diff options
| author | Kristian Lyngstol <kristian@bohemians.org> | 2016-02-21 01:17:31 +0100 | 
|---|---|---|
| committer | Kristian Lyngstol <kristian@bohemians.org> | 2016-02-21 01:17:31 +0100 | 
| commit | 6c0cb8c20eddd92f32620a189ec3bd6f603fd3c6 (patch) | |
| tree | d01e2bbda975820c7fc7a8e9b6b9228b0cc92dea /nms | |
| parent | d371e83f0035f20a49c354ca2a1fc0b88f733d27 (diff) | |
nms: Docker: Finally works "out of the box"
Need nms-dump.sql.gz
Running:
docker run -v /sys/fs/cgroup:/sys/fs/cgroup:ro --privileged --rm -ti --name=db nms-db
docker run -v /sys/fs/cgroup:/sys/fs/cgroup:ro --privileged --rm -ti --name=front --link=db:db nms-front
And then access front facing ip of, err, front.
Diffstat (limited to 'nms')
| -rw-r--r-- | nms/Dockerfile.in | 22 | ||||
| -rwxr-xr-x | nms/config.pm | 81 | ||||
| -rw-r--r-- | nms/pg_hba.conf | 102 | ||||
| -rw-r--r-- | nms/postgresql.conf | 616 | 
4 files changed, 816 insertions, 5 deletions
| diff --git a/nms/Dockerfile.in b/nms/Dockerfile.in index 40cecee..986dea9 100644 --- a/nms/Dockerfile.in +++ b/nms/Dockerfile.in @@ -82,25 +82,37 @@ RUN apt-get -y install			\  	perl-base			\  	perl-modules			\  	varnish				\ -	apache2				\ +	apache2	  RUN cd /srv/tgmanage/ && tools/get_mibs.sh -RUN sed -i 's/Listen 80/Listen 8080/g' /etc/apache2/ports.conf +# Apache shait  RUN a2dissite 000-default +RUN a2enmod cgi +RUN sed -i 's/Listen 80/Listen 8080/g' /etc/apache2/ports.conf  RUN ln -s /srv/tgmanage/web/etc/apache2/nms.tg16.gathering.org.conf /etc/apache2/sites-enabled/ - +#(no, not for production, it's just demo:demo during development) +RUN echo 'demo:$apr1$IKrQYF6x$0zmRciLR7Clc2tEEosyHV.' > /srv/tgmanage/web/.htpasswd  RUN systemctl enable apache2 +# Varnish shait  RUN rm /etc/varnish/default.vcl  RUN ln -s /srv/tgmanage/web/etc/varnish/nms.vcl /etc/varnish/default.vcl  RUN sed -i 's/6081/80/' /lib/systemd/system/varnish.service -RUN echo 'demo:$apr1$IKrQYF6x$0zmRciLR7Clc2tEEosyHV.' > /srv/tgmanage/web/.htpasswd -RUN a2enmod cgi  RUN systemctl enable varnish +ADD config.pm /srv/tgmanage/include/  @template nms-db  FROM nms-base  RUN apt-get install -y postgresql-doc-9.4 postgresql-9.4 +ADD nms-dump.sql.gz / +ADD postgresql.conf /etc/postgresql/9.4/main/ +ADD pg_hba.conf /etc/postgresql/9.4/main/ +RUN chown -R postgres:postgres /etc/postgresql/ +RUN chmod a+r /etc/postgresql/9.4/main/*conf +RUN service postgresql start && su postgres -c "psql --command=\"CREATE ROLE nms PASSWORD 'md5f6f0a94af5ec8b6001e41b8f06fd22d8' NOSUPERUSER NOCREATEDB NOCREATEROLE INHERIT LOGIN;\"" && su postgres -c "createdb -O nms nms" && service postgresql stop +RUN service postgresql start && su postgres -c "gunzip < /nms-dump.sql.gz | psql nms" && service postgresql stop +EXPOSE 5432 + diff --git a/nms/config.pm b/nms/config.pm new file mode 100755 index 0000000..faaeaa1 --- /dev/null +++ b/nms/config.pm @@ -0,0 +1,81 @@ +#! /usr/bin/perl +use strict; +use warnings; +use DBI; +package nms::config; + +# DB +our $db_name = "nms"; +our $db_host = "db"; +our $db_username = "nms"; +our $db_password = "foobar"; + +# NMS hash used for public NMS obfuscation of interface names +our $nms_hash = "<removed>"; + +# DHCP-servers +our $dhcp_server1 = "185.12.59.66"; # primary +our $dhcp_server2 = "185.12.59.2"; # secondary + +# TACACS-login for NMS +our $tacacs_user = "<removed>"; +our $tacacs_pass = "<removed>"; + +# SNMP read-only for NMS, etc +our $snmp_community = "<removed>"; + +# Telnet-timeout for smanagrun +our $telnet_timeout = 300; + +# IP/IPv6/DNS-info +our $tgname = "tg15"; +our $pri_hostname = "marty"; +our $pri_v4 = "185.12.59.66"; +our $pri_v6 = "2a02:ed02:1ee7::66"; +our $pri_net_v4 = "185.12.59.64/27"; +our $pri_net_v6 = "2a02:ed02:1ee7::/64"; + +our $sec_hostname = "emmet"; +our $sec_v4 = "185.12.59.2"; +our $sec_v6 = "2a02:ed02:1337::2"; +our $sec_net_v4 = "185.12.59.0/26"; +our $sec_net_v6 = "2a02:ed02:1337::/64"; + +# for RIPE to get reverse zones via DNS AXFR +# https://www.ripe.net/data-tools/dns/reverse-dns/how-to-set-up-reverse-delegation +our $ext_xfer  = "193.0.0.0/22; 2001:610:240::/48; 2001:67c:2e8::/48"; + +# allow XFR from NOC +our $noc_net  = "151.216.254.0/24; 2a02:ed02:254::/64"; + +# To generate new dnssec-key for ddns: +# dnssec-keygen -a HMAC-MD5 -b 128 -n HOST DHCP_UPDATER +our $ddns_key = "<removed>"; +our $ddns_to  = "127.0.0.1"; # just use localhost + +# Base networks +our $base_ipv4net = "151.216.128.0/17"; +our $base_ipv6net = "2a02:ed02::/32"; +our $ipv6zone = "2.0.d.e.2.0.a.2.ip6.arpa"; + +# extra networks that are outside the normal ranges +# that should have recursive DNS access +our $rec_net = "185.12.59.0/24"; + +# extra networks that are outside the normal ranges +# that should be added to DNS +our @extra_nets = ( +	'185.12.59.0/24',  # norsk nett +); + +# add WLC's +our $wlc1 = "151.216.128.130"; + +# add VOIP-server +our $voip1 = "<removed>"; + +# PXE-server (rest of bootstrap assumes $sec_v4/$sec_v6) +our $pxe_server_v4 = $sec_v4; +our $pxe_server_v6 = $sec_v6; + +1; diff --git a/nms/pg_hba.conf b/nms/pg_hba.conf new file mode 100644 index 0000000..d026e1a --- /dev/null +++ b/nms/pg_hba.conf @@ -0,0 +1,102 @@ +# PostgreSQL Client Authentication Configuration File +# =================================================== +# +# Refer to the "Client Authentication" section in the PostgreSQL +# documentation for a complete description of this file.  A short +# synopsis follows. +# +# This file controls: which hosts are allowed to connect, how clients +# are authenticated, which PostgreSQL user names they can use, which +# databases they can access.  Records take one of these forms: +# +# local      DATABASE  USER  METHOD  [OPTIONS] +# host       DATABASE  USER  ADDRESS  METHOD  [OPTIONS] +# hostssl    DATABASE  USER  ADDRESS  METHOD  [OPTIONS] +# hostnossl  DATABASE  USER  ADDRESS  METHOD  [OPTIONS] +# +# (The uppercase items must be replaced by actual values.) +# +# The first field is the connection type: "local" is a Unix-domain +# socket, "host" is either a plain or SSL-encrypted TCP/IP socket, +# "hostssl" is an SSL-encrypted TCP/IP socket, and "hostnossl" is a +# plain TCP/IP socket. +# +# DATABASE can be "all", "sameuser", "samerole", "replication", a +# database name, or a comma-separated list thereof. The "all" +# keyword does not match "replication". Access to replication +# must be enabled in a separate record (see example below). +# +# USER can be "all", a user name, a group name prefixed with "+", or a +# comma-separated list thereof.  In both the DATABASE and USER fields +# you can also write a file name prefixed with "@" to include names +# from a separate file. +# +# ADDRESS specifies the set of hosts the record matches.  It can be a +# host name, or it is made up of an IP address and a CIDR mask that is +# an integer (between 0 and 32 (IPv4) or 128 (IPv6) inclusive) that +# specifies the number of significant bits in the mask.  A host name +# that starts with a dot (.) matches a suffix of the actual host name. +# Alternatively, you can write an IP address and netmask in separate +# columns to specify the set of hosts.  Instead of a CIDR-address, you +# can write "samehost" to match any of the server's own IP addresses, +# or "samenet" to match any address in any subnet that the server is +# directly connected to. +# +# METHOD can be "trust", "reject", "md5", "password", "gss", "sspi", +# "ident", "peer", "pam", "ldap", "radius" or "cert".  Note that +# "password" sends passwords in clear text; "md5" is preferred since +# it sends encrypted passwords. +# +# OPTIONS are a set of options for the authentication in the format +# NAME=VALUE.  The available options depend on the different +# authentication methods -- refer to the "Client Authentication" +# section in the documentation for a list of which options are +# available for which authentication methods. +# +# Database and user names containing spaces, commas, quotes and other +# special characters must be quoted.  