ExternalMirrors
/
linux-formula
spogulis no https://github.com/salt-formulas/salt-formula-linux
Vērot 1
Pievienot zvaigznīti 0
Atdalīts 1
Kods Problēmas 0 Laidieni 8 Vikivietne Aktivitāte
Saltstack Official Linux Formula
Nevar pievienot vairāk kā 25 tēmas Tēmai ir jāsākas ar burtu vai ciparu, tā var saturēt domu zīmes ('-') un var būt līdz 35 simboliem gara.
210 Revīzijas
26 Atzari
Koks: 5398d873d5
Atzari Tagi
${ item.name }
Izveidot atzaru ${ searchTerm }
no '5398d873d5'
${ noResults }
linux-formula/README.rst

README.rst 18KB
Neapstrādāts Parastais skats Vēsture

Initial commit
pirms 9 gadiem
Support for setting security limits
pirms 9 gadiem
Enable/disable console autologin
pirms 9 gadiem
More options for consoles
pirms 9 gadiem
Enable/disable console autologin
pirms 9 gadiem
Allow setting policy-rc.d
pirms 9 gadiem
Allow setting system locales
pirms 8 gadiem
Fix readme of cs_CZ locales
pirms 8 gadiem
Allow setting system locales
pirms 8 gadiem
Make linux.system.kernel functional
pirms 9 gadiem
Linux sysctl kernel parameters
pirms 9 gadiem
cpu governor
pirms 8 gadiem
Hugepages support Grub hugepages configuration and mount point action. Change-Id: I49b26871c325b95a7d3f264892a9e997b58765bc Epic: PROD-8959
pirms 8 gadiem
cpu governor
pirms 8 gadiem
SRIOV support Enable SR-IOV support on server. Change-Id: I7dabe340abd398cc0422698112cbdd81804446b7 Epic: PROD-8956
pirms 8 gadiem
cpu governor
pirms 8 gadiem
Initial commit
pirms 9 gadiem
rc.local added to linux formula
pirms 9 gadiem
Allow setting system-wide prompt
pirms 9 gadiem
Ensure PS1 is enforced for root
pirms 9 gadiem
rc.local added to linux formula
pirms 9 gadiem
Option to preserve bash history
pirms 8 gadiem
Set message of the day
pirms 9 gadiem
RHEL compatibility of motd and prompt
pirms 9 gadiem
Support for haveged
pirms 9 gadiem
RHEL compatibility of motd and prompt
pirms 9 gadiem
Support for haveged
pirms 9 gadiem
Initial commit
pirms 9 gadiem
example usage to disable NM
pirms 9 gadiem
Initial commit
pirms 9 gadiem
example usage to disable NM
pirms 9 gadiem
Initial commit
pirms 9 gadiem
vlan networking support
pirms 9 gadiem
fix fillar syntax
pirms 9 gadiem
vlan networking support
pirms 9 gadiem
Initial commit
pirms 9 gadiem
vlan networking support
pirms 9 gadiem
Initial commit
pirms 9 gadiem
vlan networking support
pirms 9 gadiem
Initial commit
pirms 9 gadiem
Allow enforcing of whole /etc/hosts Parameter purge_hosts will enforce whole /etc/hosts file, removing entries that are not defined in model except defaults for both IPv4 and IPv6 localhost and hostname + fqdn. It's good to use this option if you want to ensure /etc/hosts is always in a clean state however it's not enabled by default for safety. Change-Id: Ieb219b2dd494d5a66ecc52a2ec00dd5157ee2b7a
pirms 8 gadiem
Initial commit
pirms 9 gadiem
Allow enforcing of whole /etc/hosts Parameter purge_hosts will enforce whole /etc/hosts file, removing entries that are not defined in model except defaults for both IPv4 and IPv6 localhost and hostname + fqdn. It's good to use this option if you want to ensure /etc/hosts is always in a clean state however it's not enabled by default for safety. Change-Id: Ieb219b2dd494d5a66ecc52a2ec00dd5157ee2b7a
pirms 8 gadiem
Initial commit
pirms 9 gadiem
Allow enforcing of whole /etc/hosts Parameter purge_hosts will enforce whole /etc/hosts file, removing entries that are not defined in model except defaults for both IPv4 and IPv6 localhost and hostname + fqdn. It's good to use this option if you want to ensure /etc/hosts is always in a clean state however it's not enabled by default for safety. Change-Id: Ieb219b2dd494d5a66ecc52a2ec00dd5157ee2b7a
pirms 8 gadiem
Initial commit
pirms 9 gadiem
Allow enforcing of whole /etc/hosts Parameter purge_hosts will enforce whole /etc/hosts file, removing entries that are not defined in model except defaults for both IPv4 and IPv6 localhost and hostname + fqdn. It's good to use this option if you want to ensure /etc/hosts is always in a clean state however it's not enabled by default for safety. Change-Id: Ieb219b2dd494d5a66ecc52a2ec00dd5157ee2b7a
pirms 8 gadiem
Allow setting resolv.conf
pirms 9 gadiem
fix options setting in resolv
pirms 8 gadiem
Allow setting resolv.conf
pirms 9 gadiem
Initial commit
pirms 9 gadiem
Fix mount examples in the README The enabled flag is mandatory.
pirms 8 gadiem
Initial commit
pirms 9 gadiem
add swap partition support
pirms 9 gadiem
Support for LVM
pirms 9 gadiem
Fix mount examples in the README The enabled flag is mandatory.
pirms 8 gadiem
Support for LVM
pirms 9 gadiem
Refactored multipath support
pirms 8 gadiem
Add linux.storage.loopback state This state allows to configure loopback device(s). This isn't meant to be used in production but offers a cheap way to test Cinder with LVM volumes.
pirms 8 gadiem
Add support for external config generation
pirms 8 gadiem
Refactored multipath support
pirms 8 gadiem
Initial commit
pirms 9 gadiem
Unify Makefile, .gitignore and update readme
pirms 8 gadiem
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852 
  1. 

