Compare commits

...

2 commits

Author SHA1 Message Date
2a86c1bd88
Add caddy metrics 2023-12-28 18:34:07 +01:00
36c8cf2914
Refactor host variables 2023-12-28 16:16:31 +01:00
11 changed files with 50 additions and 43 deletions

View file

@ -1,8 +0,0 @@
ansible_port: "{{ vault_node001.ansible_port }}"
ansible_user: "{{ vault_node001.ansible_user }}"
host_backup:
backup:
hc_uid: "{{ vault_node001.backup.hc_uid }}"
uptime_kuma_token: "{{ vault_node001.backup.uptime_kuma_token }}"
volumes:
- minecraft-2_data

View file

@ -1,17 +0,0 @@
ansible_port: "{{ vault_node002.ansible_port }}"
ansible_user: "{{ vault_node002.ansible_user }}"
host_backup:
backup:
hc_uid: "{{ vault_node002.backup.hc_uid }}"
uptime_kuma_token: "{{ vault_node002.backup.uptime_kuma_token }}"
volumes:
- forgejo_data
- homebox_data
- influxdb_data
- jellyfin_config
#- jellyfin_media # TODO
- reitanlage-oranienburg_data
- synapse_media_store
- tandoor_mediafiles
- uptime-kuma_data

View file

@ -1,8 +0,0 @@
ansible_port: "{{ vault_node003.ansible_port }}"
ansible_user: "{{ vault_node003.ansible_user }}"
host_backup:
backup:
hc_uid: "{{ vault_node003.backup.hc_uid }}"
uptime_kuma_token: "{{ vault_node003.backup.uptime_kuma_token }}"
volumes:
- minio_data

View file

@ -4,7 +4,47 @@ all:
ansible_connection: local ansible_connection: local
node001: node001:
ansible_host: node001.serguzim.net ansible_host: node001.serguzim.net
ansible_port: "{{ vault_node001.ansible_port }}"
ansible_user: "{{ vault_node001.ansible_user }}"
host_vpn:
domain: node001.vpn.serguzim.net
ip: 100.64.0.1
host_backup:
hc_uid: "{{ vault_node001.backup.hc_uid }}"
uptime_kuma_token: "{{ vault_node001.backup.uptime_kuma_token }}"
volumes:
- minecraft-2_data
node002: node002:
ansible_host: node002.serguzim.net ansible_host: node002.serguzim.net
ansible_port: "{{ vault_node002.ansible_port }}"
ansible_user: "{{ vault_node002.ansible_user }}"
host_vpn:
domain: node002.vpn.serguzim.net
ip: 100.64.0.2
host_backup:
hc_uid: "{{ vault_node002.backup.hc_uid }}"
uptime_kuma_token: "{{ vault_node002.backup.uptime_kuma_token }}"
volumes:
- forgejo_data
- homebox_data
- influxdb_data
- jellyfin_config
#- jellyfin_media # TODO
- reitanlage-oranienburg_data
- synapse_media_store
- tandoor_mediafiles
- uptime-kuma_data
node003: node003:
ansible_host: node003.serguzim.net ansible_host: node003.serguzim.net
ansible_port: "{{ vault_node003.ansible_port }}"
ansible_user: "{{ vault_node003.ansible_user }}"
host_vpn:
domain: node003.vpn.serguzim.net
ip: 100.64.0.3
host_backup:
hc_uid: "{{ vault_node003.backup.hc_uid }}"
uptime_kuma_token: "{{ vault_node003.backup.uptime_kuma_token }}"
volumes:
- minio_data

View file

@ -12,7 +12,6 @@
tags: [caddy, reverse-proxy, webserver] tags: [caddy, reverse-proxy, webserver]
vars: vars:
caddy_ports_extra: caddy_ports_extra:
- 8008:8008
- 8448:8448 - 8448:8448