Quoting one of the keywords +# "all", "sameuser", "samerole" or "replication" makes the name lose +# its special character, and just match a database or username with +# that name. +# +# This file is read on server startup and when the postmaster receives +# a SIGHUP signal.  If you edit the file on a running system, you have +# to SIGHUP the postmaster for the changes to take effect.  You can +# use "pg_ctl reload" to do that. + +# Put your actual configuration here +# ---------------------------------- +# +# If you want to allow non-local connections, you need to add more +# "host" records.  In that case you will also need to make PostgreSQL +# listen on a non-local interface via the listen_addresses +# configuration parameter, or via the -i or -h command line switches. + + + + +# DO NOT DISABLE! +# If you change this first entry you will need to make sure that the +# database superuser can access the database using some other method. +# Noninteractive access to all databases is required during automatic +# maintenance (custom daily cronjobs, replication, and similar tasks). +# +# Database administrative login by Unix domain socket +local   all             postgres                                peer + +# TYPE  DATABASE        USER            ADDRESS                 METHOD + +# "local" is for Unix domain socket connections only +local   all             all                                     peer +# IPv4 local connections: +host    all             all             127.0.0.1/32            md5 +# IPv6 local connections: +host    all             all             ::1/128                 md5 + +host	nms		nms		172.17.0.0/16		md5 + +# Allow replication connections from localhost, by a user with the +# replication privilege. +#local   replication     postgres                                peer +#host    replication     postgres        127.0.0.1/32            md5 +#host    replication     postgres        ::1/128                 md5 diff --git a/nms/postgresql.conf b/nms/postgresql.conf new file mode 100644 index 0000000..23241a7 --- /dev/null +++ b/nms/postgresql.conf @@ -0,0 +1,616 @@ +# ----------------------------- +# PostgreSQL configuration file +# ----------------------------- +# +# This file consists of lines of the form: +# +#   name = value +# +# (The "=" is optional.)  Whitespace may be used.  Comments are introduced with +# "#" anywhere on a line.  The complete list of parameter names and allowed +# values can be found in the PostgreSQL documentation. +# +# The commented-out settings shown in this file represent the default values. +# Re-commenting a setting is NOT sufficient to revert it to the default value; +# you need to reload the server. +# +# This file is read on server startup and when the server receives a SIGHUP +# signal.  If you edit the file on a running system, you have to SIGHUP the +# server for the changes to take effect, or use "pg_ctl reload".  Some +# parameters, which are marked below, require a server shutdown and restart to +# take effect. +# +# Any parameter can also be given as a command-line option to the server, e.g., +# "postgres -c log_connections=on".  Some parameters can be changed at run time +# with the "SET" SQL command. +# +# Memory units:  kB = kilobytes        Time units:  ms  = milliseconds +#                MB = megabytes                     s   = seconds +#                GB = gigabytes                     min = minutes +#                TB = terabytes                     h   = hours +#                                                   d   = days + + +#------------------------------------------------------------------------------ +# FILE LOCATIONS +#------------------------------------------------------------------------------ + +# The default values of these variables are driven from the -D command-line +# option or PGDATA environment variable, represented here as ConfigDir. + +data_directory = '/var/lib/postgresql/9.4/main'		# use data in another directory +					# (change requires restart) +hba_file = '/etc/postgresql/9.4/main/pg_hba.conf'	# host-based authentication file +					