  2. =====

  3. Linux

  4. =====

  5. 

  6. Linux Operating Systems.

  7. 

  8. * Ubuntu

  9. * CentOS

  10. * RedHat

  11. * Fedora

  12. * Arch

  13. 

  14. Sample pillars

  15. ==============

  16. 

  17. Linux system

  18. ------------

  19. 

  20. Basic Linux box

  21. 

  22. .. code-block:: yaml

  23. 

  24.     linux:

  25.       system:

  26.         enabled: true

  27.         name: 'node1'

  28.         domain: 'domain.com'

  29.         cluster: 'system'

  30.         environment: prod

  31.         timezone: 'Europe/Prague'

  32.         utc: true

  33. 

  34. Linux with system users, sowe with password set

  35. 

  36. .. code-block:: yaml

  37. 

  38.     linux:

  39.       system:

  40.         ...

  41.         user:

  42.           jdoe:

  43.             name: 'jdoe'

  44.             enabled: true

  45.             sudo: true

  46.             shell: /bin/bash

  47.             full_name: 'Jonh Doe'

  48.             home: '/home/jdoe'

  49.             email: 'jonh@doe.com'

  50.           jsmith:

  51.             name: 'jsmith'

  52.             enabled: true

  53.             full_name: 'Password'

  54.             home: '/home/jsmith'

  55.             password: userpassword

  56. 

  57. Linux with package, latest version

  58. 

  59. .. code-block:: yaml

  60. 

  61.     linux:

  62.       system:

  63.         ...

  64.         package:

  65.           package-name:

  66.             version: latest

  67. 

  68. Linux with package from certail repo, version with no upgrades

  69. 

  70. .. code-block:: yaml

  71. 

  72.     linux:

  73.       system:

  74.         ...

  75.         package:

  76.           package-name:

  77.             version: 2132.323

  78.             repo: 'custom-repo'

  79.             hold: true

  80. 

  81. Linux with package from certail repo, version with no GPG verification

  82. 

  83. .. code-block:: yaml

  84. 

  85.     linux:

  86.       system:

  87.         ...

  88.         package:

  89.           package-name:

  90.             version: 2132.323

  91.             repo: 'custom-repo'

  92.             verify: false

  93. 

  94. Linux with cron jobs

  95. 

  96. .. code-block:: yaml

  97. 

  98.     linux:

  99.       system:

  100.         ...

  101.         job:

  102.           cmd1:

  103.             command: '/cmd/to/run'

  104.             enabled: true

  105.             user: 'root'

  106.             hour: 2

  107.             minute: 0

  108. 

  109. Linux security limits (limit sensu user memory usage to max 1GB):

  110. 

  111. .. code-block:: yaml

  112. 