View file

@ -2,11 +2,11 @@
backup_svc: backup_svc:
name: backup name: backup
backup_volumes_service: "{{ host_backup.backup.volumes | map_backup_volumes_service }}" backup_volumes_service: "{{ host_backup.volumes | map_backup_volumes_service }}"
backup_env: backup_env:
HC_UID: "{{ host_backup.backup.hc_uid }}" HC_UID: "{{ host_backup.hc_uid }}"
UPTIME_KUMA_TOKEN: "{{ host_backup.backup.uptime_kuma_token }}" UPTIME_KUMA_TOKEN: "{{ host_backup.uptime_kuma_token }}"
RESTIC_REPOSITORY: "{{ vault_backup.restic.repository }}" RESTIC_REPOSITORY: "{{ vault_backup.restic.repository }}"
RESTIC_PASSWORD: "{{ vault_backup.restic.password }}" RESTIC_PASSWORD: "{{ vault_backup.restic.password }}"
@ -28,4 +28,4 @@ backup_compose:
- --retry-lock=1m - --retry-lock=1m
restart: never restart: never
hostname: "{{ ansible_facts.hostname }}" hostname: "{{ ansible_facts.hostname }}"
volumes: "{{ host_backup.backup.volumes | map_backup_volumes }}" volumes: "{{ host_backup.volumes | map_backup_volumes }}"

View file

@ -2,6 +2,7 @@
email {{ admin_email }} email {{ admin_email }}
servers { servers {
metrics
strict_sni_host on strict_sni_host on
} }
} }

View file

@ -8,12 +8,15 @@ caddy_ports_default:
- 80:80 - 80:80
- 443:443 - 443:443
- 443:443/udp - 443:443/udp
- "{{ host_vpn.ip }}:2019:2019"
caddy_ports: "{{ caddy_ports_default | union(caddy_ports_extra) }}" caddy_ports: "{{ caddy_ports_default | union(caddy_ports_extra) }}"
caddy_svc: caddy_svc:
name: caddy name: caddy
caddy_env: caddy_env:
CADDY_ADMIN: 0.0.0.0:2019
ACMEDNS_USER: "{{ caddy_acmedns_user }}" ACMEDNS_USER: "{{ caddy_acmedns_user }}"
ACMEDNS_PASS: "{{ caddy_acmedns_pass }}" ACMEDNS_PASS: "{{ caddy_acmedns_pass }}"
ACMEDNS_SUBD: "{{ caddy_acmedns_subd }}" ACMEDNS_SUBD: "{{ caddy_acmedns_subd }}"

View file

@ -8,7 +8,6 @@ forgejo_svc:
host: "{{ postgres.host }}" host: "{{ postgres.host }}"
port: "{{ postgres.port }}" port: "{{ postgres.port }}"
ssh_port: 22 ssh_port: 22
ssh_port_alt: 3022
forgejo_env: forgejo_env:
FORGEJO__database__DB_TYPE: postgres FORGEJO__database__DB_TYPE: postgres
@ -90,6 +89,5 @@ forgejo_compose:
app: app:
ports: ports:
- "{{ svc.ssh_port }}:{{ svc.ssh_port }}" - "{{ svc.ssh_port }}:{{ svc.ssh_port }}"
- "{{ svc.ssh_port_alt }}:{{ svc.ssh_port }}"
volumes: volumes:
data: data:

View file

@ -12,10 +12,8 @@ synapse_svc:
reverse_proxy synapse:8008 reverse_proxy synapse:8008
} }
extra_svcs: extra_svcs:
- domain: msrg.cc:8008 - domain: matrix.msrg.cc:8448
additional_domains: additional_domains:
- matrix.msrg.cc:8448
- matrix.msrg.cc:8008
- msrg.cc:8448 - msrg.cc:8448
docker_host: synapse docker_host: synapse
port: 8008 port: 8008

View file

@ -8,6 +8,7 @@ telegraf_svc:
bucket: metrics bucket: metrics
prometheus_unprotected: prometheus_unprotected:
urls: urls:
- http://node002.vpn.serguzim.net:2019/metrics
- https://matrix.msrg.cc/_synapse/metrics - https://matrix.msrg.cc/_synapse/metrics
- https://push.serguzim.me/metrics - https://push.serguzim.me/metrics
- https://tick.serguzim.me/metrics - https://tick.serguzim.me/metrics