# (change requires restart) +ident_file = '/etc/postgresql/9.4/main/pg_ident.conf'	# ident configuration file +					# (change requires restart) + +# If external_pid_file is not explicitly set, no extra PID file is written. +external_pid_file = '/var/run/postgresql/9.4-main.pid'			# write an extra PID file +					# (change requires restart) + + +#------------------------------------------------------------------------------ +# CONNECTIONS AND AUTHENTICATION +#------------------------------------------------------------------------------ + +# - Connection Settings - + +#listen_addresses = 'localhost'		# what IP address(es) to listen on; +					# comma-separated list of addresses; +					# defaults to 'localhost'; use '*' for all +					# (change requires restart) +listen_addresses = '*' +port = 5432				# (change requires restart) +max_connections = 50			# (change requires restart) +# Note:  Increasing max_connections costs ~400 bytes of shared memory per +# connection slot, plus lock space (see max_locks_per_transaction). +#superuser_reserved_connections = 3	# (change requires restart) +unix_socket_directories = '/var/run/postgresql'	# comma-separated list of directories +					# (change requires restart) +#unix_socket_group = ''			# (change requires restart) +#unix_socket_permissions = 0777		# begin with 0 to use octal notation +					# (change requires restart) +#bonjour = off				# advertise server via Bonjour +					# (change requires restart) +#bonjour_name = ''			# defaults to the computer name +					# (change requires restart) + +# - Security and Authentication - + +#authentication_timeout = 1min		# 1s-600s +ssl = true				# (change requires restart) +#ssl_ciphers = 'HIGH:MEDIUM:+3DES:!aNULL' # allowed SSL ciphers +					# (change requires restart) +#ssl_prefer_server_ciphers = on		# (change requires restart) +#ssl_ecdh_curve = 'prime256v1'		# (change requires restart) +#ssl_renegotiation_limit = 0		# amount of data between renegotiations +ssl_cert_file = '/etc/ssl/certs/ssl-cert-snakeoil.pem'		# (change requires restart) +ssl_key_file = '/etc/ssl/private/ssl-cert-snakeoil.key'		# (change requires restart) +#ssl_ca_file = ''			# (change requires restart) +#ssl_crl_file = ''			# (change requires restart) +#password_encryption = on +#db_user_namespace = off + +# GSSAPI using Kerberos +#krb_server_keyfile = '' +#krb_caseins_users = off + +# - TCP Keepalives - +# see "man 7 tcp" for details + +#tcp_keepalives_idle = 0		# TCP_KEEPIDLE, in seconds; +					# 0 selects the system default +#tcp_keepalives_interval = 0		# TCP_KEEPINTVL, in seconds; +					# 0 selects the system default +#tcp_keepalives_count = 0		# TCP_KEEPCNT; +					# 0 selects the system default + + +#------------------------------------------------------------------------------ +# RESOURCE USAGE (except WAL) +#------------------------------------------------------------------------------ + +# - Memory - + +shared_buffers = 2048MB			# min 128kB +					# (change requires restart) +#huge_pages = try			# on, off, or try +					# (change requires restart) +#temp_buffers = 8MB			# min 800kB +#max_prepared_transactions = 0		# zero disables the feature +					# (change requires restart) +# Note:  Increasing max_prepared_transactions costs ~600 bytes of shared memory +# per transaction slot, plus lock space (see max_locks_per_transaction). +# It is not advisable to set max_prepared_transactions nonzero unless you +# actively intend to use prepared transactions. +#work_mem = 4MB				# min 64kB +#maintenance_work_mem = 64MB		# min 1MB +#autovacuum_work_mem = -1		# min 1MB, or -1 to use maintenance_work_mem +#max_stack_depth = 2MB			# min 100kB +dynamic_shared_memory_type = posix	# the default is the first option +					# supported by the operating system: +					#   posix +					#   sysv +					#   windows +					#   mmap +					# use none to disable dynamic shared memory + +# - Disk - + +#temp_file_limit = -1			# limits per-session temp file space +					# in kB, or -1 for no limit + +# - Kernel Resource Usage - + +#max_files_per_process = 1000		# min 25 +					# (change requires restart) +#shared_preload_libraries = ''		# (change requires restart) + +# - Cost-Based Vacuum Delay - + +#vacuum_cost_delay = 0			# 0-100 milliseconds +#vacuum_cost_page_hit = 1		# 0-10000 credits +#vacuum_cost_page_miss = 10		# 0-10000 credits +#vacuum_cost_page_dirty = 20		# 0-10000 credits +#vacuum_cost_limit = 200		# 1-10000 credits + +# - Background Writer - + +#bgwriter_delay = 200ms			# 10-10000ms between rounds +#bgwriter_lru_maxpages = 100		# 0-1000 max buffers written/round +#bgwriter_lru_multiplier = 2.0		# 0-10.0 multipler on buffers scanned/round + +# - Asynchronous Behavior - + +#effective_io_concurrency = 1		# 1-1000; 0 disables prefetching +#max_worker_processes = 8 + + +#------------------------------------------------------------------------------ +# WRITE AHEAD LOG +#------------------------------------------------------------------------------ + +# - Settings - + +#wal_level = minimal			# minimal, archive, hot_standby, or logical +					# (change requires restart) +#fsync = on				# turns forced synchronization on or off +#synchronous_commit = on		# synchronization level; +					# off, local, remote_write, or on +#wal_sync_method = fsync		# the default is the first option +					# supported by the operating system: +					#   open_datasync +					#   fdatasync (default on Linux) +					#   fsync +					#   fsync_writethrough +					#   open_sync +#full_page_writes = on			# recover from partial page writes +#wal_log_hints = off			# also do full page writes of non-critical updates +					# (change requires restart) +#wal_buffers = -1			# min 32kB, -1 sets based on shared_buffers +					# (change requires restart) +#wal_writer_delay = 200ms		# 1-10000 milliseconds + +#commit_delay = 0			# range 0-100000, in microseconds +#commit_siblings = 5			# range 1-1000 + +# - Checkpoints - + +#checkpoint_segments = 3		# in logfile segments, min 1, 16MB each +#checkpoint_timeout = 5min		# range 30s-1h +#checkpoint_completion_target = 0.5	# checkpoint target duration, 0.0 - 1.0 +#checkpoint_warning = 30s		# 0 disables + +# - Archiving - + +#archive_mode = off		# allows archiving to be done +				# (change requires restart) +#archive_command = ''		# command to use to archive a logfile segment +				# placeholders: %p = path of file to archive +				#               %f = file name only +				# e.g. 'test ! -f /mnt/server/archivedir/%f && cp %p /mnt/server/archivedir/%f' +#archive_timeout = 0		# force a logfile segment switch after this +				# number of seconds; 0 disables + + +#------------------------------------------------------------------------------ +# REPLICATION +#------------------------------------------------------------------------------ + +# - Sending Server(s) - + +# Set these on the master and on any standby that will send replication data. + +#max_wal_senders = 0		# max number of walsender processes +				# (change requires restart) +#wal_keep_segments = 0		# in logfile segments, 16MB each; 0 disables +#wal_sender_timeout = 60s	# in milliseconds; 0 disables + +#max_replication_slots = 0	# max number of replication slots +				# (change requires restart) + +# - Master Server - + +# These settings are ignored on a standby server. + +#synchronous_standby_names = ''	# standby servers that provide sync rep +				# comma-separated list of application_name +				# from standby(s); '*' = all +#vacuum_defer_cleanup_age = 0	# number of xacts by which cleanup is delayed + +# - Standby Servers - + +# These settings are ignored on a master server. + +#hot_standby = off			# "on" allows queries during recovery +					# (change requires restart) +#max_standby_archive_delay = 30s	# max delay before canceling queries +					# when reading WAL from archive; +					# -1 allows indefinite delay +#max_standby_streaming_delay = 30s	# max delay before canceling queries +					# when reading streaming WAL; +					# -1 allows indefinite delay +#wal_receiver_status_interval = 10s	# send replies at least this often +					# 0 