From fe1c86b8f938283e9dd8196a8b11a9648f4b49e6 Mon Sep 17 00:00:00 2001
From: Silvio Rhatto <rhatto@riseup.net>
Date: Fri, 12 Apr 2013 17:09:03 -0300
Subject: Major refactor

---
 manifests/role/nas.pp | 233 ++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 233 insertions(+)
 create mode 100644 manifests/role/nas.pp

(limited to 'manifests/role/nas.pp')

diff --git a/manifests/role/nas.pp b/manifests/role/nas.pp
new file mode 100644
index 0000000..134216e
--- /dev/null
+++ b/manifests/role/nas.pp
@@ -0,0 +1,233 @@
+class nodo::role::nas {
+  # Firewall rules
+  include firewall::nas
+
+  # DLNA
+  class { 'minidlna': }
+
+  #
+  # NFS
+  #
+  # References
+  # https://github.com/arioch/puppet-nfs
+  # https://github.com/stankevich/puppet-nfs
+  # https://github.com/camptocamp/puppet-nfs
+  # https://github.com/haraldsk/puppet-module-nfs/
+  # http://git.puppet.immerda.ch/?p=module-nfsd.git;a=summary
+  # http://wiki.debian.org/NFSServerSetup
+  # http://www.tldp.org/HOWTO/NFS-HOWTO/
+
+  # Main class
+  class { 'nfs':
+    server => true;
+  }
+
+  #
+  # FTP
+  #
+
+  # References
+  # https://forge.puppetlabs.com/tags/ftp
+  # https://forum.openwrt.org/viewtopic.php?id=12976
+  # http://download.pureftpd.org/pub/pure-ftpd/doc/FAQ
+  # http://www.massimilianomarini.com/04/02/2012/how-follow-symbolic-links-pure-ftpd
+
+  # Main class
+  class { 'pureftpd':
+    virtualchroot => true,
+  }
+
+  # Enable anonymous ftp
+  file { '/etc/pure-ftpd/conf/NoAnonymous':
+    ensure  => present,
+    owner   => root,
+    group   => root,
+    mode    => 0644,
+    content => "no\n",
+    notify  => Service[$pureftpd::params::service_name],
+  }
+
+  #  
+  # Samba
+  #
+
+  # References
+  # https://github.com/ajjahn/puppet-samba
+  # https://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/NetworkBrowsing.html#id2583364
+  # http://serverfault.com/questions/240217/dd-wrt-bonjour-netbios-etc-on-two-subnets
+  # http://www.linuxplanet.com/linuxplanet/tutorials/6600/2
+  # http://forums.fedoraforum.org/showthread.php?t=260519
+  # http://randombio.com/linuxsetup38.html
+
+  # Main class
+  class { 'samba::server':
+    workgroup     => hiera('nodo::samba::workgroup',     'WORKGROUP'),
+    server_string => hiera('nodo::samba::server_string', 'Samba Server'),
+    interfaces    => hiera('nodo::samba::interfaces',    'lo eth0'),
+    security      => hiera('nodo::samba::security',      'share'),
+  }
+
+  # We are avoiding multicast
+  # http://bda.ath.cx/blog/2009/01/24/multicast-routing-upnp-traffic-with-linux/
+  # http://linux-igd.sourceforge.net/documentation.php
+  set_samba_option {
+   # Remote announce won't work since routers don't forward broadcast traffic
+   #'remote announce': value => hiera('nodo::samba::remote_announce', '');
+   'wins support':     value => 'yes';
+   'preferred master': value => 'yes';
+   'domain master':    value => 'yes';
+   'printing':         value => 'cups';
+   'printcap name':    value => 'cups';
+  }
+
+  # Disable browsing of printer drivers
+  samba::server::share { 'print$':
+    comment   => 'Printer Drivers',
+    path      => '/var/lib/samba/printers',
+    browsable => 'no',
+    read_only => 'yes',
+    guest_ok  => 'no',
+  }
+
+  #
+  # HTTP
+  #
+
+  # References
+  # https://github.com/camptocamp/puppet-lighttpd
+  # https://github.com/example42/puppet-lighttpd
