crans/crans_bcfg2
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
crans_bcfg2/Metadata/groups.xml
Pierre-Elliott Bécue d10a8a0672 [Bcfg2] Nouveau paquet, nouvelle config 
Ignore-this: 67cdee8f32d7581493d12617ddc97bc2
Bcfg2 a subi deux releases, qui ont pas mal changé les "normes".

Les balises suivntes sont remplacées :

<ConfigFile> ---------------------------> <Path type="file">
<Directory>  ---------------------------> <Path type="directory">
<SymLink>    ---------------------------> <Path type="symlink">
etc

Pour les fichiers python, désormais, on utilise plus
<ConfigFile>, mais <Python>

darcs-hash:20121211100127-b6762-f146f4460e9713cb59a25c33a08b551c5280f3b2.gz
2012-12-11 11:01:27 +01:00

1293 lines
31 KiB
XML
Raw Blame History

<!-- -*- mode: xml; coding: utf-8 -*- -->
<Groups version="3.0">
<!-- +=========================+ -->
<!-- | Definition des serveurs | -->
<!-- +=========================+ -->
<Group name="komaz"
profile="true">
<Group name="crans-squeeze"/>
<Group name="firewall"/>
<Group name="connection-main"/>
<!-- <Group name="ups-monitor"/> -->
<Group name="firmware-bnx2"/>
<Group name="vlan-ens"/>
</Group>
<Group name="sila"
profile="true">
<Group name="crans-squeeze"/>
<Group name="dns-secondary"/>
<Group name="main-ftp-server"/>
<!-- <Group name="ups-monitor"/> -->
<Group name="debian-mirror"/>
<Group name="webmasters"/>
<Group name="ntp-server"/>
</Group>
<Group name="charybde"
profile="true">
<Group name="crans-squeeze"/>
<Group name="dns-secondary"/>
<Group name="dnssec-validation"/>
<Group name="main-ftp-server"/>
<!-- <Group name="ups-monitor"/> -->
<Group name="debian-mirror"/>
<Group name="webmasters"/>
<Group name="ntp-server"/>
</Group>
<Group name="daath"
profile="true">
<Group name="crans-nfs-squeeze"/>
<Group name="adm-only"/>
</Group>
<Group name="sable"
profile="true">
<Group name="crans-squeeze"/>
<Group name="main-proxy-server"/>
<Group name="radius-server"/>
<Group name="db-replicat"/>
<Group name="dns-primary"/>
<Group name="dnssec-validation"/>
<!-- <Group name="ups-monitor"/> -->
<Group name="vlan-radin"/>
<Group name="vlan-accueil" />
<Group name="vlan-isolement"/>
<Group name="firmware-bnx2"/>
<Group name="vlan-ens"/>
</Group>
<Group name="gordon"
profile="true">
<Group name="crans-squeeze"/>
<Group name="router-wifi"/>
<Group name="freeradius"/>
<Group name="secondary-ntp-server"/>
</Group>
<Group name="morgan"
profile="true">
<Group name="crans-lenny"/>
</Group>
<Group name="malloc"
profile="true">
<Group name="crans-squeeze"/>
<Group name="mumudvb"/>
</Group>
<Group name="dyson"
profile="true">
<Group name="crans-squeeze"/>
<Group name="autostatus"/>
<Group name="sniffer"/>
</Group>
<Group name="notyetbroken"
profile="true">
<Group name="crans-lenny"/>
</Group>
<Group name="zamok"
comment="le serveur des adherents"
profile="true">
<Group name="crans-squeeze"/>
<Group name="users"/>
<Group name="http-server"/>
<Group name="intranet-server"/>
<Group name="print-server"/>
<Group name="adh-sql-server"/>
<Group name="adh-antispam-filter"/>
<Bundle name="quota"/>
<!-- <Group name="ups-monitor"/> -->
</Group>
<Group name="rouge"
profile="true">
<Group name="crans-lenny"/>
<Group name="mail-mx-main"/>
<Group name="dns-secondary"/>
</Group>
<Group name="bcfg2"
profile="true">
<Group name="crans-squeeze"/>
<Group name="bcfg2-server"/>
<Group name="adm-only"/>