disables +#hot_standby_feedback = off		# send info from standby to prevent +					# query conflicts +#wal_receiver_timeout = 60s		# time that receiver waits for +					# communication from master +					# in milliseconds; 0 disables + + +#------------------------------------------------------------------------------ +# QUERY TUNING +#------------------------------------------------------------------------------ + +# - Planner Method Configuration - + +#enable_bitmapscan = on +#enable_hashagg = on +#enable_hashjoin = on +#enable_indexscan = on +#enable_indexonlyscan = on +#enable_material = on +#enable_mergejoin = on +#enable_nestloop = on +#enable_seqscan = on +#enable_sort = on +#enable_tidscan = on + +# - Planner Cost Constants - + +#seq_page_cost = 1.0			# measured on an arbitrary scale +#random_page_cost = 4.0			# same scale as above +#cpu_tuple_cost = 0.01			# same scale as above +#cpu_index_tuple_cost = 0.005		# same scale as above +#cpu_operator_cost = 0.0025		# same scale as above +#effective_cache_size = 4GB + +# - Genetic Query Optimizer - + +#geqo = on +#geqo_threshold = 12 +#geqo_effort = 5			# range 1-10 +#geqo_pool_size = 0			# selects default based on effort +#geqo_generations = 0			# selects default based on effort +#geqo_selection_bias = 2.0		# range 1.5-2.0 +#geqo_seed = 0.0			# range 0.0-1.0 + +# - Other Planner Options - + +#default_statistics_target = 100	# range 1-10000 +#constraint_exclusion = partition	# on, off, or partition +#cursor_tuple_fraction = 0.1		# range 0.0-1.0 +#from_collapse_limit = 8 +#join_collapse_limit = 8		# 1 disables collapsing of explicit +					# JOIN clauses + + +#------------------------------------------------------------------------------ +# ERROR REPORTING AND LOGGING +#------------------------------------------------------------------------------ + +# - Where to Log - + +#log_destination = 'stderr'		# Valid values are combinations of +					# stderr, csvlog, syslog, and eventlog, +					# depending on platform.  csvlog +					# requires logging_collector to be on. + +# This is used when logging to stderr: +#logging_collector = off		# Enable capturing of stderr and csvlog +					# into log files. Required to be on for +					# csvlogs. +					# (change requires restart) + +# These are only used if logging_collector is on: +#log_directory = 'pg_log'		# directory where log files are written, +					# can be absolute or relative to PGDATA +#log_filename = 'postgresql-%Y-%m-%d_%H%M%S.log'	# log file name pattern, +					# can include strftime() escapes +#log_file_mode = 0600			# creation mode for log files, +					# begin with 0 to use octal notation +#log_truncate_on_rotation = off		# If on, an existing log file with the +					# same name as the new log file will be +					# truncated rather than appended to. +					# But such truncation only occurs on +					# time-driven rotation, not on restarts +					# or size-driven rotation.  Default is +					# off, meaning append to existing files +					# in all cases. +#log_rotation_age = 1d			# Automatic rotation of logfiles will +					# happen after that time.  0 disables. +#log_rotation_size = 10MB		# Automatic rotation of logfiles will +					# happen after that much log output. +					# 0 disables. + +# These are relevant when logging to syslog: +#syslog_facility = 'LOCAL0' +#syslog_ident = 'postgres' + +# This is only relevant when logging to eventlog (win32): +#event_source = 'PostgreSQL' + +# - When to Log - + +#client_min_messages = notice		# values in order of decreasing detail: +					#   debug5 +					#   debug4 +					#   debug3 +					#   debug2 +					#   debug1 +					#   log +					#   notice +					#   warning +					#   error + +#log_min_messages = warning		# values in order of decreasing detail: +					#   debug5 +					#   debug4 +					#   debug3 +					#   debug2 +					#   debug1 +					#   info +					#   notice +					#   warning +					#   error +					#   log +					#   fatal +					#   panic + +#log_min_error_statement = error	# values in order of decreasing detail: +					