1 heat_template_version: pike
4 Load kernel modules with kmod and configure kernel options with sysctl.
9 description: Dictionary packing service data
13 description: Mapping of service_name -> network name. Typically set
14 via parameter_defaults in the resource registry. This
15 mapping overrides those in ServiceNetMapDefaults.
22 description: Role name on which the service is applied
26 description: Parameters specific to the role
30 description: Mapping of service endpoint -> protocol. Typically set
31 via parameter_defaults in the resource registry.
35 description: Configures sysctl kernel.pid_max key
39 description: Configures sysctl net.ipv6.{default/all}.disable_ipv6 keys
41 NeighbourGcThreshold1:
43 description: Configures sysctl net.ipv4.neigh.default.gc_thresh1 value.
44 This is the minimum number of entries to keep in the ARP
45 cache. The garbage collector will not run if there are
46 fewer than this number of entries in the cache.
48 NeighbourGcThreshold2:
50 description: Configures sysctl net.ipv4.neigh.default.gc_thresh2 value.
51 This is the soft maximum number of entries to keep in the
52 ARP cache. The garbage collector will allow the number of
53 entries to exceed this for 5 seconds before collection will
56 NeighbourGcThreshold3:
58 description: Configures sysctl net.ipv4.neigh.default.gc_thresh3 value.
59 This is the hard maximum number of entries to keep in the
60 ARP cache. The garbage collector will always run if there
61 are more than this number of entries in the cache.
66 description: Role data for the Kernel modules
72 nf_conntrack_proto_sctp: {}
74 net.ipv4.tcp_keepalive_intvl:
76 net.ipv4.tcp_keepalive_probes:
78 net.ipv4.tcp_keepalive_time:
80 net.ipv4.conf.default.send_redirects:
82 net.ipv4.conf.all.send_redirects:
84 net.ipv4.conf.all.arp_accept:
86 net.ipv4.conf.default.accept_redirects:
88 net.ipv4.conf.default.secure_redirects:
90 net.ipv4.conf.all.secure_redirects:
92 net.ipv4.conf.default.log_martians:
94 net.ipv4.conf.all.log_martians:
98 net.netfilter.nf_conntrack_max:
100 net.ipv6.conf.default.disable_ipv6:
101 value: {get_param: KernelDisableIPv6}
102 net.ipv6.conf.all.disable_ipv6:
103 value: {get_param: KernelDisableIPv6}
104 # prevent neutron bridges from autoconfiguring ipv6 addresses
105 net.ipv6.conf.all.accept_ra:
107 net.ipv6.conf.default.accept_ra:
109 net.ipv6.conf.all.autoconf:
111 net.ipv6.conf.default.autoconf:
113 net.ipv6.conf.default.accept_redirects:
115 net.ipv6.conf.all.accept_redirects:
117 net.core.netdev_max_backlog:
120 value: {get_param: KernelPidMax}
121 kernel.dmesg_restrict:
125 #avoid neighbour table overflow on large deployments
126 net.ipv4.neigh.default.gc_thresh1:
127 value: {get_param: NeighbourGcThreshold1}
128 net.ipv4.neigh.default.gc_thresh2:
129 value: {get_param: NeighbourGcThreshold2}
130 net.ipv4.neigh.default.gc_thresh3:
131 value: {get_param: NeighbourGcThreshold3}
133 include ::tripleo::profile::base::kernel