<Group name="domu"/>
</Group>
<Group name="vert"
profile="true">
<Group name="crans-squeeze"/>
<Group name="db-main"/>
<!-- <Group name="ups-server"/> -->
<Group name="adm-only"/>
<Group name="domu"/>
</Group>
<Group name="pegase"
profile="true">
<Group name="crans-etch"/>
<Group name="db-replicat"/>
<Group name="radius-server"/>
<Group name="adm-only"/>
</Group>
<Group name="babar"
profile="true">
<Group name="crans-squeeze"/>
<Group name="db-replicat"/>
<Group name="backup-server"/>
<Group name="backup-ftp-server"/>
<Group name="adm-only"/>
</Group>
<Group name="vo"
profile="true">
<Group name="crans-squeeze"/>
<Group name="2B"/>
<Group name="server-x"/>
<Group name="bureau"/>
<Group name="non-free"/>
<Group name="db-replicat-test"/>
</Group>
<Group name="ovh"
profile="true">
<Group name="crans-squeeze"/>
<Group name="db-replicat"/>
<Group name="mail-mx-secondary"/>
<Group name="dns-secondary-no-forward"/>
<Group name="external"/>
<Group name="pgsql-server"/>
<Group name="sqlgrey-localdb"/>
<Group name="ejabberd-services"/>
<Group name="ejabberd-extra"/>
</Group>
<Group name="fx"
profile="true">
<Group name="crans-dom0-squeeze"/>
<Group name="firmware-bnx2"/>
<Group name="adm-only"/>
</Group>
<Group name="fy"
profile="true">
<Group name="crans-dom0-squeeze"/>
<Group name="firmware-bnx2"/>
<Group name="adm-only"/>
</Group>
<Group name="fz"
profile="true">
<Group name="crans-dom0-squeeze"/>
<Group name="firmware-bnx2"/>
<Group name="adm-only"/>
</Group>
<Group name="thot"
profile="true">
<Group name="crans-wheezy"/>
<Group name="rsyslog-server"/>
<Group name="pgsql-server"/>
<Group name="sqlgrey-localdb"/>
</Group>
<Group name="titanic"
profile="true">
<Group name="crans-squeeze"/>
<Group name="mail-mx-secondary"/>
<Group name="dns-secondary-no-forward"/>
<Group name="connection-rescue"/>
<Group name="failover-proxy-server"/>
<Group name="vlan-ens"/>
<Group name="domu"/>
</Group>
<Group name="mdr"
profile="true">
<Group name="crans-squeeze"/>
<Group name="dns-tv"/>
<Group name="multimedia"/>
</Group>
<Group name="irc"
profile="true">
<Group name="crans-squeeze"/>
<Group name="domu"/>
</Group>
<Group name="xmpp"
profile="true">
<Group name="crans-squeeze"/>
<Group name="ejabberd-services"/>
<Group name="domu"/>
</Group>
<Group name="niomniom"
profile="true">
<Group name="crans-squeeze"/>
<Group name="http-server"/>
<Group name="domu"/>
<Group name="webmasters"/>
<!-- Nécessaire pour un plugin du wiki -->
<Group name="home-permanent"/>
</Group>
<Group name="owl"
profile="true">
<Group name="crans-squeeze"/>
<Group name="domu"/>
<Group name="http-server"/>
<Group name="home-permanent"/>
</Group>
<Group name="asterisk"
profile="true">
<Group name="crans-squeeze"/>
<Group name="domu"/>
</Group>
<Group name="canard"
profile="true">
<Group name="mumudvb"/>
<Group name="crans-squeeze"/>
</Group>
<Group name="oie"
profile="true">
<Group name="mumudvb"/>
<Group name="crans-squeeze"/>
</Group>
<Group name="lapin"
profile="true">
<Group name="mumudvb"/>
<Group name="crans-squeeze"/>
</Group>
<Group name="dindon"
profile="true">
<Group name="mumudvb"/>
<Group name="crans-squeeze"/>
</Group>
<Group name="jouvence"
profile="true">
<Group name="mumudvb"/>
<Group name="crans-squeeze"/>
<Group name="imprimeurs"/>
<Group name="bureau"/>
</Group>
<Group name="news"
profile="true">
<Group name="crans-squeeze"/>
<Group name="news-server"/>
