Falencastro Designate

  • By Felipe Alencastro
  • Cloud
Channel Revision Published Runs on
latest/stable 2 06 Dec 2021
Ubuntu 21.10 Ubuntu 21.04 Ubuntu 20.10 Ubuntu 20.04 Ubuntu 18.04 Ubuntu 16.04
juju deploy falencastro-designate
Show information

Platform:

Ubuntu
21.10 21.04 20.10 20.04 18.04 16.04

  • action-managed-upgrade | boolean

    If True enables openstack upgrades for this charm via juju actions. You will still need to set openstack-origin to the new repository but instead of an upgrade running automatically across all units, it will wait for you to execute the openstack-upgrade action for this charm on each unit. If False it will revert to existing behavior of upgrading all units on config change.

  • also-notifies | string

    Space delimited list of DNS servers which should be notified on every zone change in addition to the backend servers. List is of the form also_notify_ip:also_notify_port

  • debug | boolean

    Enable debug logging

  • default-soa-expire | int

    Default: 86400

    Default SOA expire value (in seconds) to specify how long a secondary will still treat its copy of the zone data as valid if it can't contact the primary.

  • default-soa-minimum | int

    Default SOA minimum value (in seconds) how long should cache a negative response.

  • default-soa-refresh-max | int

    SOA refresh indicates the time (in seconds) when the slave will try to refresh the zone from the master, Designate randomizes the refresh time using `default-soa-refresh-min` and `default-soa-refresh-max` as lower and upper boundaries respectively.

  • default-soa-refresh-min | int

    SOA refresh indicates the time (in seconds) when the slave will try to refresh the zone from the master, Designate randomizes the refresh time using `default-soa-refresh-min` and `default-soa-refresh-max` as lower and upper boundaries respectively.

  • default-soa-retry | int

    Defines the time (in seconds) between retries for the SOA record if the slave (secondary) fails to contact the master when refresh has expired.

  • default-ttl | int

    Default TTL (in seconds) for newly created zones.

  • dns-ha | boolean

    Use DNS HA with MAAS 2.0. Note if this is set do not set vip settings below.

  • dns-slaves | string

    List of DNS slaves which will accept addzone/delzone rndc commands from Designate. List is of the form slave_ip:rndc_port:rndc_key. This should only be used if DNS servers are outside of Juju control. Using the designate-bind charm is the prefered approach.

  • enable-admin-api | boolean

    Enables experimental admin API for Designate.

  • haproxy-client-timeout | int

    Client timeout configuration in ms for haproxy, used in HA configurations. If not provided, default value of 90000ms is used.

  • haproxy-connect-timeout | int

    Connect timeout configuration in ms for haproxy, used in HA configurations. If not provided, default value of 9000ms is used.

  • haproxy-queue-timeout | int

    Queue timeout configuration in ms for haproxy, used in HA configurations. If not provided, default value of 9000ms is used.

  • haproxy-server-timeout | int

    Server timeout configuration in ms for haproxy, used in HA configurations. If not provided, default value of 90000ms is used.

  • infoblox-options | string

    YAML-map formatted string with parameters for using infoblox as a backend Valid options are host, port, wapi_url, username, password, multi_tenant, sslverify, http_pool_connections, http_pool_maxsize, dns_view, ns_group and network_view e.g. '{ host: "192.168.0.100", wapi_url: "https://infoblox.example.org/wapi/v2.9/";, username: "admin", password: "admin_password", dns_view: "default", sslverify: "false", ns_group: "OpenStack_Servers" }' This should only be used if DNS servers are outside of Juju control. Using the designate-bind charm is the prefered approach.

  • managed-resource-email | string

    Default: hostmaster@example.com

    Define a email to use for managed resources like domains created by the FloatingIP.

  • nameservers | string

    Space delimited list of nameservers. These are the nameservers that have been provided to the domain registrar in order to delegate the domain to Designate. e.g. "ns1.example.com. ns2.example.com." This config value is required for Queens and later.

