1 heat_template_version: pike
4 Load kernel modules with kmod and configure kernel options with sysctl.
9 description: Mapping of service_name -> network name. Typically set
10 via parameter_defaults in the resource registry. This
11 mapping overrides those in ServiceNetMapDefaults.
18 description: Role name on which the service is applied
22 description: Parameters specific to the role
26 description: Mapping of service endpoint -> protocol. Typically set
27 via parameter_defaults in the resource registry.
31 description: Configures sysctl kernel.pid_max key
35 description: Configures sysctl net.ipv6.{default/all}.disable_ipv6 keys
37 NeighbourGcThreshold1:
39 description: Configures sysctl net.ipv4.neigh.default.gc_thresh1 value.
40 This is the minimum number of entries to keep in the ARP
41 cache. The garbage collector will not run if there are
42 fewer than this number of entries in the cache.
44 NeighbourGcThreshold2:
46 description: Configures sysctl net.ipv4.neigh.default.gc_thresh2 value.
47 This is the soft maximum number of entries to keep in the
48 ARP cache. The garbage collector will allow the number of
49 entries to exceed this for 5 seconds before collection will
52 NeighbourGcThreshold3:
54 description: Configures sysctl net.ipv4.neigh.default.gc_thresh3 value.
55 This is the hard maximum number of entries to keep in the
56 ARP cache. The garbage collector will always run if there
57 are more than this number of entries in the cache.
62 description: Role data for the Kernel modules
68 nf_conntrack_proto_sctp: {}
70 net.ipv4.tcp_keepalive_intvl:
72 net.ipv4.tcp_keepalive_probes:
74 net.ipv4.tcp_keepalive_time:
76 net.ipv4.conf.default.send_redirects:
78 net.ipv4.conf.all.send_redirects:
80 net.ipv4.conf.all.arp_accept:
82 net.ipv4.conf.default.accept_redirects:
84 net.ipv4.conf.default.secure_redirects:
86 net.ipv4.conf.all.secure_redirects:
88 net.ipv4.conf.default.log_martians:
90 net.ipv4.conf.all.log_martians:
94 net.netfilter.nf_conntrack_max:
96 net.ipv6.conf.default.disable_ipv6:
97 value: {get_param: KernelDisableIPv6}
98 net.ipv6.conf.all.disable_ipv6:
99 value: {get_param: KernelDisableIPv6}
100 # prevent neutron bridges from autoconfiguring ipv6 addresses
101 net.ipv6.conf.all.accept_ra:
103 net.ipv6.conf.default.accept_ra:
105 net.ipv6.conf.all.autoconf:
107 net.ipv6.conf.default.autoconf:
109 net.ipv6.conf.default.accept_redirects:
111 net.ipv6.conf.all.accept_redirects:
113 net.core.netdev_max_backlog:
116 value: {get_param: KernelPidMax}
117 kernel.dmesg_restrict:
121 #avoid neighbour table overflow on large deployments
122 net.ipv4.neigh.default.gc_thresh1:
123 value: {get_param: NeighbourGcThreshold1}
124 net.ipv4.neigh.default.gc_thresh2:
125 value: {get_param: NeighbourGcThreshold2}
126 net.ipv4.neigh.default.gc_thresh3:
127 value: {get_param: NeighbourGcThreshold3}
129 include ::tripleo::profile::base::kernel