<Group name="http-server"/>
<Group name="news-search"/>
<Group name="domu"/>
</Group>
<Group name="o2"
profile="true">
<Group name="crans-squeeze"/>
<Group name="domu"/>
</Group>
<Group name="munin"
profile="true">
<Group name="crans-squeeze"/>
<Group name="domu"/>
<Group name="munin-server"/>
</Group>
<Group name="install-party"
profile="true">
<Group name="crans-squeeze"/>
<Group name="domu"/>
</Group>
<Group name="radius"
profile="true">
<Group name="crans-squeeze"/>
<Group name="domu"/>
<Group name="radius-server"/>
<Group name="adm-only"/>
<Group name="db-replicat"/>
</Group>
<Group name="tracker"
profile="true">
<Group name="crans-squeeze"/>
<Group name="domu"/>
<!-- <Group name="http-server"/> -->
</Group>
<Group name="newldap"
profile="true">
<Group name="crans-lenny"/>
<Group name="domu"/>
<Group name="db-replicat"/>
<Group name="adm-only"/>
</Group>
<Group name="pgsql"
profile="true">
<Group name="crans-squeeze"/>
<Group name="domu"/>
<Group name="adm-only"/>
<Group name="pgsql-server"/>
<Group name="sqlgrey-localdb"/>
</Group>
<Group name="redisdead"
profile="true">
<Group name="crans-squeeze"/>
<Group name="domu"/>
<Group name="mail-mx-main"/>
<Group name="mailing-list-manager"/>
</Group>
<Group name="cerbere"
profile="true">
<Group name="crans-squeeze"/>
<Group name="domu"/>
</Group>
<Group name="whatsupdoc"
profile="true">
<Group name="crans-squeeze"/>
<Group name="domu"/>
<Group name="bug-tracker"/>
</Group>
<Group name="kenobi"
profile="true">
<Group name="crans-squeeze"/>
<Group name="domu"/>
</Group>
<Group name="sogo"
profile="true">
<Group name="crans-squeeze"/>
<Group name="domu"/>
</Group>
<Group name="dhcp"
profile="true">
<Group name="crans-squeeze"/>
<Group name="domu"/>
<Group name="vlan-radin"/>
<Group name="vlan-accueil" />
<Group name="vlan-isolement"/>
<Group name="vlan-ens"/>
<Group name="vlan-wifi"/>
</Group>
<Group name="routeur"
profile="true">
<Group name="crans-squeeze"/>
<Group name="domu"/>
<Group name="vlan-radin"/>
<Group name="vlan-accueil" />
<Group name="vlan-isolement"/>
<Group name="vlan-ens"/>
<Group name="dns-secondary"/>
<Group name="dnssec-validation"/>
</Group>
<Group name="puppet"
profile="true">
<Group name="adm-only" />
<Group name="crans-squeeze"/>
<Group name="domu"/>
</Group>
<!-- profile de test -->
<Group name="bcfg2tmp0" profile="true">
<Group name="crans-lenny"/>
<Group name="test"/>
<Group name="domu"/>
</Group>
<Group name="bcfg2tmp1" profile="true">
<Group name="crans-lenny"/>
<Group name="bcfg2-server"/>
<Group name="test"/>
<Group name="domu"/>
</Group>
<!-- +===================+ -->
<!-- | Version de Debian | -->
<!-- +===================+ -->
<Group name="debian" category="linux-distribution"/>
<Group name="lenny" category="debian-version"/>
<Group name="sid" category="debian-version"/>
<Group name="etch" category="debian-version"/>
<Group name="squeeze" category="debian-version"/>
<Group name="wheezy" category="debian-version"/>
<Group name="non-free" />
<!-- +=================+ -->
<!-- | Le groupe crans | -->
<!-- +=================+ -->
<!-- Le groupe crans-common est le groupe dans lequel tous les
serveurs doivent se trouver. Il contient tout ce qui est vital
a un serveur du Cr@ns. -->
<Group name="crans-common"
comment="groupe minimal pour un serveur du Crans">
<Group name="crans"/>
<!-- TODO: passer les serveurs en utf-8 sans tout casser...