  • neutron-domain | string

    Domain to add floating IP records to. (NOTE: This option is obsolete starting from OpenStack Mitaka release)

  • neutron-domain-email | string

    Email address of the person responsible for the domain. (NOTE: This option is obsolete starting from OpenStack Mitaka release)

  • neutron-record-format | string

    Default: %(octet0)s-%(octet1)s-%(octet2)s-%(octet3)s.%(zone)s

    Format of floating IP global records. (NOTE: This option is obsolete starting from OpenStack Mitaka release)

  • neutron-record-formatv6 | string

    Default: %(hostname)s.%(tenant_id)s.%(zone)s

    Format of floating IPv6 global records. (NOTE: This option is obsolete starting from OpenStack Mitaka release)

  • nova-domain | string

    Domain to add records for new instances to (NOTE: This option is obsolete starting from OpenStack Mitaka release)

  • nova-domain-email | string

    Email address of the person responsible for the domain. (NOTE: This option is obsolete starting from OpenStack Mitaka release)

  • nova-record-format | string

    Default: %(hostname)s.%(tenant_id)s.%(zone)s

    Format of floating IP global records. (NOTE: This option is obsolete starting from OpenStack Mitaka release)

  • nova-record-formatv6 | string

    Default: %(hostname)s.%(tenant_id)s.%(zone)s

    Format of floating IPv6 global records. (NOTE: This option is obsolete starting from OpenStack Mitaka release)

  • openstack-origin | string

    Default: distro

    Repository from which to install OpenStack. May be one of the following: distro (default) ppa:somecustom/ppa (PPA name must include OpenStack Release) deb url sources entry|key id or a supported Ubuntu Cloud Archive pocket. Supported Ubuntu Cloud Archive pockets include: cloud:trusty-liberty cloud:trusty-juno cloud:trusty-kilo cloud:trusty-liberty cloud:trusty-mitaka Note that updating this setting to a source that is known to provide a later version of OpenStack will trigger a software upgrade.

  • os-admin-hostname | string

    The hostname or address of the admin endpoints created in the keystone identity provider. . This value will be used for admin endpoints. For example, an os-admin-hostname set to 'api-admin.example.com' with ssl enabled will create the following endpoint for neutron-api: . https://api-admin.example.com:9696/

  • os-admin-network | string

    The IP address and netmask of the OpenStack Admin network (e.g., 192.168.0.0/24) . This network will be used for admin endpoints.

  • os-internal-hostname | string

    The hostname or address of the internal endpoints created in the keystone identity provider. . This value will be used for internal endpoints. For example, an os-internal-hostname set to 'api-internal.example.com' with ssl enabled will create the following endpoint for neutron-api: . https://api-internal.example.com:9696/

  • os-internal-network | string

    The IP address and netmask of the OpenStack Internal network (e.g., 192.168.0.0/24) . This network will be used for internal endpoints.

  • os-public-hostname | string

    The hostname or address of the public endpoints created in the keystone identity provider. . This value will be used for public endpoints. For example, an os-public-hostname set to 'api-public.example.com' with ssl enabled will create the following endpoint for neutron-api: . https://api-public.example.com:9696/

  • os-public-network | string

    The IP address and netmask of the OpenStack Public network (e.g., 192.168.0.0/24) . This network will be used for public endpoints.

  • region | string

    Default: RegionOne

    OpenStack Region

  • ssl_ca | string

    TLS CA to use to communicate with other components in a deployment. . __NOTE__: This configuration option will take precedence over any certificates received over the ``certificates`` relation.

  • ssl_cert | string

    TLS certificate to install and use for any listening services. . __NOTE__: This configuration option will take precedence over any certificates received over the ``certificates`` relation.

  • ssl_key | string

    TLS key to use with certificate specified as ``ssl_cert``. . __NOTE__: This configuration option will take precedence over any certificates received over the ``certificates`` relation.

  • use-internal-endpoints | boolean

    Openstack mostly defaults to using public endpoints for internal communication between services. If set to True this option will configure services to use internal endpoints where possible.

  • use-policyd-override | boolean

    If True then use the resource file named 'policyd-override' to install override YAML files in the service's policy.d directory. The resource file should be a ZIP file containing at least one yaml file with a .yaml or .yml extension. If False then remove the overrides.

  • use-syslog | boolean

    Setting this to True will allow supporting services to log to syslog.

  • verbose | boolean

    Enable verbose logging

  • vip | string

    Virtual IP(s) to use to front API services in HA configuration. If multiple networks are being used, a VIP should be provided for each network, separated by spaces.

  • vip_cidr | int

    Default: 24

    Default CIDR netmask to use for HA vip when it cannot be automatically determined.

  • vip_iface | string

    Default: eth0

    Default network interface to use for HA vip when it cannot be automatically determined.

  • worker-multiplier | float

    The CPU core multiplier to use when configuring worker processes. By default, the number of workers for each daemon is set to twice the number of CPU cores a service unit has. This default value will be capped to 4 workers unless this configuration option is set.

  • zone-purge-time-threshold | int

    Default: 3600

    Default for how old deleted zones should be (deleted_at) to be purged, in seconds.