From b966afea26916921eabab7dfa686dd20186724e4 Mon Sep 17 00:00:00 2001 From: do Date: Fri, 19 Jun 2020 17:46:34 +0200 Subject: [PATCH] haproxy for openhab --- packages/openhab2.sls | 77 +++++++++++++++++++++++++++++++++++++++++++ top.sls | 2 ++ 2 files changed, 79 insertions(+) create mode 100644 packages/openhab2.sls diff --git a/packages/openhab2.sls b/packages/openhab2.sls new file mode 100644 index 0000000..ea39cdb --- /dev/null +++ b/packages/openhab2.sls @@ -0,0 +1,77 @@ +# -*- coding: utf-8 -*- +# vim: ft=yaml +--- + +haproxy: + enabled: True + overwrite: True + global: + stats: + enable: True + socketpath: /var/lib/haproxy/stats + mode: 660 + level: admin + # Optional extra bind parameter, for example to set the owner/group on the socket file + extra: user haproxy group haproxy + ssl-default-bind-ciphers: "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA384" + ssl-default-bind-options: "no-sslv3 no-tlsv10 no-tlsv11" + + user: haproxy + group: haproxy + chroot: + enable: True + path: /var/lib/haproxy + daemon: True + defaults: + stats: + - enable + - uri: '/admin?stats' + - realm: 'Haproxy\ Statistics' + - auth: 'admin1:AdMiN123' + errorfiles: + 400: /etc/haproxy/errors/400.http + 403: /etc/haproxy/errors/403.http + 408: /etc/haproxy/errors/408.http + 500: /etc/haproxy/errors/500.http + 502: /etc/haproxy/errors/502.http + 503: /etc/haproxy/errors/503.http + 504: /etc/haproxy/errors/504.http + + {# Suported by HAProxy 1.6 #} + resolvers: + local_dns: + options: + - nameserver resolvconf 192.168.10.1:53 + - resolve_retries 3 + - timeout retry 1s + - hold valid 10s + + + listens: + stats: + bind: + - "0.0.0.0:8998" + mode: http + stats: + enable: True + uri: "/admin?stats" + refresh: "20s" + frontends: + frontend1: + name: openhab + bind: "*:80" + default_backend: openhab-back + acls: + - host_openhab hdr_beg(host) -i auto. + use_backends: + - openhab-back if host_openhab + backends: + backend1: + name: openhab-back + balance: roundrobin + servers: + server1: + name: auto01.chaos + host: 127.0.0.1 + port: 8080 + check: check diff --git a/top.sls b/top.sls index 1bc7fd9..50107c3 100644 --- a/top.sls +++ b/top.sls @@ -23,6 +23,8 @@ base: - k8s 'kubeadm*': - k8s + 'auto*': + - packages.openhab2 #'pine03*':