add a bunch of hostclasses

author: Cullum Smith <cullum@sacredheartsc.com> 2024-10-12 08:14:59 -0400
committer: Cullum Smith <cullum@sacredheartsc.com> 2024-10-12 08:15:33 -0400
commit: 99b8524c16cc99ceeaf1ebf588f2fc0f2c0fbe0a (patch)
tree: 3ffa4113f23eca6cea8ff2c94ba7ce60188d943e /vars/hostclass
parent: 1c882c769e5476b5cb3fa294257c76165a7a6f46 (diff)
download: infrastructure-99b8524c16cc99ceeaf1ebf588f2fc0f2c0fbe0a.tar.gz
11 files changed, 51 insertions, 0 deletions
diff --git a/vars/hostclass/asterisk_server b/vars/hostclass/asterisk_server
new file mode 100644
index 0000000..daf5fa6
--- /dev/null
+++ b/vars/hostclass/asterisk_server
@@ -0,0 +1,10 @@
+#!/bin/sh
+
+asterisk_rtp_port_start=10000
+asterisk_rtp_port_end=10999
+
+allowed_tcp_ports='ssh sip sip-tls'
+allowed_udp_ports="ssh sip sip-tls ${asterisk_rtp_port_start}:${asterisk_rtp_port_end}"
+
+acme=true
+acme_standalone=true
diff --git a/vars/hostclass/authoritative_nameserver b/vars/hostclass/authoritative_nameserver
new file mode 100644
index 0000000..a421b7c
--- /dev/null
+++ b/vars/hostclass/authoritative_nameserver
@@ -0,0 +1,4 @@
+#!/bin/sh
+
+allowed_tcp_ports='ssh domain'
+allowed_udp_ports='domain'
diff --git a/vars/hostclass/bitwarden_server b/vars/hostclass/bitwarden_server
new file mode 100644
index 0000000..5ae7588
--- /dev/null
+++ b/vars/hostclass/bitwarden_server
@@ -0,0 +1,3 @@
+#!/bin/sh
+
+allowed_tcp_ports="ssh http https"
diff --git a/vars/hostclass/dav_server b/vars/hostclass/dav_server
new file mode 100644
index 0000000..2a4b250
--- /dev/null
+++ b/vars/hostclass/dav_server
@@ -0,0 +1,4 @@
+#!/bin/sh
+
+allowed_tcp_ports='ssh http https'
+nginx_gssapi=true
diff --git a/vars/hostclass/pkg_repository b/vars/hostclass/pkg_repository
index dbd49a7..4752685 100644
--- a/vars/hostclass/pkg_repository
+++ b/vars/hostclass/pkg_repository
@@ -1,3 +1,4 @@
 #!/bin/sh
 
 allowed_tcp_ports='ssh http'
+nginx_redirect=false
diff --git a/vars/hostclass/postgresql_server b/vars/hostclass/postgresql_server
new file mode 100644
index 0000000..500e59b
--- /dev/null
+++ b/vars/hostclass/postgresql_server
@@ -0,0 +1,3 @@
+#!/bin/sh
+
+allowed_tcp_ports='ssh postgresql'
diff --git a/vars/hostclass/public_webserver b/vars/hostclass/public_webserver
new file mode 100644
index 0000000..b6a9c9d
--- /dev/null
+++ b/vars/hostclass/public_webserver
@@ -0,0 +1,5 @@
+#!/bin/sh
+
+allowed_tcp_ports='ssh http https'
+acme=true
+nginx_public=true
diff --git a/vars/hostclass/ttrss_server b/vars/hostclass/ttrss_server
new file mode 100644
index 0000000..2a4b250
--- /dev/null
+++ b/vars/hostclass/ttrss_server
@@ -0,0 +1,4 @@
+#!/bin/sh
+
+allowed_tcp_ports='ssh http https'
+nginx_gssapi=true
diff --git a/vars/hostclass/turn_server b/vars/hostclass/turn_server
new file mode 100644
index 0000000..06cc6ae
--- /dev/null
+++ b/vars/hostclass/turn_server
@@ -0,0 +1,8 @@
+#!/bin/sh
+
+coturn_listen_port=3478
+coturn_min_port=49152
+coturn_max_port=65535
+
+allowed_tcp_ports="ssh ${coturn_listen_port}"
+allowed_udp_ports="${coturn_listen_port} ${coturn_min_port}:${coturn_max_port}"
diff --git a/vars/hostclass/xmpp_server b/vars/hostclass/xmpp_server
new file mode 100644
index 0000000..204d1ba
--- /dev/null
+++ b/vars/hostclass/xmpp_server
@@ -0,0 +1,5 @@
+#!/bin/sh
+
+acme=true
+allowed_tcp_ports='ssh http https xmpp-client xmpp-server'
+nginx_public=true
diff --git a/vars/hostclass/znc_server b/vars/hostclass/znc_server
new file mode 100644
index 0000000..7e6ad77
--- /dev/null
+++ b/vars/hostclass/znc_server
@@ -0,0 +1,4 @@
+#!/bin/sh
+
+znc_irc_port=6697
+allowed_tcp_ports="ssh http https ${znc_irc_port}"
author	Cullum Smith <cullum@sacredheartsc.com>	2024-10-12 08:14:59 -0400
committer	Cullum Smith <cullum@sacredheartsc.com>	2024-10-12 08:15:33 -0400
commit	99b8524c16cc99ceeaf1ebf588f2fc0f2c0fbe0a (patch)
tree	3ffa4113f23eca6cea8ff2c94ba7ce60188d943e /vars/hostclass
parent	1c882c769e5476b5cb3fa294257c76165a7a6f46 (diff)
download	infrastructure-99b8524c16cc99ceeaf1ebf588f2fc0f2c0fbe0a.tar.gz