  113.     linux:

  114.       system:

  115.         ...

  116.         limit:

  117.           sensu:

  118.             enabled: true

  119.             domain: sensu

  120.             limits:

  121.               - type: hard

  122.                 item: as

  123.                 value: 1000000

  124. 

  125. Enable autologin on tty1 (may work only for Ubuntu 14.04):

  126. 

  127. .. code-block:: yaml

  128. 

  129.     linux:

  130.       system:

  131.         console:

  132.           tty1:

  133.             autologin: root

  134.           # Enable serial console

  135.           ttyS0:

  136.             autologin: root

  137.             rate: 115200

  138.             term: xterm

  139. 

  140. To disable set autologin to `false`.

  141. 

  142. Set ``policy-rc.d`` on Debian-based systems. Action can be any available

  143. command in ``while true`` loop and ``case`` context.

  144. Following will disallow dpkg to stop/start services for cassandra package automatically:

  145. 

  146. .. code-block:: yaml

  147. 

  148.     linux:

  149.       system:

  150.         policyrcd:

  151.           - package: cassandra

  152.             action: exit 101

  153.           - package: '*'

  154.             action: switch

  155. 

  156. Set system locales:

  157. 

  158. .. code-block:: yaml

  159. 

  160.     linux:

  161.       system:

  162.         locale:

  163.           en_US.UTF-8:

  164.             default: true

  165.           "cs_CZ.UTF-8 UTF-8":

  166.             enabled: true

  167. 

  168. Kernel

  169. ~~~~~~

  170. 

  171. Install always up to date LTS kernel and headers from Ubuntu trusty:

  172. 

  173. .. code-block:: yaml

  174. 

  175.     linux:

  176.       system:

  177.         kernel:

  178.           type: generic

  179.           lts: trusty

  180.           headers: true

  181. 

  182. Install specific kernel version and ensure all other kernel packages are

  183. not present. Also install extra modules and headers for this kernel:

  184. 

  185. .. code-block:: yaml

  186. 

  187.     linux:

  188.       system:

  189.         kernel:

  190.           type: generic

  191.           extra: true

  192.           headers: true

  193.           version: 4.2.0-22

  194. 

  195. Systcl kernel parameters

  196. 

  197. .. code-block:: yaml

  198. 

  199.     linux:

  200.       system:

  201.         kernel:

  202.           sysctl:

  203.             net.ipv4.tcp_keepalive_intvl: 3

  204.             net.ipv4.tcp_keepalive_time: 30

  205.             net.ipv4.tcp_keepalive_probes: 8

  206. 

  207. 

  208. CPU

  209. ~~~

  210. 

  211. Disable ondemand cpu mode service:

  212. 

  213. .. code-block:: yaml

  214. 

  215.     linux:

  216.       system:

  217.         cpu:

  218.           governor: performance

  219. 

  220. Huge Pages

  221. ~~~~~~~~~~~~

  222. 

  223. Huge Pages give a performance boost to applications that intensively deal

  224. with memory allocation/deallocation by decreasing memory fragmentation.

  225. 

  226. .. code-block:: yaml

  227. 

  228.     linux:

  229.       system:

  230.         kernel:

  231.           hugepages:

  232.             small:

  233.               size: 2M

  234.               count: 107520

  235.               mount_point: /mnt/hugepages_2MB

  236.               mount: false/true # default false

  237.             large:

  238.               default: true # default automatically mounted

  239.               size: 1G

  240.               count: 210

  241.               mount_point: /mnt/hugepages_1GB

  242. 

  243. Note: not recommended to use both pagesizes in concurrently.

  244. 

  245. Intel SR-IOV

  246. ~~~~~~~~~~~~

  247. 

  248. PCI-SIG Single Root I/O Virtualization and Sharing (SR-IOV) specification defines a standardized mechanism to virtualize PCIe devices. The mechanism can virtualize a single PCIe Ethernet controller to appear as multiple PCIe devices.

  249. 

  250. .. code-block:: yaml

  251. 

  252.     linux:

  253.       system:

  254.         kernel:

  255.           sriov: True

  256.           unsafe_interrupts: False # Default is false. for older platforms and AMD we need to add interrupt remapping workaround

  257.         rc:

  258.           local: |

  259.             #!/bin/sh -e

  260.             # Enable 7 VF on eth1

  261.             echo 7 > /sys/class/net/eth1/device/sriov_numvfs; sleep 2; ifup -a

  262.             exit 0

  263. 