<Group name="locale"/>
-->
<Group name="ssh"/>
<Group name="sudo"/>
<Group name="home"/>
<Group name="mail"/>
<Group name="apt"/>
<Group name="cron"/>
<Group name="secrets"/>
<Group name="bcfg2-client"/>
<Group name="backup-client"/>
<Group name="munin-node"/>
<Group name="rsyslog-client"/>
<Bundle name="apt"/>
<Bundle name="apt-keys"/>
<Bundle name="firewall6"/>
<Bundle name="logcheck"/>
<Bundle name="nslcd"/>
<Bundle name="monit"/>
<Bundle name="scripts"/>
<Bundle name="molly-guard"/>
<Bundle name="vlock"/>
<Bundle name="nagios"/>
</Group>
<Group name="crans-etch" profile="true" public="true"
comment="profile minimal pour etch">
<Group name="crans-common"/>
<Group name="etch"/>
<Group name="openntpd"/>
</Group>
<Group name="crans-lenny" profile="true" public="true"
comment="profile minimal pour lenny">
<Group name="crans-common"/>
<Group name="lenny"/>
<Group name="nss-ldapd"/>
<Group name="openntpd"/>
</Group>
<Group name="crans-squeeze" profile="true" public="true"
comment="profile minimal pour squeeze">
<Group name="crans-common"/>
<Group name="squeeze"/>
<Group name="nss-ldapd"/>
<Group name="ntp"/>
</Group>
<Group name="crans-wheezy" profile="true" public="true"
comment="profile minimal pour wheezy">
<Group name="crans-common"/>
<Group name="wheezy"/>
<Group name="ntp"/>
</Group>
<Group name="crans-dom0-squeeze" public="true"
comment="groupe crans pour un dom0 sous squeeze">
<Group name="crans"/>
<Group name="dom0" />
<Group name="iscsi"/>
<Group name="rsyslog-client"/>
<Group name="squeeze"/>
<Group name="ntp"/>
<Group name="mail"/>
<Group name="apt"/>
<Group name="secrets"/>
<Group name="bcfg2-client"/>
<Group name="backup-client"/>
<Group name="xen"/>
<Bundle name="apt"/>
<Bundle name="apt-keys"/>
<Bundle name="ntp"/>
<Bundle name="nagios"/>
</Group>
<Group name="crans-nfs-squeeze">
<Group name="crans"/>
<Group name="ssh"/>
<Group name="sudo"/>
<Group name="squeeze"/>
<Group name="mail"/>
<Group name="apt"/>
<Group name="secrets"/>
<Group name="bcfg2-client"/>
<Group name="backup-client"/>
<Group name="rsyslog-client"/>
<Group name="iscsi"/>
<Bundle name="apt"/>
<Bundle name="apt-keys"/>
<Bundle name="ntp"/>
<Bundle name="nagios"/>
<Bundle name="molly-guard"/>
<Bundle name="nfs-server"/>
<Bundle name="quota"/>
</Group>
<!-- +=============================+ -->
<!-- | Composantes du groupe crans | -->
<!-- +=============================+ -->
<Group name="locale"
comment="gestion des locales">
<Bundle name="locale"/>
<Bundle name="locale-generation"/>
</Group>
<Group name="ssh"
comment="client et serveur ssh">
<Group name="auth"/>
<Bundle name="ssh"/>
</Group>
<Group name="sudo">
<Group name="auth"/>
<Bundle name="sudo"/>
</Group>
<Group name="home"
comment="montage automatique des homes">
<Bundle name="home"/>
<Group name="nfs"/>
</Group>
<Group name="mail"
comment="envoi de mail">
<Group name="mail-backend"/>
</Group>
<!-- +==========+ -->
<!-- | Services | -->
<!-- +==========+ -->
<!-- Les groupes suivants sont les seuls qui doivent eventuellement
etres ajoutes a la definition des serveurs. -->
<!-- Ils definissent les services que l'on peut vouloir ajouter a un
serveur, sans se soucier des programmes reellement utilises
pour accomplir leur role. -->
<Group name="firmware-bnx2" comment="firmware pour interface réseau hp">
<Group name="non-free" />
</Group>
<!-- *** Mail *** -->
<Group name="mail-mx-main"
comment="mx principal de l'association"
category="mail-mx">
<Group name="mail-mx"/>
<!-- Ca c'est pour distinguer les smtp qui ne sont utilise que en
interne comme le serveur des adherents par exemple -->
<Group name="mail-mx-public"/>
</Group>
<Group name="mail-mx-secondary"
