-
Notifications
You must be signed in to change notification settings - Fork 49
/
pillar.example
114 lines (113 loc) · 2.86 KB
/
pillar.example
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
# -*- coding: utf-8 -*-
# vim: ft=yaml
---
snmp:
# lookup:
# snmpdargs: '-Lsd -Lf /dev/null -p /var/run/snmpd.pid -a'
# trapdargs: '-Lsd -p /var/run/snmptrapd.pid'
# trapdrun: 'no' # Needs "'", otherwise it'll be a bool
conf:
location: 'Unknown (add saltstack pillar)'
syscontact: 'Root <root@localhost> (add saltstack pillar)'
logconnects: false
# disk checks
# disk: /
# disks:
# - /
# vacm com2sec's (map communities into security names)
# com2sec:
# - name: local
# source: localhost
# community: localhost
# vacm group's (map security names to group names)
# groups:
# - name: ROgroup1
# version: usm
# secname: local
# - name: ROgroup1
# version: v1
# secname: local
# - name: ROgroup1
# version: v2c
# secname: local
# - name: Other
# version: usm
# secname: local
# - name: Other
# version: v1
# secname: local
# - name: Other
# version: v2c
# secname: local
# vacm views (map mib trees to views)
views:
- name: all
type: included
oid: '.1'
# optional mask
mask: 80
# vacm access (map groups to views with access restrictions)
# access:
# - name: ROgroup1
# context: '""'
# match: any
# level: noauth
# prefix: exact
# read: all
# write: none
# notify: none
# - name: Other
# context: "cont"
# match: any
# level: noauth
# prefix: exact
# read: all
# write: none
# notify: none
# v1/2c read-only communities
rocommunities:
public:
source: [localhost, 192.168.0.0/24, 192.168.1.0/24]
withoutsource: null
# or
# rocommunities:
# - public
# rocommunities6:
# public:
# source: 2001:DB8::1
# v1/2c read-write communities
rwcommunities:
private:
source: 192.168.1.0/24
# v3 users for read-only
rousers:
- username: 'myv3user'
authpassphrase: 'myv3password'
view: all
# securitylevel: priv
# authproto: 'SHA'
# privproto: 'AES'
# privpassphrase: 'v3privpass'
# v3 users for read-write
rwusers:
- username: 'myv3user_rw'
authpassphrase: 'myv3password'
view: all
# securitylevel: priv
# authproto: 'SHA'
# privproto: 'AES'
# privpassphrase: 'v3privpass'
# misc snmpd.conf settings
settings:
# agentAddress: 'udp:161,udp6:[::1]:161'
sysServices: 72
master: ['agentx']
# custom MIB files
# mibs:
# <MIB name>: salt://<path to MIB.txt>
extend:
- name: 'HTTPD_PIDS'
prog: '/bin/sh /path/to/check_apache.sh'
dlmod:
- name: 'nstAgentPluginObject'
sharedobject: '/path/to/nstAgentPluginObject.so'