  264. 

  265. Repositories

  266. ~~~~~~~~~~~~

  267. 

  268. RedHat based Linux with additional OpenStack repo

  269. 

  270. .. code-block:: yaml

  271. 

  272.     linux:

  273.       system:

  274.         ...

  275.         repo:

  276.           rdo-icehouse:

  277.             enabled: true

  278.             source: 'http://repos.fedorapeople.org/repos/openstack/openstack-icehouse/epel-6/'

  279.             pgpcheck: 0

  280. 

  281. Ensure system repository to use czech Debian mirror (``default: true``)

  282. Also pin it's packages with priority 900.

  283. 

  284. .. code-block:: yaml

  285. 

  286.    linux:

  287.      system:

  288.        repo:

  289.          debian:

  290.            default: true

  291.            source: "deb http://ftp.cz.debian.org/debian/ jessie main contrib non-free"

  292.            # Import signing key from URL if needed

  293.            key_url: "http://dummy.com/public.gpg"

  294.            pin:

  295.              - pin: 'origin "ftp.cz.debian.org"'

  296.                priority: 900

  297.                package: '*'

  298. 

  299. rc.local example

  300. 

  301. .. code-block:: yaml

  302. 

  303.    linux:

  304.      system:

  305.        rc:

  306.          local: |

  307.            #!/bin/sh -e

  308.            #

  309.            # rc.local

  310.            #

  311.            # This script is executed at the end of each multiuser runlevel.

  312.            # Make sure that the script will "exit 0" on success or any other

  313.            # value on error.

  314.            #

  315.            # In order to enable or disable this script just change the execution

  316.            # bits.

  317.            #

  318.            # By default this script does nothing.

  319.            exit 0

  320. 

  321. Prompt

  322. ~~~~~~

  323. 

  324. Setting prompt is implemented by creating ``/etc/profile.d/prompt.sh``. Every

  325. user can have different prompt.

  326. 

  327. .. code-block:: yaml

  328. 

  329.     linux:

  330.       system:

  331.         prompt:

  332.           root: \\n\\[\\033[0;37m\\]\\D{%y/%m/%d %H:%M:%S} $(hostname -f)\\[\\e[0m\\]\\n\\[\\e[1;31m\\][\\u@\\h:\\w]\\[\\e[0m\\]

  333.           default: \\n\\D{%y/%m/%d %H:%M:%S} $(hostname -f)\\n[\\u@\\h:\\w]

  334. 

  335. On Debian systems to set prompt system-wide it's necessary to remove setting

  336. PS1 in ``/etc/bash.bashrc`` and ``~/.bashrc`` (which comes from

  337. ``/etc/skel/.bashrc``). This formula will do this automatically, but will not

  338. touch existing user's ``~/.bashrc`` files except root.

  339. 

  340. Bash

  341. ~~~~

  342. 

  343. Fix bash configuration to preserve history across sessions (like ZSH does by

  344. default).

  345. 

  346. .. code-block:: yaml

  347. 

  348.     linux:

  349.       system:

  350.         bash:

  351.           preserve_history: true

  352. 

  353. Message of the day

  354. ~~~~~~~~~~~~~~~~~~

  355. 

  356. ``pam_motd`` from package ``update-motd`` is used for dynamic messages of the

  357. day. Setting custom motd will cleanup existing ones.

  358. 

  359. .. code-block:: yaml

  360. 

  361.     linux:

  362.       system:

  363.         motd:

  364.           - release: |

  365.               #!/bin/sh

  366.               [ -r /etc/lsb-release ] && . /etc/lsb-release

  367. 

  368.               if [ -z "$DISTRIB_DESCRIPTION" ] && [ -x /usr/bin/lsb_release ]; then

  369.               	# Fall back to using the very slow lsb_release utility

  370.               	DISTRIB_DESCRIPTION=$(lsb_release -s -d)

  371.               fi

  372. 

  373.               printf "Welcome to %s (%s %s %s)\n" "$DISTRIB_DESCRIPTION" "$(uname -o)" "$(uname -r)" "$(uname -m)"

  374.           - warning: |

  375.               #!/bin/sh

  376.               printf "This is [company name] network.\n"

  377.               printf "Unauthorized access strictly prohibited.\n"

  378. 

