| haproxy: |
| proxy: |
| enabled: true |
| mode: tcp |
| logging: syslog |
| max_connections: 1024 |
| listen: |
| nova_metadata_api: |
| binds: |
| - address: 127.0.0.1 |
| port: 8775 |
| format: end |
| options: |
| - httpchk |
| - httpclose |
| - httplog |
| rate_limit: |
| duration: 900s |
| enabled: true |
| requests: 125 |
| track: content |
| servers: |
| - host: 127.0.0.1 |
| name: ctl01 |
| params: check inter 10s fastinter 2s downinter 3s rise 3 fall 3 |
| port: 8775 |
| - host: 127.0.0.1 |
| name: ctl02 |
| params: check inter 10s fastinter 2s downinter 3s rise 3 fall 3 |
| port: 8775 |
| - host: 127.0.0.1 |
| name: ctl03 |
| params: check inter 10s fastinter 2s downinter 3s rise 3 fall 3 |
| port: 8775 |
| type: http |
| nova_novnc: |
| binds: |
| - address: 127.0.0.1 |
| port: 8776 |
| format: listen |
| options: |
| - httpchk |
| - httpclose |
| - httplog |
| rate_limit: |
| duration: 5s |
| enabled: true |
| requests: 60 |
| track: connection |
| servers: |
| - host: 127.0.0.1 |
| name: ctl01 |
| params: check inter 10s fastinter 2s downinter 3s rise 3 fall 3 |
| port: 8776 |
| - host: 127.0.0.1 |
| name: ctl02 |
| params: check inter 10s fastinter 2s downinter 3s rise 3 fall 3 |
| port: 8776 |
| - host: 127.0.0.1 |
| name: ctl03 |
| params: check inter 10s fastinter 2s downinter 3s rise 3 fall 3 |
| port: 8776 |
| type: http |
| nova_metadata_api2: |
| binds: |
| - address: 127.0.0.1 |
| port: 8777 |
| format: listen |
| options: |
| - httplog |
| rate_limit: |
| enabled: true |
| type: string |
| len: 36 |
| size: 12m |
| duration: 10 |
| acls: |
| 101: |
| enabled: true |
| value: acl too_many_requests_3 sc0_gpc0_rate() gt 3 |
| 102: |
| enabled: true |
| value: acl mark_seen sc0_inc_gpc0 gt 0 |
| 110: |
| enabled: true |
| value: acl x_instance_id hdr(x-instance-id) -i 4777e8e0-16e8-46ce-a3fe-0a1ad9b3ebdc |
| 111: |
| enabled: true |
| value: acl x_instance_id hdr(x-instance-id) -i ca2395dd-f73f-4d43-8fe7-f7078a0920af |
| 201: |
| enabled: true |
| value: acl too_many_requests_6 sc0_gpc0_rate() gt 6 |
| 202: |
| enabled: true |
| value: acl mark_seen sc0_inc_gpc0 gt 0 |
| 210: |
| enabled: true |
| value: acl x_tenant_id hdr(x-tenant-id) -i 2b76cc56a437404bb8cb6cb20dbb0ea4 |
| tcp_request: |
| 001: |
| enabled: true |
| value: tcp-request inspect-delay 5s |
| 101: |
| enabled: true |
| value: tcp-request content track-sc0 hdr(x-instance-id) if ! too_many_requests_3 |
| 201: |
| enabled: true |
| value: tcp-request content track-sc0 hdr(x-tenant-id) if ! too_many_requests_6 |
| use_backend: |
| 101: |
| enabled: true |
| value: use_backend nova_metadata_api2-rate_limit if mark_seen too_many_requests_3 x_instance_id |
| 201: |
| enabled: true |
| value: use_backend nova_metadata_api2-rate_limit if mark_seen too_many_requests_6 x_tenant_id |
| servers: |
| - host: 127.0.0.1 |
| name: ctl01 |
| params: check inter 10s fastinter 2s downinter 3s rise 3 fall 3 |
| port: 8777 |
| - host: 127.0.0.1 |
| name: ctl02 |
| params: check inter 10s fastinter 2s downinter 3s rise 3 fall 3 |
| port: 8777 |
| - host: 127.0.0.1 |
| name: ctl03 |
| params: check inter 10s fastinter 2s downinter 3s rise 3 fall 3 |
| port: 8777 |
| type: http |
| |
| # For haproxy/meta/sensu.yml |
| linux: |
| network: |
| fqdn: linux.ci.local |