#   debug5 +					#   debug4 +					#   debug3 +					#   debug2 +					#   debug1 +					#   info +					#   notice +					#   warning +					#   error +					#   log +					#   fatal +					#   panic (effectively off) + +#log_min_duration_statement = -1	# -1 is disabled, 0 logs all statements +					# and their durations, > 0 logs only +					# statements running at least this number +					# of milliseconds + + +# - What to Log - + +#debug_print_parse = off +#debug_print_rewritten = off +#debug_print_plan = off +#debug_pretty_print = on +#log_checkpoints = off +#log_connections = off +#log_disconnections = off +#log_duration = off +#log_error_verbosity = default		# terse, default, or verbose messages +#log_hostname = off +log_line_prefix = '%t [%p-%l] %q%u@%d '			# special values: +					#   %a = application name +					#   %u = user name +					#   %d = database name +					#   %r = remote host and port +					#   %h = remote host +					#   %p = process ID +					#   %t = timestamp without milliseconds +					#   %m = timestamp with milliseconds +					#   %i = command tag +					#   %e = SQL state +					#   %c = session ID +					#   %l = session line number +					#   %s = session start timestamp +					#   %v = virtual transaction ID +					#   %x = transaction ID (0 if none) +					#   %q = stop here in non-session +					#        processes +					#   %% = '%' +					# e.g. '<%u%%%d> ' +#log_lock_waits = off			# log lock waits >= deadlock_timeout +#log_statement = 'none'			# none, ddl, mod, all +#log_temp_files = -1			# log temporary files equal or larger +					# than the specified size in kilobytes; +					# -1 disables, 0 logs all temp files +log_timezone = 'UTC' + + +#------------------------------------------------------------------------------ +# RUNTIME STATISTICS +#------------------------------------------------------------------------------ + +# - Query/Index Statistics Collector - + +#track_activities = on +#track_counts = on +#track_io_timing = off +#track_functions = none			# none, pl, all +#track_activity_query_size = 1024	# (change requires restart) +#update_process_title = on +stats_temp_directory = '/var/run/postgresql/9.4-main.pg_stat_tmp' + + +# - Statistics Monitoring - + +#log_parser_stats = off +#log_planner_stats = off +#log_executor_stats = off +#log_statement_stats = off + + +#------------------------------------------------------------------------------ +# AUTOVACUUM PARAMETERS +#------------------------------------------------------------------------------ + +#autovacuum = on			# Enable autovacuum subprocess?  'on' +					# requires track_counts to also be on. +#log_autovacuum_min_duration = -1	# -1 disables, 0 logs all actions and +					# their durations, > 0 logs only +					# actions running at least this number +					# of milliseconds. +#autovacuum_max_workers = 3		# max number of autovacuum subprocesses +					# (change requires restart) +#autovacuum_naptime = 1min		# time between autovacuum runs +#autovacuum_vacuum_threshold = 50	# min number of row updates before +					# vacuum +#autovacuum_analyze_threshold = 50	# min number of row updates before +					# analyze +#autovacuum_vacuum_scale_factor = 0.2	# fraction of table size before vacuum +#autovacuum_analyze_scale_factor = 0.1	# fraction of table size before analyze +#autovacuum_freeze_max_age = 200000000	# maximum XID age before forced vacuum +					# (change requires restart) +#autovacuum_multixact_freeze_max_age = 400000000	# maximum multixact age +					# before forced vacuum +					# (change requires restart) +#autovacuum_vacuum_cost_delay = 20ms	# default vacuum cost delay for +					# autovacuum, in milliseconds; +					# -1 means use vacuum_cost_delay +#autovacuum_vacuum_cost_limit = -1	# default vacuum cost limit for +					# autovacuum, -1 means use +					# vacuum_cost_limit + + +#------------------------------------------------------------------------------ +# CLIENT CONNECTION DEFAULTS +#------------------------------------------------------------------------------ + +# - Statement Behavior - + +#search_path = '"$user",public'		# schema names +#default_tablespace = ''		# a tablespace name, '' uses the default +#temp_tablespaces = ''			# a list of tablespace names, '' uses +					# only default tablespace +#check_function_bodies = on +#default_transaction_isolation = 'read committed' +#default_transaction_read_only = off +#default_transaction_deferrable = off +#session_replication_role = 'origin' +#statement_timeout = 0			# in milliseconds, 0 is disabled +#lock_timeout = 0			# in milliseconds, 0 is disabled +#vacuum_freeze_min_age = 50000000 +#vacuum_freeze_table_age = 150000000 +#vacuum_multixact_freeze_min_age = 5000000 +#vacuum_multixact_freeze_table_age = 150000000 +#bytea_output = 'hex'			# hex, escape +#xmlbinary = 'base64' +#xmloption = 'content' +#gin_fuzzy_search_limit = 0 + +# - Locale and Formatting - + +datestyle = 'iso, mdy' +#intervalstyle = 'postgres' +timezone = 'UTC' +#timezone_abbreviations = 'Default'     # Select the set of available time zone +					# abbreviations.  Currently, there are +					#   Default +					#   Australia (historical usage) +					#   India +					# You can create your own file in +					# share/timezonesets/. +#extra_float_digits = 0			# min -15, max 3 +#client_encoding = sql_ascii		# actually, defaults to database +					# encoding + +# These settings are initialized by initdb, but they can be changed. +lc_messages = 'en_US.utf8'			# locale for system error message +					# strings +lc_monetary = 'en_US.utf8'			# locale for monetary formatting +lc_numeric = 'en_US.utf8'			# locale for number formatting +lc_time = 'en_US.utf8'				# locale for time formatting + +# default configuration for text search +default_text_search_config = 'pg_catalog.english' + +# - Other Defaults - + +#dynamic_library_path = '$libdir' +#local_preload_libraries = '' +#session_preload_libraries = '' + + +#------------------------------------------------------------------------------ +# LOCK MANAGEMENT +#------------------------------------------------------------------------------ + +#deadlock_timeout = 1s +#max_locks_per_transaction = 64		# min 10 +					# (change requires restart) +# Note:  Each lock table slot uses ~270 bytes of shared memory, and there are +# max_locks_per_transaction * (max_connections + max_prepared_transactions) +# lock table slots. +#max_pred_locks_per_transaction = 64	# min 10 +					# (change requires restart) + + +#------------------------------------------------------------------------------ +# VERSION/PLATFORM COMPATIBILITY +#------------------------------------------------------------------------------ + +# - Previous PostgreSQL Versions - + +#array_nulls = on +#backslash_quote = safe_encoding	# on, off, or safe_encoding +#default_with_oids = off +#escape_string_warning = on +#lo_compat_privileges = off +#quote_all_identifiers = off +#sql_inheritance = on +#standard_conforming_strings = on +#synchronize_seqscans = on + +# - Other Platforms and Clients - + +#transform_null_equals = off + + +#------------------------------------------------------------------------------ +# ERROR HANDLING +#------------------------------------------------------------------------------ + +#exit_on_error = off			# terminate session on any error? +#restart_after_crash = on		# reinitialize after backend crash? + + +#------------------------------------------------------------------------------ +# CONFIG FILE INCLUDES +#------------------------------------------------------------------------------ + +# These options allow settings to be loaded from files other than the +# default postgresql.conf. + +#include_dir = 'conf.d'			# include files ending in '.conf' from +					# directory 'conf.d' +#include_if_exists = 'exists.conf'	# include file only if it exists +#include = 'special.conf'		# include file + + +#------------------------------------------------------------------------------ +# CUSTOMIZED OPTIONS +#------------------------------------------------------------------------------ + +# Add settings for extensions here | 
