X-Git-Url: https://git.openstreetmap.org./chef.git/blobdiff_plain/38afacb3e9601854ac020f45cc4414ce21e3bc7f..922630d7504ed1a3fae8da5d253a917a30e72cdb:/roles/lockheed.rb?ds=inline diff --git a/roles/lockheed.rb b/roles/lockheed.rb index 9b4ad335f..f4ace47e0 100644 --- a/roles/lockheed.rb +++ b/roles/lockheed.rb @@ -4,35 +4,79 @@ description "Master role applied to lockheed" default_attributes( :networking => { :interfaces => { - :internal_ipv4 => { + :internal => { :interface => "bond0", :role => :internal, - :family => :inet, - :address => "10.0.48.16", + :inet => { + :address => "10.0.48.16" + }, :bond => { :mode => "802.3ad", :lacprate => "fast", :xmithashpolicy => "layer3+4", - :slaves => %w[eth0 eth1] + :slaves => %w[eno49 eno50] } }, - :external_ipv4 => { - :interface => "bond0.2", + :external => { + :interface => "bond0.3", :role => :external, - :family => :inet, - :address => "130.117.76.16" - }, - :external_ipv6 => { - :interface => "bond0.2", - :role => :external, - :family => :inet6, - :address => "2001:978:2:2C::172:10" + :inet => { + :address => "184.104.179.144" + }, + :inet6 => { + :address => "2001:470:1:fa1::10" + } + } + } + }, + :sysctl => { + :sockets => { + :comment => "Increase size of connection queue", + :parameters => { + "net.core.somaxconn" => 10000 + } + }, + :network_conntrack_time_wait => { + :comment => "Only track completed connections for 30 seconds", + :parameters => { + "net.netfilter.nf_conntrack_tcp_timeout_time_wait" => "30" + } + }, + :network_conntrack_max => { + :comment => "Increase max number of connections tracked", + :parameters => { + "net.netfilter.nf_conntrack_max" => "524288" + } + }, + :no_tcp_slow_start => { + :comment => "Disable TCP slow start", + :parameters => { + "net.ipv4.tcp_slow_start_after_idle" => "0" + } + }, + :tcp_use_bbr => { + :comment => "Use TCP BBR Congestion Control", + :parameters => { + "net.core.default_qdisc" => "fq", + "net.ipv4.tcp_congestion_control" => "bbr" + } + } + }, + :nginx => { + :cache => { + :proxy => { + :enable => true, + :keys_zone => "proxy_cache_zone:256M", + :inactive => "180d", + :max_size => "51200M" } - } } ) run_list( - "role[equinix-ams]" + "role[equinix-ams]", + "role[hp-g9]", + "recipe[imagery::za_ngi_aerial]", + "recipe[imagery::us_imagery]" )