  379. RHEL / CentOS

  380. ^^^^^^^^^^^^^

  381. 

  382. Unfortunately ``update-motd`` is currently not available for RHEL so there's

  383. no native support for dynamic motd.

  384. You can still set static one, only pillar structure differs:

  385. 

  386. .. code-block:: yaml

  387. 

  388.     linux:

  389.       system:

  390.         motd: |

  391.           This is [company name] network.

  392.           Unauthorized access strictly prohibited.

  393. 

  394. Haveged

  395. ~~~~~~~

  396. 

  397. If you are running headless server and are low on entropy, it may be a good

  398. idea to setup Haveged.

  399. 

  400. .. code-block:: yaml

  401. 

  402.     linux:

  403.       system:

  404.         haveged:

  405.           enabled: true

  406. 

  407. Linux network

  408. -------------

  409. 

  410. Linux with network manager

  411. 

  412. .. code-block:: yaml

  413. 

  414.     linux:

  415.       network:

  416.         enabled: true

  417.         network_manager: true

  418. 

  419. Linux with default static network interfaces, default gateway interface and DNS servers

  420. 

  421. .. code-block:: yaml

  422. 

  423.     linux:

  424.       network:

  425.         enabled: true

  426.         interface:

  427.           eth0:

  428.             enabled: true

  429.             type: eth

  430.             address: 192.168.0.102

  431.             netmask: 255.255.255.0

  432.             gateway: 192.168.0.1

  433.             name_servers:

  434.             - 8.8.8.8

  435.             - 8.8.4.4

  436.             mtu: 1500

  437. 

  438. Linux with bonded interfaces and disabled NetworkManager

  439. 

  440. .. code-block:: yaml

  441. 

  442.     linux:

  443.       network:

  444.         enabled: true

  445.         interface:

  446.           eth0:

  447.             type: eth

  448.             ...

  449.           eth1:

  450.             type: eth

  451.             ...

  452.           bond0:

  453.             enabled: true

  454.             type: bond

  455.             address: 192.168.0.102

  456.             netmask: 255.255.255.0

  457.             mtu: 1500

  458.             use_in:

  459.             - interface: ${linux:interface:eth0}

  460.             - interface: ${linux:interface:eth0}

  461.         network_manager:

  462.           disable: true

  463. 

  464. Linux with vlan interface_params

  465. 

  466. .. code-block:: yaml

  467. 

  468.     linux:

  469.       network:

  470.         enabled: true

  471.         interface:

  472.           vlan69:

  473.             type: vlan

  474.             use_interfaces:

  475.             - interface: ${linux:interface:bond0}

  476. 

  477. Linux with wireless interface parameters

  478. 

  479. .. code-block:: yaml

  480. 

  481.     linux:

  482.       network:

  483.         enabled: true

  484.         gateway: 10.0.0.1

  485.         default_interface: eth0

  486.         interface:

  487.           wlan0:

  488.             type: eth

  489.             wireless:

  490.               essid: example

  491.               key: example_key

  492.               security: wpa

  493.               priority: 1

  494. 

  495. Linux networks with routes defined

  496. 

  497. .. code-block:: yaml

  498. 

  499.     linux:

  500.       network:

  501.         enabled: true

  502.         gateway: 10.0.0.1

  503.         default_interface: eth0

  504.         interface:

  505.           eth0:

  506.             type: eth

  507.             route:

  508.               default:

  509.                 address: 192.168.0.123

  510.                 netmask: 255.255.255.0

  511.                 gateway: 192.168.0.1

  512. 

  513. Native Linux Bridges

  514. 

  515. .. code-block:: yaml

  516. 

  517.     linux:

  518.       network:

  519.         interface:

  520.           eth1:

  521.             enabled: true

  522.             type: eth

  523.             proto: manual

  524.             up_cmds:

  525.             - ip address add 0/0 dev $IFACE

  526.             - ip link set $IFACE up

  527.             down_cmds:

  528.             - ip link set $IFACE down

  529.           br-ex:

  530.             enabled: true

  531.             type: bridge

  532.             address: ${linux:network:host:public_local:address}

  533.             netmask: 255.255.255.0

  534.             use_interfaces:

  535.             - eth1

  536. 

  537. OpenVswitch Bridges

  538. 

  539. .. code-block:: yaml

  540. 