comment="un mx secondaire"
category="mail-mx">
<Group name="mail-mx"/>
<Group name="mail-mx-public"/>
</Group>
<Group name="mailing-list-manager"
comment="gestion des listes de diffusion">
<Group name="mailing-list-manager-backend"/>
<!-- Mailman a besoin d'un smtp -->
<Group name="mail-mx"/>
</Group>
<Group name="adh-antispam-filter"
comment="filtre antispam pour les adhérents">
<Group name="antispam-backend"/>
</Group>
<Group name="ups-monitor"
comment="client ups pour extinction du serveur">
<Group name="ups-monitor-backend"/>
</Group>
<Group name="ups-server"
comment="serveur ups pour commander les extinctions">
<Group name="ups-monitor"/>
</Group>
<!-- *** Base de donnee *** -->
<Group name="db-main"
comment="le serveur qui contient la base du crans"
category="db">
<Group name="db-server"/>
</Group>
<Group name="db-replicat"
comment="serveur qui contient un replicat de la base principale"
category="db">
<Group name="db-server"/>
</Group>
<Group name="db-replicat-test"
comment="serveur qui contient un replicat de la base principale"
category="db">
<Group name="db-server"/>
</Group>
<Group name="adh-sql-server"
comment="Serveur SQL des adhérents">
<Group name="sql-server"/>
</Group>
<!-- *** Résolution de noms *** -->
<Group name="dns-primary"
comment="le serveur DNS primaire de l'association"
category="dns">
<Group name="dns-server"/>
</Group>
<Group name="dns-secondary"
comment="un serveur DNS secondaire de l'association"
category="dns">
<Group name="dns-server"/>
</Group>
<Group name="dns-secondary-no-forward"
comment="un serveur DNS secondaire sans forward de l'association"
category="dns">
<Group name="dns-server"/>
</Group>
<Group name="dns-tv"
comment="le serveur DNS de la ferme"
category="dns">
<Group name="dns-server"/>
</Group>
<!-- *** HTTP *** -->
<Group name="http-server"
comment="un serveur HTTP (port 80) de l'association">
<Group name="http-server-backend"/>
</Group>
<Group name="https-server"
comment="un serveur HTTPS (port 443) de l'association">
<Group name="https-server-backend"/>
</Group>
<Group name="intranet-server"
comment="le serveur HTTPS (port 443) gérant intranet.crans.org">
<Group name="intranet-server-backend"/>
</Group>
<!-- *** FTP *** -->
<Group name="main-ftp-server"
comment="le serveur ftp principal de l'association">
<Group name="crans-ftp-server"/>
<Group name="federez-ftp-server"/>
</Group>
<!-- *** Proxy *** -->
<Group name="main-proxy-server"
comment="Le serveur proxy principal de l'association">
<Group name="proxy-server"/>
<Group name="adblock-server"/>
</Group>
<Group name="failover-proxy-server"
comment="Le serveur proxy de secours de l'association">
<Group name="proxy-server"/>
</Group>
<!-- *** Connexion *** -->
<Group name="external"
comment="Un serveur à l'éxtérieur du campus">
<Group name="vpn"/>
</Group>
<Group name="connection-main"
comment="Le serveur qui est connecté à la la
connection principale du crans (RENATER)">
<Group name="vpn"/>
</Group>
<Group name="connection-rescue"
comment="Le serveur qui à la connexion de secours (par la freebox)">
<Group name="vpn"/>
</Group>
<!-- *** Divers *** -->
<Group name="users"
comment="le serveur sur lequel les adherent peuvent se logger">
<!-- C'est aussi le serveur qui fait la delivrance local des mails -->
<Group name="mail-mx"/>
<Group name="home-permanent"/>
</Group>
<Group name="news-server"
comment="serveur de news">
<Group name="news-server-backend"/>
<Group name="corbeau"/>
<Group name="mail-backend"/>
</Group>
<Group name="corbeau">
<Bundle name="corbeau"/> <!-- Bundle de dépendances -->
<Group name="postfix.transport"/>
</Group>
<Group name="news-search"
