spacepaste

Paste details

reply | raw

  1.  
  2. global
  3. log /dev/log local0
  4. log /dev/log local1 notice
  5. chroot /var/lib/haproxy
  6. stats socket /run/haproxy/admin.sock mode 660 level admin
  7. stats timeout 30s
  8. maxconn 5000
  9. user haproxy
  10. group haproxy
  11. daemon
  12. ca-base /etc/ssl/certs
  13. crt-base /etc/ssl/private
  14. ssl-default-bind-ciphers ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS
  15. ssl-default-bind-options no-sslv3
  17. defaults
  18. log global
  19. mode http
  20. option tcpka
  21. option tcplog
  22. option dontlognull
  23. timeout connect 10s
  24. timeout client 60s
  25. timeout server 120s
  26. errorfile 400 /etc/haproxy/errors/400.http
  27. errorfile 403 /etc/haproxy/errors/403.http
  28. errorfile 408 /etc/haproxy/errors/408.http
  29. errorfile 500 /etc/haproxy/errors/500.http
  30. errorfile 502 /etc/haproxy/errors/502.http
  31. errorfile 503 /etc/haproxy/errors/503.http
  32. errorfile 504 /etc/haproxy/errors/504.http
  34. listen stats
  35. bind *:1993
  36. stats enable
  37. stats uri /stats
  38. stats auth root:{{ openstack_password }}
  39. stats refresh 30s
  40. stats show-node
  41. stats hide-version
  42. log global
  44. listen galera
  45. bind *:3306
  46. mode tcp
  47. balance first
  48. maxconn 2000
  49. option httpchk
  50. default-server check port 9200 inter 3s fall 1 rise 1
  51. {% for host in groups["controller"] %}
  52. server galera-{{ loop.index }} {{ hostvars[host]["ansible_default_ipv4"]["address"] }}:3306 check
  53. {% endfor %}
  55. listen glance_api
  56. bind *:9292
  57. balance first
  58. option httpchk
  59. option forwardfor
  60. default-server inter 3s fall 1 rise 1
  61. {% for host in groups["controller"] %}
  62. server controller-{{ loop.index }} {{ hostvars[host]["ansible_default_ipv4"]["address"] }}:9292 check
  63. {% endfor %}
  65. listen glance_registry
  66. bind *:9191
  67. balance first
  68. option httpchk
  69. option forwardfor
  70. http-check expect status 401
  71. default-server inter 3s fall 1 rise 1
  72. {% for host in groups["controller"] %}
  73. server controller-{{ loop.index }} {{ hostvars[host]["ansible_default_ipv4"]["address"] }}:9191 check
  74. {% endfor %}
  76. listen keystone_public_internal
  77. bind *:5000
  78. balance first
  79. option httpchk
  80. option forwardfor
  81. default-server inter 3s fall 1 rise 1
  82. {% for host in groups["controller"] %}
  83. server controller-{{ loop.index }} {{ hostvars[host]["ansible_default_ipv4"]["address"] }}:5000 check
  84. {% endfor %}
  86. listen nova_compute_api
  87. bind *:8774
  88. balance first
  89. option httpchk
  90. option forwardfor
  91. default-server inter 3s fall 1 rise 1
  92. {% for host in groups["controller"] %}
  93. server controller-{{ loop.index }} {{ hostvars[host]["ansible_default_ipv4"]["address"] }}:8774 check
  94. {% endfor %}
  96. listen nova_placement_api
  97. bind *:8778
  98. balance first
  99. option tcplog
  100. http-request del-header X-Forwarded-Proto
  101. default-server inter 3s fall 1 rise 1
  102. {% for host in groups["controller"] %}
  103. server controller-{{ loop.index }} {{ hostvars[host]["ansible_default_ipv4"]["address"] }}:8778 check
  104. {% endfor %}
  106. listen nova_metadata_api
  107. bind *:8775
  108. balance first
  109. option httpchk
  110. option forwardfor
  111. default-server inter 3s fall 1 rise 1
  112. {% for host in groups["controller"] %}
  113. server controller-{{ loop.index }} {{ hostvars[host]["ansible_default_ipv4"]["address"] }}:8775 check
  114. {% endfor %}
  116. listen nova_vncproxy
  117. bind *:6080
  118. balance first
  119. option forwardfor
  120. option httpchk GET /vnc_auto.html HTTP/1.1\r\nUser-Agent:\ curl/7.35.0\r\nAccept:\ */*
  121. default-server inter 3s fall 1 rise 1
  122. {% for host in groups["controller"] %}
  123. server controller-{{ loop.index }} {{ hostvars[host]["ansible_default_ipv4"]["address"] }}:6080 check
  124. {% endfor %}
  126. listen cinder_api
  127. bind *:8776
  128. balance first
  129. option httpchk
  130. option forwardfor
  131. default-server inter 3s fall 1 rise 1
  132. {% for host in groups["controller"] %}
  133. server controller-{{ loop.index }} {{ hostvars[host]["ansible_default_ipv4"]["address"] }}:8776 check
  134. {% endfor %}
  136. listen neutron_api
  137. bind *:9696
  138. balance first
  139. option httpchk
  140. option forwardfor
  141. default-server inter 3s fall 1 rise 1
  142. {% for host in groups["controller"] %}
  143. server controller-{{ loop.index }} {{ hostvars[host]["ansible_default_ipv4"]["address"] }}:9696 check
  144. {% endfor %}
  146. listen memcached
  147. bind *:11211
  148. balance first
  149. mode tcp
  150. default-server inter 3s fall 1 rise 1
  151. {% for host in groups["controller"] %}
  152. server controller-{{ loop.index }} {{ hostvars[host]["ansible_default_ipv4"]["address"] }}:11211 check
  153. {% endfor %}
  155. listen rabbitmq
  156. bind *:5672
  157. balance first
  158. mode tcp
  159. default-server inter 3s fall 1 rise 1
  160. {% for host in groups["controller"] %}
  161. server controller-{{ loop.index }} {{ hostvars[host]["ansible_default_ipv4"]["address"] }}:5672 check
  162. {% endfor %}
  164. listen rabbitmq:ui
  165. bind *:15672
  166. balance first
  167. option httpchk
  168. option forwardfor
  169. default-server inter 3s fall 1 rise 1
  170. {% for host in groups["controller"] %}
  171. server controller-{{ loop.index }} {{ hostvars[host]["ansible_default_ipv4"]["address"] }}:15672 check
  172. {% endfor %}
  173.  
Powered by spacepaste. Paste removal.