  541.     linux:

  542.       network:

  543.         bridge: openvswitch

  544.         interface:

  545.           eth1:

  546.             enabled: true

  547.             type: eth

  548.             proto: manual

  549.             up_cmds:

  550.             - ip address add 0/0 dev $IFACE

  551.             - ip link set $IFACE up

  552.             down_cmds:

  553.             - ip link set $IFACE down

  554.           br-ex:

  555.             enabled: true

  556.             type: bridge

  557.             address: ${linux:network:host:public_local:address}

  558.             netmask: 255.255.255.0

  559.             use_interfaces:

  560.             - eth1

  561. 

  562. Linux with proxy

  563. 

  564. .. code-block:: yaml

  565. 

  566.     linux:

  567.       network:

  568.         ...

  569.         proxy:

  570.           host: proxy.domain.com

  571.           port: 3128

  572. 

  573. Linux with hosts

  574. 

  575. Parameter purge_hosts will enforce whole /etc/hosts file, removing entries

  576. that are not defined in model except defaults for both IPv4 and IPv6 localhost

  577. and hostname + fqdn.

  578. It's good to use this option if you want to ensure /etc/hosts is always in a

  579. clean state however it's not enabled by default for safety.

  580. 

  581. .. code-block:: yaml

  582. 

  583.     linux:

  584.       network:

  585.         ...

  586.         purge_hosts: true

  587.         host:

  588.           # No need to define this one if purge_hosts is true

  589.           hostname:

  590.             address: 127.0.1.1

  591.             names:

  592.             - ${linux:network:fqdn}

  593.             - ${linux:network:hostname}

  594.           node1:

  595.             address: 192.168.10.200

  596.             names:

  597.             - node2.domain.com

  598.             - service2.domain.com

  599.           node2:

  600.             address: 192.168.10.201

  601.             names:

  602.             - node2.domain.com

  603.             - service2.domain.com

  604. 

  605. 

  606. Setup resolv.conf, nameservers, domain and search domains

  607. 

  608. .. code-block:: yaml

  609. 

  610.     linux:

  611.       network:

  612.         resolv:

  613.           dns:

  614.             - 8.8.4.4

  615.             - 8.8.8.8

  616.           domain: my.example.com

  617.           search:

  618.             - my.example.com

  619.             - example.com

  620.           options:

  621.             - ndots:5

  622.             - timeout:2

  623.             - attempts:2

  624. 

  625. Linux storage pillars

  626. ---------------------

  627. 

  628. Linux with mounted Samba

  629. 

  630. .. code-block:: yaml

  631. 

  632.     linux:

  633.       storage:

  634.         enabled: true

  635.         mount:

  636.           samba1:

  637.           - enabled: true

  638.           - path: /media/myuser/public/

  639.           - device: //192.168.0.1/storage

  640.           - file_system: cifs

  641.           - options: guest,uid=myuser,iocharset=utf8,file_mode=0777,dir_mode=0777,noperm

  642. 

  643. Linux with file swap

  644. 

  645. .. code-block:: yaml

  646. 

  647.     linux:

  648.       storage:

  649.         enabled: true

  650.         swap:

  651.           file:

  652.             enabled: true

  653.             engine: file

  654.             device: /swapfile

  655.             size: 1024

  656. 

  657. Linux with partition swap

  658. 

  659. .. code-block:: yaml

  660. 

  661.     linux:

  662.       storage:

  663.         enabled: true

  664.         swap:

  665.           partition:

  666.             enabled: true

  667.             engine: partition

  668.             device: /dev/vg0/swap

  669. 

  670. LVM group `vg1` with one device and `data` volume mounted into `/mnt/data`

  671. 

  672. .. code-block:: yaml

  673. 

  674.     parameters:

  675.       linux:

  676.         storage:

  677.           mount:

  678.             data:

  679.               enabled: true

  680.               device: /dev/vg1/data

  681.               file_system: ext4

  682.               path: /mnt/data

  683.           lvm:

  684.             vg1:

  685.               enabled: true

  686.               devices:

  687.                 - /dev/sdb

  688.               volume:

  689.                 data:

  690.                   size: 40G

  691.                   mount: ${linux:storage:mount:data}

  692. 

  693. 

  694. Multipath with Fujitsu Eternus DXL

  695. 

  696. .. code-block:: yaml

  697. 