comment="moteur de recherche des news">
<Group name="news-search-backend"/>
</Group>
<Group name="debian-mirror"
comment="mirroir de l'archive debian">
</Group>
<Group name="backup-server"
comment="Serveur de sauvegarde">
<Group name="backup-server-backend"/>
</Group>
<Group name="backup-client"
comment="Un serveur de l'association dont les données sont sauvegardées">
<Group name="backup-client-backend"/>
</Group>
<Group name="print-server"
comment="Serveur d'impression de l'association">
<Group name="print-server-backend"/>
</Group>
<Group name="firewall"
comment="Le firewall de l'association">
<!-- TODO: A implémenter -->
</Group>
<Group name="radius-server"
comment="Un serveur radius">
<Group name="radius-server-backend"/>
</Group>
<Group name="name-service-cache"
comment="Un service de cache pour nss">
<Group name="nscd"/>
</Group>
<Group name="jabber-server"
comment="Un serveur Jabber">
<Bundle name="jabberd"/>
</Group>
<Group name="ejabberd-services"
comment="Un autre serveur Jabber :)">
<Bundle name="ejabberd-services"/>
</Group>
<Group name="ejabberd-extra"
comment="Services supplémentaires pour xmpp
(passerelle msn, ...)">
<Bundle name="ejabberd-extra"/>
</Group>
<Group name="multimedia"
comment="machines necessitant le miroir multimedia" />
<Group name="bug-tracker"
comment="Bug tracker utilisant debbugs">
<Group name="postfix.transport"/>
<!-- TODO: A implémenter -->
</Group>
<Group name="rsyslog-server"
comment="Serveur de centralisation des logs">
<Bundle name="rsyslog"/>
</Group>
<Group name="rsyslog-client"
comment="Serveurs qui ne centralisent pas les logs (cpt Obvious inside)">
<Bundle name="rsyslog"/>
</Group>
<Group name="autostatus"
comment="Serveurs qui gènèrent la page d'autostatus">
<Bundle name="autostatus"/>
</Group>
<!-- +=================================+ -->
<!-- | Tous les groupes intermediaires | -->
<!-- +=================================+ -->
<!-- Les groupes suivant sont tous ceux qui se trouve entre la
definition abstraite des services et les backends reellement
utilises. -->
<!-- *** Mail *** -->
<Group name="mail-mx"
comment="serveur qui fait MX (principal, secondaire on interne)">
<Group name="mail-backend"/>
<Group name="db"/>
<Group name="postfix.transport"/>
</Group>
<Group name="greylisting"
comment="un serveur de greylisting">
<Group name="greylisting-backend"/>
</Group>
<Group name="mail-mx-public"
comment="serveur MX publique (principal ou secondaire mais pas interne)">
<Group name="greylisting"/>
</Group>
<!-- *** Base de donnee *** -->
<Group name="db"
comment="acces a la base de donnee du crans">
<Group name="db-backend"/>
<!-- Si le serveur à accès à la base, celle-ci est utilisée pour
les comptes unix. On a donc besoin de nscd pour que les
utilisateur accèdent aux informations sur les comptes -->
<Group name="name-service-cache"/>
</Group>
<Group name="db-server"
comment="un server qui possede la base en local">
<Group name="db-backend"/>
<Group name="db-server-backend"/>
</Group>
<Group name="sql-server"
comment="un serveur SQL">
<Group name="sql-backend"/>
</Group>
<!-- *** Résolution de noms *** -->
<Group name="dns-server"
comment="un serveur de résolution de noms">
<Group name="dns-backend"/>
</Group>
<!-- *** Connexion sécurisée *** -->
<Group name="vpn"
comment="Un des deux points d'un tunnel sécurisée">
<Group name="vpn-backend"/>
</Group>
<!-- *** Mumudvb *** -->
<Group name="mumudvb"
comment="Un serveur qui diffuse la television">
<Bundle name="mumudvb"/>
</Group>
<!-- *** Divers *** -->
<Group name="auth"
comment="gestion de l'authentification">
<Group name="auth-backend"/>
<Group name="db"/>
</Group>
<Group name="imap-server">
