da3db8cc02
Add collector role
...
Sets up prometheus to pull metrics, with telegraf to process SNMP data.
2025-10-17 22:12:02 +02:00
6600a6fa36
telegraf: drop agent configuration stuff
...
Servers will be switched to Prometheus. Telegraf remains as a SNMP proxy
(see following commit).
2025-10-17 22:03:33 +02:00
0c4105f918
Separate forgejo and forgejo-runner roles
...
Also improve forgejo-runner config.
2025-09-05 22:46:00 +02:00
4f9b6a2c53
Enable radvd role for mgmt-gw
...
This is the router for management networks so let it tell that to
hosts on those networks.
2025-07-31 12:16:20 +02:00
d162f175a4
facts: get platform info from NetBox
...
Instead of pinging each host to see if it’s Windows. Make sure to set
the platform at least for such hosts.
2025-05-13 13:31:07 +02:00
91de26af57
Add windows role
...
Set up network interfaces and SSH for Windows hosts.
We can’t gather facts before we know which remote shell to use, so
first run a win_ping to determine if a given host is running Windows.
2025-05-09 17:26:07 +02:00
783f1af3a5
netbox: add redis dependency
2025-04-17 18:22:10 +02:00
ade6a8e1e2
Add nginx as a role dependency where required
...
This is pretty much anywhere a LE certificate is needed. Similar for
nginx-php for PHP sites. Drop these roles from setup.yml.
2025-04-12 18:51:31 +02:00
cf6b682cf8
Add ocserv role
...
Create a self-signed CA, set up group configs, add script to allow new
connections through the firewall.
In the base debian role, drop the default nftables forward chain with
drop policy because it clashes with this. If you enable forwarding on
a debian host, make sure to configure the firewall.
2025-04-12 18:38:48 +02:00
d2b9b05406
setup: do base setup for all targets in one step
2025-04-10 19:30:14 +02:00
e95603fda9
Add unifi role
...
And server.
2025-02-04 14:44:02 +01:00
efbe8d2801
Reorder hosts in setup.yml
...
By type / name.
2025-01-13 15:29:37 +01:00
c585070edc
Add kanboard role and server
2024-12-06 13:08:14 +01:00
04f187a140
dokuwiki: factor out nginx-php role
2024-12-06 13:07:01 +01:00
52f8ed5a2d
Rename host doku to doc
2024-12-05 10:27:15 +01:00
0a0ce7e2a5
Add telegraf role
...
And enable it for ceph nodes.
2024-11-27 17:37:00 +01:00
14dd446fd4
Add monitor
...
For monitoring stuff.
2024-11-27 17:31:28 +01:00
973ce03249
Add reverse-proxy role
2024-11-15 15:44:29 +01:00
Gašper Fele-Žorž
68f0d6ba44
Add proxmox-backup
2024-09-10 15:07:30 +02:00
211d4bdb9a
Deconsolidate network setup for proxmox and debian roles
...
They are just different enough to be annoying.
2024-08-28 12:43:14 +02:00
b20e9cccff
Add dnsmasq role
2024-07-26 10:13:59 +02:00
973522c373
Import friwall role from network ansible scripts
...
To reuse alpine and nginx roles. Probably going to merge repos at some point.
2024-07-04 15:31:53 +02:00
e101493889
Add synapse role
...
For all the hipster kids.
2024-06-25 10:14:06 +02:00
74cb31e243
netbox: factor out redis role
2024-06-25 00:52:57 +02:00
22f363d06a
Add postgres role
...
Or rather rip it out of netbox. Improve DB password handling.
2024-06-05 12:54:55 +02:00
af9e30eb3e
Add forgejo role
...
On alpine, with OIDC auth and a podman runner.
2024-06-05 12:05:22 +02:00
cd8f20852e
dokuwiki: use common nginx role
...
Also get version from NetBox.
2024-05-28 13:23:40 +02:00
c7a3513fa1
Add netbox role
...
Kinda ouroborosish if you think about it. Better don’t.
2024-05-28 12:32:28 +02:00
43b9010126
Add samba role
...
With sssd.
2024-05-23 15:30:28 +02:00
25bcddede1
Factor frr role from debian, ceph and proxmox
...
Consolidate base system and networking setup into debian role and BGP
configuration into frr role. Add facts role to collect data from NetBox
once to avoid many slow lookups. Also many other tweaks and cleanups.
2024-05-19 14:21:25 +02:00
c2c1fdbe40
Add alpine role
...
Base packages and SSH config, and QEMU guest agent for VMs.
2024-05-19 14:21:22 +02:00
2095494531
proxmox: only advertise local routes
...
Of course.
2024-04-04 10:17:58 +02:00
8a8b019dc3
setup: rename proxmox-rc hosts
2024-02-06 08:56:19 +01:00
02f778604c
Add dokuwiki role
...
For an Alpine Linux VM.
2024-01-20 19:00:41 +01:00
5038411af3
Add ceph role
...
Just prepares the servers, all management is then done through cephadm.
2023-11-20 13:04:11 +01:00
0c1cc14e01
proxmox: add initial support for L2 VXLAN
...
I heard we like L2 so I put some L2 in our L3 so we can L2 as we L3 on L2.
2023-10-18 15:02:36 +02:00
8dd2476238
Add role to set up base Debian server
...
With sshd in separate management VRF and FRR to announce routes to
self over unnumbered BGP.
2023-06-01 17:22:26 +02:00