  698.     parameters:

  699.       linux:

  700.         storage:

  701.           multipath:

  702.             enabled: true

  703.             blacklist_devices:

  704.             - /dev/sda

  705.             - /dev/sdb

  706.             backends:

  707.             - fujitsu_eternus_dxl

  708. 

  709. Multipath with Hitachi VSP 1000

  710. 

  711. .. code-block:: yaml

  712. 

  713.     parameters:

  714.       linux:

  715.         storage:

  716.           multipath:

  717.             enabled: true

  718.             blacklist_devices:

  719.             - /dev/sda

  720.             - /dev/sdb

  721.             backends:

  722.             - hitachi_vsp1000

  723. 

  724. Multipath with IBM Storwize

  725. 

  726. .. code-block:: yaml

  727. 

  728.     parameters:

  729.       linux:

  730.         storage:

  731.           multipath:

  732.             enabled: true

  733.             blacklist_devices:

  734.             - /dev/sda

  735.             - /dev/sdb

  736.             backends:

  737.             - ibm_storwize

  738. 

  739. Multipath with multiple backends

  740. 

  741. .. code-block:: yaml

  742. 

  743.     parameters:

  744.       linux:

  745.         storage:

  746.           multipath:

  747.             enabled: true

  748.             blacklist_devices:

  749.             - /dev/sda

  750.             - /dev/sdb

  751.             - /dev/sdc

  752.             - /dev/sdd

  753.             backends:

  754.             - ibm_storwize

  755.             - fujitsu_eternus_dxl

  756.             - hitachi_vsp1000

  757. 

  758. Disabled multipath (the default setup)

  759. 

  760. .. code-block:: yaml

  761. 

  762.     parameters:

  763.       linux:

  764.         storage:

  765.           multipath:

  766.             enabled: false

  767. 

  768. Linux with local loopback device

  769. 

  770. .. code-block:: yaml

  771. 

  772.     linux:

  773.       storage:

  774.         loopback:

  775.           disk1:

  776.             file: /srv/disk1

  777.             size: 50G

  778. 

  779. External config generation

  780. --------------------------

  781. 

  782. You are able to use config support metadata between formulas and only generate

  783. config files for external use, eg. docker, etc.

  784. 

  785. .. code-block:: yaml

  786. 

  787.     parameters:

  788.       linux:

  789.         system:

  790.           config:

  791.             pillar:

  792.               jenkins:

  793.                 master:

  794.                   home: /srv/volumes/jenkins

  795.                   approved_scripts:

  796.                     - method java.net.URL openConnection

  797.                   credentials:

  798.                     - type: username_password

  799.                       scope: global

  800.                       id: test

  801.                       desc: Testing credentials

  802.                       username: test

  803.                       password: test

  804. 

  805. 

  806. Usage

  807. =====

  808. 

  809. Set mtu of network interface eth0 to 1400

  810. 

  811. .. code-block:: bash

  812. 

  813.     ip link set dev eth0 mtu 1400

  814. 

  815. Read more

  816. =========

  817. 

  818. * https://www.archlinux.org/

  819. * http://askubuntu.com/questions/175172/how-do-i-configure-proxies-in-ubuntu-server-or-minimal-cli-ubuntu

  820. 

  821. Documentation and Bugs

  822. ======================

  823. 

  824. To learn how to install and update salt-formulas, consult the documentation

  825. available online at:

  826. 

  827.     http://salt-formulas.readthedocs.io/

  828. 

  829. In the unfortunate event that bugs are discovered, they should be reported to

  830. the appropriate issue tracker. Use Github issue tracker for specific salt

  831. formula:

  832. 

  833.     https://github.com/salt-formulas/salt-formula-linux/issues

  834. 

  835. For feature requests, bug reports or blueprints affecting entire ecosystem,

  836. use Launchpad salt-formulas project:

  837. 

  838.     https://launchpad.net/salt-formulas

  839. 

  840. You can also join salt-formulas-users team and subscribe to mailing list:

  841. 

  842.     https://launchpad.net/~salt-formulas-users

  843. 

  844. Developers wishing to work on the salt-formulas projects should always base

  845. their work on master branch and submit pull request against specific formula.

  846. 

  847.     https://github.com/salt-formulas/salt-formula-linux

  848. 

  849. Any questions or feedback is always welcome so feel free to join our IRC

  850. channel:

  851. 

  852.     #salt-formulas @ irc.freenode.net