+  # http://git.puppet.immerda.ch/?p=module-lighttpd.git;a=summary
+
+  # Main class
+  class { 'lighttpd': }
+
+  # Document root
+  file { '/var/www/data':
+    ensure => present,
+    owner  => root,
+    group  => root,
+    mode   => 0755,
+  }
+
+  #
+  # TFTP
+  #
+
+  # Main class
+  class { 'tftp':
+    directory => '/srv/tftp',
+    address   => $::ipaddress,
+    options   => '--ipv4 --timeout 60',
+    inetd     => false,
+  }
+
+  # Rsync
+  include rsync::server
+
+  # MPD
+  include mpd
+  include mpd::client
+
+  #
+  # CUPS
+  #
+
+  # References
+  # https://github.com/mosen/puppet-cups
+  # https://github.com/camptocamp/puppet-cups
+
+  # Package
+  package { [ 'cups', 'cups-client' ]:
+    ensure => installed,
+  }
+
+  #
+  # Avahi
+  #
+
+  # References
+  # http://nfs-lan.sevka.info/
+  # http://en.gentoo-wiki.com/wiki/Avahi
+  # https://wiki.archlinux.org/index.php/Avahi
+  # http://packages.debian.org/wheezy/libnss-mdns
+  # http://packages.debian.org/wheezy/mdns-scan
+  # http://packages.debian.org/wheezy/avahi-discover
+  # http://askubuntu.com/questions/19590/how-do-i-share-nfs-mounts-over-zeroconf
+  # http://sophie.zarb.org/distrib/Mandriva/current/x86_64/rpms/pure-ftpd/files/1
+  # https://github.com/stahnma/puppet-module-avahi
+  # https://github.com/tjfontaine/airprint-generate
+  # http://mryoung.soundbomb.net/index.php/apple-airprint-with-linux-avahi
+  # http://lists.freedesktop.org/archives/avahi/2006-July/000824.html
+  # http://cups.org/documentation.php/doc-1.6/ref-cupsd-conf.html#BrowseLocalProtocols
+  # http://www.dns-sd.org/ServiceTypes.html
+
+  # Main class
+  include avahi
+
+  file { '/etc/avahi/services/rsync.service':
+    ensure => present,
+    owner  => root,
+    group  => root,
+    mode   => 0644,
+    source => 'puppet:///modules/site_avahi/services/rsync.service',
+    notify => Service['avahi-daemon'],
+  }
+
+  file { '/etc/avahi/services/http.service':
+    ensure => present,
+    owner  => root,
+    group  => root,
+    mode   => 0644,
+    source => 'puppet:///modules/site_avahi/services/http.service',
+    notify => Service['avahi-daemon'],
+  }
+
+  file { '/etc/avahi/services/samba.service':
+    ensure => present,
+    owner  => root,
+    group  => root,
+    mode   => 0644,
+    source => 'puppet:///modules/site_avahi/services/samba.service',
+    notify => Service['avahi-daemon'],
+  }
+
+  file { '/etc/avahi/services/ftp.service':
+    ensure => present,
+    owner  => root,
+    group  => root,
+    mode   => 0644,
+    source => 'puppet:///modules/site_avahi/services/ftp.service',
+    notify => Service['avahi-daemon'],
+  }
+
+  #
+  # DAAP
+  #
+
+  # References
+  # http://packages.debian.org/stable/forked-daapd
+  # http://packages.debian.org/squeeze/mt-daapd
+  # https://github.com/stahnma/puppet-module-daap_server
+  
+  # Main class, but package not available on wheezy
+  #class { 'daap_server':
+  #  collection_name => 'Noise - DAAP',
+  #  music_dir       => '/var/cache/media/noise',
+  #}
+
+  #
+  # Media folders
+  #
+
+  # Main classes
+  class { [ 'nodo::subsystem::media::folders', 'nodo::subsystem::media::groups' ]: }
+  
+  # Make sure basic media exist, no matter if there is an external disk attached
+  $cache = hiera('nodo::media::folders', '')
+
+  if $cache != '' {
+    file { "${cache}":
+      ensure => directory,
+    }
+  }
+}
-- 
cgit v1.2.3