<Group name="imap-backed"/>
<Group name="home-permanent"/>
</Group>
<Group name="pop-server">
<Group name="pop-backed"/>
<Group name="home-permanent"/>
</Group>
<Group name="crans-ftp-server"
comment="le serveur ftp servant le crans (miroirs)">
<Group name="ftp-backend"/>
</Group>
<Group name="federez-ftp-server"
comment="le serveur ftp servant ftp.federez.net">
<Group name="ftp-federez-backend"/>
</Group>
<Group name="backup-ftp-server"
comment="le serveur ftp servant les sauvegardes">
<Group name="backup-ftp-backend"/>
</Group>
<Group name="proxy-server"
comment="un serveur proxy de l'association">
<Group name="proxy-server-backend"/>
</Group>
<Group name="adblock-server"
comment="Un serveur permettant de bloquer les pubs sur le proxy">
<Group name="adblock-server-backend"/>
</Group>
<Group name="file-server"
comment="Serveur de fichiers">
<Group name="home-permanent"/>
</Group>
<Group name="ntp"
comment="Client NTP">
<Bundle name="ntp"/>
</Group>
<Group name="openntpd"
comment="Client OpenNTPd">
<Bundle name="openntpd"/>
</Group>
<!-- +===================================================+ -->
<!-- | Configuration des backends utilises en production | -->
<!-- +===================================================+ -->
<Group name="mail-backend">
<Group name="postfix"/>
</Group>
<Group name="mailing-list-manager-backend">
<Group name="mailman"/>
</Group>
<Group name="antispam-backend">
<Group name="spamassassin"/>
</Group>
<Group name="auth-backend">
<Group name="pam"/>
</Group>
<Group name="db-backend">
<Group name="ldap"/>
</Group>
<Group name="db-server-backend">
<Group name="slapd"/>
</Group>
<Group name="news-server-backend">
<Group name="inn"/>
</Group>
<Group name="news-search-backend">
<Bundle name="news-search-php5"/>
</Group>
<Group name="dns-backend">
<Group name="bind"/>
</Group>
<Group name="http-server-backend">
<Group name="apache"/>
</Group>
<Group name="https-server-backend">
<Group name="apache"/>
</Group>
<Group name="intranet-server-backend">
<Group name="cherrypy"/>
</Group>
<Group name="backup-server-backend">
<Group name="backuppc-server"/>
</Group>
<Group name="backup-client-backend">
<Group name="rsync"/>
</Group>
<Group name="print-server-backend">
<Group name="cups"/>
<Group name="non-free"/>
</Group>
<Group name="radius-server-backend">
<Group name="freeradius"/>
</Group>
<Group name="ftp-backend">
<Group name="vsftpd"/>
</Group>
<Group name="backup-ftp-backend">
<Group name="proftpd"/>
</Group>
<Group name="federez-ftp-backend">
<Group name="vsftpd-federez"/>
</Group>
<Group name="sql-backend">
<Group name="mysql"/>
</Group>
<Group name="proxy-server-backend">
<Group name="squid"/>
</Group>
<Group name="adblock-server-backend">
<Group name="privoxy"/>
</Group>
<Group name="greylisting-backend">
<Group name="sqlgrey"/>
</Group>
<Group name="vpn-backend">
<Group name="openvpn"/>
</Group>
<Group name="ups-monitor-backend">
<Group name="nut"/>
</Group>
<!-- +==============+ -->
<!-- | Les backends | -->
<!-- +==============+ -->
<Group name="pam"
comment="authentification par pam"
category="auth-backend">
<Bundle name="pam"/>
</Group>
<Group name="ldap"
comment="base de donnee ldap">
<Bundle name="ldap"/>
</Group>
<Group name="slapd"
comment="serveur de base de données ldap">
<Bundle name="slapd"/>
</Group>
<Group name="pgsql-server"
comment="base de donnee postgresql">
<!-- TODO :: a implementer -->
</Group>
<Group name="postfix"
category="mail-backend">
<Bundle name="postfix"/>
<Bundle name="postfix_aliases"/>
<Bundle name="postfix_transport"/>
<Bundle name="postfix_virtual"/>
<Bundle name="postfix_canonical"/>
<Bundle name="postfix_mime_header_checks"/>
