Puppet modules

Edited on 2011-05-31 by Yannick Vaucher

Created on 2011-05-25 by Yannick Vaucher

 

Introduction

This document is intended to gather and describe all available puppet modules Switzernet got.

 

Those modules are designed for Debian servers.

Astrad

 

Description:

Astrad is a module that installs a SIP server using Asterisk and Radius.

 

 

Module:

Astrad, as our main module, deserves a special page for versioning.

 

This can be followed at this link:

http://switzernet.com/3/public/110126-astrad-versions/

 

DB3

 

Description:

DB3 is a module that installs a replication server of the accounting MySQL database.

 

Module:

This modules also have it's own page for versioning.

 

This can be followed at this link:

http://www.switzernet.com/3/public/110317-db3-versions/

 

 

Fail2ban

 

Description:

This module installs fail2ban.

 

Fail2ban is a security tool that protects the server against brute force by banning IP trying to access with wrong login or password.

 

It includes a subclass for Asterisk to block SIP brute force.

 

Requirement:

This module requires the module iptables.

 

Module:

 

Version

 v 002

File

data1\110225,2015,fail2ban,002.zip

Size

4.49 kB

MD5

da7ea80ee71513d3c8e8251fc4f00dff

 

Iptables

 

Description:

This module installs a system of centralized blacklist using iptables.

More details at:

http://www.switzernet.com/3/public/110207-puppet-iptables-blacklist/

 

Module:

 

Version

 v 002

File

data1\110210,1220,iptables,002.zip

Size

1.71 kB

MD5

19abd0a025fdd879d4eb77796032a53d

 

 

 

 

 

snmp

 

Description:

This module installs snmp.

SNMP is a tool that provides data for monitoring. We use it with cacti.

 

Module:

 

Version

 v 001

File

snmp\110419,2016,snmp,001.zip

Size

1.53 kB

MD5

87cf185c0b8fef92f609d01bdb8a1647

LDAP

 

Description:

This module installs an LDAP client

 

To use it, you have to import ldap::client subclass

 

import ldap

include ldap::client

 

To test that it is correctly installed, use the following command:

getent passwd yannick-vaucher

This will return your something like

yannick-vaucher:x:1001:1000:Yannick Vaucher:/home/yannick-vaucher:/bin/bash

 

You must configure your host on your LDAP server or you can disable the filtering setting in /etc/pam_ldap.conf

Ex of the filtering line to comment:

#pam_filter host=ldapclient.switzernet.com

 

Module:

 

Version

 v 001

File

data1\110128,1751,ldap,001.zip

Size

3.03.kB

MD5

756e56961ecf9d0283fb2ef0e93b772f