables.py\", line 82, in verify_chain
self.create_jump()
File \"/tmp/ansible_ib5gpbsp/ansible_module_os_firewall_manage_iptables.py\", line 142, in create_jump
input_rules = [s.split() for s in output.split('\\n')]
|
|\ \
| | |
| | | |
Refactor os_firewall role
|
| | |
| | |
| | |
| | |
| | |
| | | |
* Remove unneeded tasks duplicated by new module functionality
* Ansible systemd module has 'masked' and 'daemon_reload' options
* Ansible firewalld module has 'immediate' option
|
|\ \ \
| | | |
| | | | |
Modified the error message being checked for
|
| | | | |
|
|\ \ \ \
| | | | |
| | | | | |
Add hawkular admin cluster role to management admin
|
| | | | |
| | | | |
| | | | |
| | | | | |
Signed-off-by: Federico Simoncelli <fsimonce@redhat.com>
|
| |_|_|/
|/| | |
| | | |
| | | |
| | | |
| | | | |
On F24 and earlier, systemctl show always returned 0. On F25, it
return 1 when a service do not exist, and thus the role fail
on Fedora 25 cloud edition.
|
|\ \ \ \
| | | | |
| | | | | |
Refactor to use Ansible package module
|
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
The Ansible package module will call the correct package manager for the
underlying OS.
|
|\ \ \ \ \
| | | | | |
| | | | | | |
Only run tuned-adm if tuned exists.
|
| | |_|_|/
| |/| | |
| | | | |
| | | | |
| | | | |
| | | | | |
Fedora Atomic Host does not have tuned installed.
Fixes #2809
|
|\ \ \ \ \
| |/ / / /
|/| | | | |
Allow ansible to continue when a node is unaccessible or fails.
|
| | | | | |
|
| | | | | |
|
|\ \ \ \ \
| |/ / / /
|/| | | | |
node_dnsmasq -- Set dnsmasq as our only nameserver
|
| | | | | |
|
| |/ / / |
|
|\ \ \ \
| |/ / /
|/| | | |
storage/nfs_lvm: Also export as ReadWriteOnce
|
| | | |
| | | |
| | | |
| | | |
| | | |
| | | | |
While NFS supports `ReadWriteMany`, it's very common for pod authors
to only need `ReadWriteOnce`. At the moment, kube will not auto-bind
a `RWO` claim to a `RWM` volume.
|
| | | | |
|
|\ \ \ \
| | | | |
| | | | | |
Added ip forwarding for nuage
|
| | |_|/
| |/| | |
|
|\ \ \ \
| | | | |
| | | | | |
Prevent useless master restart by reworking template for master service enf file
|
| | |_|/
| |/| | |
|
|\ \ \ \
| | | | |
| | | | | |
Add nuage rest server port to haproxy firewall rules.
|
| | | | | |
|
|\ \ \ \ \
| | | | | |
| | | | | | |
Support 3rd party scheduler
|
| | | | | | |
|
|\ \ \ \ \ \
| | | | | | |
| | | | | | | |
Fix metrics deployment in 3.4
|
| | | | | | | |
|
| | | | | | | |
|
|\ \ \ \ \ \ \
| |_|_|_|_|/ /
|/| | | | | | |
[#2698] Change to allow cni deployments without openshift SDN
|
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
The roles/openshift_facts main task did not pass the cni plugin variable to the later role playbooks.
The master.yaml and node.yaml templates did not allow for a cni configuration without either installing openshift sdn or nuage.
This change will allow to use os_sdn_network_plugin_name=cni and set openshift_use_openshift_sdn=false for deployments that use a cni plugin that doesn't need and want openshift sdn to be installed
|
|\ \ \ \ \ \ \
| | | | | | | |
| | | | | | | | |
Add rolebinding-reader
|
| | | | | | | | |
|
| | | | | | | | |
|
| | |/ / / / /
| |/| | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
Fixes Bug 1390913
Fixes BZ1390913
|
|\ \ \ \ \ \ \
| |/ / / / / /
|/| | | | | |
| | | | | | |
| | | | | | | |
EricMountain-1A/fix_docker_fatal_selinux_4upstream-github
Docker daemon is started prematurely.
|
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
Docker service is started prior to configuration changes being applied.
The service is then not restarted by the handlers, so configuration
changes are not applied.
We now start the docker service only once all config changes have been
made.
|
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
Pulls in
https://github.com/openshift/origin-aggregated-logging/commit/d40fd9b83a6f6c0fb962db8869e6a35ef4f72751
https://github.com/openshift/origin-aggregated-logging/commit/f55cf03231d3ff2c7c9f2b9c8a4e1c29b4535c9c
|
| | | | | | | |
|
|/ / / / / / |
|
|\ \ \ \ \ \
| | | | | | |
| | | | | | | |
etcd upgrade playbooks
|
| | | | | | | |
|
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
Includes bash functions for etcdctl2 and etcdctl3 which provide reasonable
defaults for etcdctl functions on a host that's configured with openshift_etcd.
|
|\ \ \ \ \ \ \
| | | | | | | |
| | | | | | | | |
Fix commit-offsets in version detection for containerized installs
|
| |/ / / / / /
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | |
| | | | | | | |
* Applies the chomp_commit_offset logic to container version detection
https://bugzilla.redhat.com/show_bug.cgi?id=1389137
|
|/ / / / / /
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | |
| | | | | | |
The docker role requires iptables-services to be installed. Added
dependency on so_firewall role to ensure the iptables service is
installed first. Currently this will only work with iptables and
not with firewalld.
* Added allow_duplicates to os_firewall role meta
* Removed unused task from docker/tasks
* Corrected os_firewall Defaults in README
|