</Group>
<Group name="mailman"
category="mailing-list-manager-backend">
<!-- TODO: a implementer/completer/tester
<Bundle name="mailman"/>
-->
</Group>
<Group name="bcfg2-client">
<Bundle name="bcfg2"/>
</Group>
<Group name="bcfg2-server">
<Bundle name="bcfg2"/>
</Group>
<Group name="apt-mirror"
category="debian-mirror-backend">
<Bundle name="apt-mirror"/>
</Group>
<Group name="bind"
category="dns-backend">
<Bundle name="bind"/>
</Group>
<Group name="nfs">
<Bundle name="rpc"/>
</Group>
<Group name="apache"
category="http-server-backend">
<!-- TODO: a implémenter -->
</Group>
<Group name="cherrypy"
category="intranet-server-backend">
<!-- TODO: a implémenter -->
</Group>
<Group name="backuppc-server"
category="backup-server-backend">
<Bundle name="backuppc"/>
</Group>
<Group name="rsync"
category="backup-client-backend">
<Bundle name="rsync-client"/>
</Group>
<Group name="cups"
category="print-server-backend">
<!-- TODO: a implementer -->
</Group>
<Group name="freeradius"
category="radius-server-backend">
<Bundle name="freeradius"/>
</Group>
<Group name="inn"
category="news-server-backend">
<!-- La conf est sur le server de news -->
</Group>
<Group name="vsftpd"
category="ftp-server-backend">
<!-- TODO: a implementer -->
</Group>
<Group name="proftpd"
category="ftp-server-backend">
<Bundle name="proftpd"/>
</Group>
<Group name="vsftpd-federez"
category="federez-ftp-backend">
<!-- TODO: a implementer -->
</Group>
<Group name="mysql"
category="sql-backend">
<!-- TODO: a implementer -->
</Group>
<Group name="squid"
category="proxy-server-backend">
<!-- Non implémenté -->
</Group>
<Group name="privoxy"
category="adblock-server-backend">
<!-- Non implémenté -->
</Group>
<Group name="pgsql-sqlgrey">
<Group name="pgsql-server"/>
</Group>
<Group name="sqlgrey">
<Bundle name="sqlgrey"/>
</Group>
<Group name="spamassassin">
<!-- TODO: a implementer -->
</Group>
<Group name="nscd"
category="name-service-cache-backend">
<Bundle name="nscd"/>
</Group>
<Group name="openvpn"
category="vpn-backend">
<Bundle name="openvpn"/>
</Group>
<Group name="nut"
category="ups-monitor-backend">
<Bundle name="nut"/>
</Group>
<Group name="xen"
category="hypervisor">
<Bundle name="xen-utils"/>
</Group>
<Group name="munin-node"
category="supervisor-node">
<Bundle name="munin-node"/>
</Group>
<Group name="munin-server"
category="supervisor-server">
<!-- <Bundle name="munin"/> -->
</Group>
<Group name="router-wifi"
comment="Le firewall de l'association">
<Group name="vlan-wifi"/>
<!-- rien à implémenter pour le moment -->
</Group>
<Group name="sniffer"
comment="Le serveur qui surveille le réseau">
<Group name="arpwatch" />
</Group>
<Group name="arpwatch" comment="arpwatch special crans avec traçage des macs">
<Group name="non-free" /><!-- Pour snmp-mibs-downloader, pour interrogation switch -->
<Bundle name="arpwatch" />
</Group>
<!-- +====================+ -->
<!-- | Groupes dynamiques | -->
<!-- +====================+ -->
<Group name="rescue-mode"
comment="groupe inclu lorsque l'on est en connexion de secours"/>
<Group name="fstab.local"
comment="indique l'exsitence de /etc/fstab.local"/>
<Group name="interfaces.local"
comment="indique l'exsitence de /etc/network/interfaces.local"/>
<Group name="sysctl.local"
comment="indique l'exsitence de /etc/sysctl.local"/>
<Group name="adm-only"
comment="pour les serveurs qui sont seulement sur le vlan adm"/>
<Group name="imprimeurs"
comment="pour les serveurs avec un acces pour les imprimeurs" />
<Group name="bureau"
comment="pour les serveurs avec un acces pour les gens du bureau" />
</Groups>
Reference in a new issue View git blame Copy permalink