[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Savannah-cvs] [216] Munin setup (initial doc)
From: |
bob |
Subject: |
[Savannah-cvs] [216] Munin setup (initial doc) |
Date: |
Tue, 16 Aug 2016 18:21:05 +0000 (UTC) |
Revision: 216
http://svn.sv.gnu.org/viewvc/?view=rev&root=administration&revision=216
Author: rwp
Date: 2016-08-16 18:21:02 +0000 (Tue, 16 Aug 2016)
Log Message:
-----------
Munin setup (initial doc)
Modified Paths:
--------------
trunk/sviki/SavannahHosts.mdwn
Modified: trunk/sviki/SavannahHosts.mdwn
===================================================================
--- trunk/sviki/SavannahHosts.mdwn 2016-08-15 23:25:57 UTC (rev 215)
+++ trunk/sviki/SavannahHosts.mdwn 2016-08-16 18:21:02 UTC (rev 216)
@@ -28,6 +28,28 @@
* Fresh installation free of legacy
* Upgrades will then work reliably again
+Git /etc etckeeper
+------------------
+
+In addition to these notes here all changes to /etc and therefore to
+the configuration are tracked by the 'etckeeper' package in git
+automatically as they happen. It checkpoints into version control the
+state of /etc before and after package installs and other changes. It
+checkpoints daily the state of all files. It is all automatic. No
+special actions need to be taken. You may however optionally make
+manual log entries but it is not required.
+
+If you are trying to deduce what has been configured and these notes
+are not sufficient then checking the git log is also useful. However
+since the log comments are not useful you will need to look at what
+files have changed. These are examples of the type of browsing
+available.
+
+ cd /etc
+ git whatchanged
+ git whatchanged ./network
+ git whatchanged -p ./network
+
Host internal
-------------
@@ -114,7 +136,8 @@
Install generally useful utilities.
- apt-get install less screen htop wget dnsutils heirloom-mailx bind9-host
+ apt-get install gawk less screen htop wget dnsutils bind9-host
+ apt-get install heirloom-mailx
This includes Emacs. At the time of this writing version 24 is
current and that number appears in the package names. At future times
@@ -364,6 +387,41 @@
dsh -M -c -f hostlist somecommand someargs
dsh -M -c -f hostlist df -lh /
+Set up Nginx for munin and for Let's Encrypt certbot and other uses.
+
+ apt-get install nginx
+
+Set up munin-node.
+
+ apt-get install munin-node
+
+Set up the munin master configuration.
+
+ apt-get install munin
+ ...edit /etc/munin/munin.conf remove localhost entry
+ ...edit /etc/munin/munin-conf.d/local.conf add host entries
+ [mgt0.savannah.gnu.org]
+ address 127.0.0.1
+
+ [internal0.savannah.gnu.org]
+ address 208.118.235.78
+
+ [frontend0.savannah.gnu.org]
+ address 208.118.235.79
+
+ [vcs0.savannah.gnu.org]
+ address 208.118.235.201
+
+ [download0.savannah.gnu.org]
+ address 208.118.235.200
+
+FIXME: Needs quite a bit more documentation here on setting up certbot
+for Let's Encrypt. See /home/certbot/README for more details there.
+But start with creating a non-root certbot user.
+
+ adduser --disabled-password --gecos Certbot certbot
+ ...less /home/certbot/README
+
Host internal0
--------------
@@ -409,6 +467,16 @@
GRANT ALL ON savane.* TO address@hidden;
FLUSH PRIVILEGES;
+Set up munin-node. (libcache-cache-perl is needed for the extra mysql
+plugin.) Then install the extra mysql plugin with all of the
+suggested interfaces.
+
+ apt-get install munin-node libcache-cache-perl
+ cd /etc/munin/plugins
+ for i in $(/usr/share/munin/plugins/mysql_ suggest); do ln -s
/usr/share/munin/plugins/mysql_ mysql_$i;done
+ echo 'allow ^208\.118\.235\.77$' >> /etc/munin/munin-node.conf
+ service munin-node restart
+
Host frontend0
--------------
@@ -466,6 +534,12 @@
/etc/ssl/private installed from frontend
+Set up munin-node.
+
+ apt-get install munin-node
+ echo 'allow ^208\.118\.235\.77$' >> /etc/munin/munin-node.conf
+ service munin-node restart
+
FIXME: Document max client limitations and configuration here.
FIXME: Need to reference installing Savane here. Perhaps referencing
@@ -485,6 +559,12 @@
/etc/fstab contains
... vcs:/ /net/vcs nfs defaults,async 0 0
+Set up munin-node.
+
+ apt-get install munin-node
+ echo 'allow ^208\.118\.235\.77$' >> /etc/munin/munin-node.conf
+ service munin-node restart
+
FIXME: Consider the noacl,nocto,rsize=32768,wsize=32768 options.
Host download0
@@ -505,9 +585,17 @@
/etc/fstab contains
... download:/ /net/download nfs defaults,async 0 0
+Set up munin-node.
+
+ apt-get install munin-node
+ echo 'allow ^208\.118\.235\.77$' >> /etc/munin/munin-node.conf
+ service munin-node restart
+
TO-DO Items
-----------
A place for me to list things that I know about but haven't gotten to yet.
* Set up /etc/ssh/ssh_known_hosts file.
+
+* Move DNS from internal to internal0. (Easy. Do at last moment.)
[Prev in Thread] |
Current Thread |
[Next in Thread] |
- [Savannah-cvs] [216] Munin setup (initial doc),
bob <=