1dcb6ca6b7
dnsmasq: read reservations (also) from local context
...
Some questionable QoL improvement.
2025-11-13 15:19:49 +01:00
07143b28f2
friwall: don’t template settings
...
Let all settings including list of nodes be managed by application.
Exception is the list of networks instantiated from NetBox data.
Also add README.
2025-11-13 15:19:49 +01:00
927ff9758e
debian: add wget to base packages
2025-11-13 15:19:49 +01:00
68baf2d9fe
collector: support custom poll intervals
...
Also simplify config context schema for SNMP since we only use a single
instance.
2025-11-13 15:19:48 +01:00
05fe7eaf08
prometheus: allow setting custom retention time
...
15 days is default and also too short.
2025-11-13 15:19:48 +01:00
e6664d0d4c
collector: add fields to SNMP scraper
...
Collect system location and uptime.
2025-11-13 15:17:42 +01:00
6c0b5adb5f
ocserv: dehardcode site name in cert expiry message
2025-11-13 15:17:42 +01:00
7950b16a6a
windows: set up windows_exporter
2025-11-13 15:17:42 +01:00
a2ea96c1af
grafana: disable analytics also in general
2025-11-13 15:17:42 +01:00
603f0def4d
debian: add a newline at the end of interfaces file
...
Not necessary but nicer.
2025-11-13 15:17:42 +01:00
136e3013b7
debian: enable automatic upgrades only for virtual machines
...
And factor out VM stuff into a separate file.
2025-11-13 15:17:42 +01:00
286321548d
alpine: don’t disable IPv6 autoconf on loopback interface
...
Not sure if it makes a difference but let’s keep the generated config
minimal.
2025-11-13 15:17:42 +01:00
fd581a5bd6
alpine: add support for VRF interfaces
...
Mostly so we can merge the firewall role from the network repo, there
aren’t any other current users.
2025-11-13 15:17:42 +01:00
8563634cce
alpine: enable automatic upgrades only for virtual machines
...
And factor out VM stuff into a separate file.
2025-11-13 15:17:42 +01:00
028f89a98a
alpine: fix condition for loopback interface template
2025-11-13 15:17:42 +01:00
181f49c977
grafana: fix generated URLs
...
By setting root_url manually. Also disable some more analytics.
2025-11-13 15:17:42 +01:00
55989d3182
Add collector role
...
Sets up prometheus to pull metrics, with telegraf to process SNMP data.
2025-11-13 15:17:42 +01:00
ce611dd46a
telegraf: drop agent configuration stuff
...
Servers will be switched to Prometheus. Telegraf remains as a SNMP proxy
(see following commit).
2025-11-13 15:17:42 +01:00
54c2b7ab63
Add prometheus role
...
Configured to include job definitions from /etc/prometheus/conf.d/*.yml.
2025-11-13 15:17:42 +01:00
Gašper Fele-Žorž
e48025477f
Fix apis_process_data.sh cron script
2025-11-06 12:46:15 +01:00
Gašper Fele-Žorž
aef9aa513d
Let registrator send out e-mails
2025-11-06 11:03:53 +01:00
Gašper Fele-Žorž
ed4518290a
Fix garaze_racunovodstvo.sh
2025-11-06 10:45:35 +01:00
Gašper Fele-Žorž
216deda916
Add role for apis-rilec
2025-10-23 20:32:48 +02:00
Gašper Fele-Žorž
61d5b4b6d8
Reload smbd instead of samba on Debian
2025-10-21 12:30:37 +02:00
Gašper Fele-Žorž
95a82ed764
Rename reverse-proxy
2025-10-21 12:28:02 +02:00
Gašper Fele-Žorž
d686ade847
Rename roles for apache-php and apache-openidc
2025-10-16 11:37:26 +02:00
Gašper Fele-Žorž
f33a0b8a21
Add missing files for network boot
2025-10-07 15:13:16 +02:00
Gašper Fele-Žorž
bf6d06e794
Fix netboot entries after fixing git config
2025-10-07 15:11:06 +02:00
Gašper Fele-Žorž
d448660bf2
Merge branch 'master' of git.fri.uni-lj.si:rc/servers
2025-10-07 15:06:51 +02:00
Gašper Fele-Žorž
adf25f33cb
Fix groups, default in the main grub.cfg for netboot-grub
2025-10-07 15:06:44 +02:00
450e4bb8f7
facts: look up device/VM services
...
Not returned by default since NetBox 4.3.
2025-10-06 17:42:49 +02:00
df3b4dc9c3
dnsmasq: increase maximum allowed number of leases
2025-10-06 16:16:12 +02:00
a26cb97933
netbox: remove housekeeping job
...
No longer necessary.
2025-09-22 10:51:41 +02:00
12ccc9735b
forgejo: extend session lifetime to two weeks
...
Chosen arbitrarily.
2025-09-10 09:59:43 +02:00
d9f60b5511
forgejo: fix config option and re-add missing handler
2025-09-06 10:07:34 +02:00
0c4105f918
Separate forgejo and forgejo-runner roles
...
Also improve forgejo-runner config.
2025-09-05 22:46:00 +02:00
5c796f2ec0
netbox: disable call home
2025-09-02 08:25:44 +02:00
9afaf49651
debian: fix interface file templating
...
Make it work for base Debian and Proxmox installs.
2025-08-14 14:37:36 +02:00
04c5be85c5
debian: don’t update package cache for base packages
...
The repositories might not yet be set up correctly at this point.
2025-08-14 14:21:15 +02:00
e28bb50a9e
debian: improve proxmox detection
...
Assume non-proxmox debians don’t have /etc/pve so we don’t have to
depend on NetBox data.
2025-08-14 10:08:54 +02:00
246178fa5d
frr: don’t BGP peer on disabled interfaces
2025-08-13 17:14:28 +02:00
011a0852bb
proxmox: remove tasks done by debian role
2025-08-13 17:14:20 +02:00
ef69e31357
debian: don’t set up firewall for proxmox hosts
...
Also factor firewall setup into a separate task. There is no good way
to distinguish Debian and Proxmox hosts in Ansible, so we rely on the
cluster_type NetBox variable.
2025-08-13 16:37:47 +02:00
45d3e6c4ec
debian: fix network interface renaming
...
To become one with proxmox.
2025-08-13 16:29:37 +02:00
ea1f8f88d0
proxmox: fix network interface renaming
...
Use systemd .link files which are "relatively futureproof" according
to https://wiki.debian.org/NetworkInterfaceNames .
2025-08-13 16:19:06 +02:00
59c1431f93
proxmox: switch to deb822 source format
...
Debian did, Proxmox did, now we did too. Also enable ceph repository
if ceph-version is set in config context.
2025-08-12 19:29:28 +02:00
937c75e097
ocserv: notify users about certificates about to expire
2025-08-12 10:59:02 +02:00
7bb27acd2c
opensmtpd: configure root mail alias
...
And add a README.
2025-08-11 14:07:45 +02:00
b64a5880b9
opensmtpd: add support for Debian
2025-08-11 14:04:58 +02:00
7916ae309e
opensmtpd: disable TLS for relay
...
Looks like someone broke it.
2025-08-11 12:46:59 +02:00
