systems/infrastructure
1
Fork 0
Code Issues 1 Pull requests 21 Activity Actions

Add internal dns container

Browse source
This commit is contained in:
Jake Howard 2020-01-28 22:15:14 +00:00
parent d1e5f63efd
commit a9a27d617b
Signed by: jake
GPG key ID: 57AFB45680EDD477
9 changed files with 87 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
ansible/roles/docker/files/dnsmasq/dnsmasq.conf Normal file
View file

@ -0,0 +1,7 @@
bogus-priv
keep-in-foreground
server=1.1.1.1
server=1.0.0.1
port=53
expand-hosts
addn-hosts=/etc/dnsmasq-hosts.conf

11
ansible/roles/docker/files/dnsmasq/docker-compose.yml Normal file
View file

@ -0,0 +1,11 @@
version: "3"
services:
vpn-dns:
image: programster/dnsmasq:latest
container_name: vpn-dns
ports:
- "{{ wireguard.clients.intersect.ip }}:53:53/udp"
volumes:
- ./dnsmasq.conf:/etc/dnsmasq.conf:ro
- ./vpn-hosts.conf:/etc/dnsmasq-hosts.conf:ro
restart: unless-stopped

3
ansible/roles/docker/files/dnsmasq/vpn-hosts.conf Normal file
View file

@ -0,0 +1,3 @@
{% for host in internal_hostnames %}
{{ wireguard.clients.intersect.ip }} {{ host }}
{% endfor %}

53
ansible/roles/docker/tasks/dnsmasq.yml Normal file
View file

@ -0,0 +1,53 @@
- name: Include dnsmasq variables
include_vars: dnsmasq.yml
- name: Create dnsmasq directory
file:
path: '/opt/dnsmasq'
state: directory
owner: "{{ docker_user.name }}"
mode: "{{ docker_compose_directory_mask }}"
become: true
become_user: root
- name: Install dnsmasq compose file
template:
src: files/dnsmasq/docker-compose.yml
dest: "/opt/dnsmasq/docker-compose.yml"
mode: "{{ docker_compose_file_mask }}"
owner: "{{ docker_user.name }}"
register: compose_file
become: true
become_user: root
- name: Install dnsmasq config
template:
src: files/dnsmasq/dnsmasq.conf
dest: "/opt/dnsmasq/dnsmasq.conf"
mode: "{{ docker_compose_file_mask }}"
owner: "{{ docker_user.name }}"
register: dnsmasq_config
become: true
become_user: root
- name: Install dnsmasq vpn hosts
template:
src: files/dnsmasq/vpn-hosts.conf
dest: "/opt/dnsmasq/vpn-hosts.conf"
mode: "{{ docker_compose_file_mask }}"
owner: "{{ docker_user.name }}"
register: dnsmasq_vpn_hosts
become: true
become_user: root
- name: Cycle dnsmasq container
docker_compose:
project_src: /opt/dnsmasq
pull: true
remove_orphans: true
remove_volumes: true
state: "{{ item }}"
when: compose_file.changed or dnsmasq_config.changed or dnsmasq_vpn_hosts.changed
loop:
- absent
- present

3
ansible/roles/docker/tasks/main.yml
View file

@ -12,3 +12,6 @@
- name: Install portainer - name: Install portainer
include: portainer.yml include: portainer.yml
- name: Install dnsmasq
include: dnsmasq.yml

2
ansible/roles/docker/tasks/netdata.yml
View file

@ -7,7 +7,7 @@
become: true become: true
become_user: root become_user: root
- name: Install netdata config - name: Install netdata compose file
template: template:
src: files/netdata/docker-compose.yml src: files/netdata/docker-compose.yml
dest: "/opt/netdata/docker-compose.yml" dest: "/opt/netdata/docker-compose.yml"

2
ansible/roles/docker/tasks/portainer.yml
View file

@ -7,7 +7,7 @@
become: true become: true
become_user: root become_user: root
- name: Install portainer config - name: Install portainer compose file
template: template:
src: files/portainer/docker-compose.yml src: files/portainer/docker-compose.yml
dest: "/opt/portainer/docker-compose.yml" dest: "/opt/portainer/docker-compose.yml"

2
ansible/roles/docker/tasks/watchtower.yml
View file

@ -7,7 +7,7 @@
become: true become: true
become_user: root become_user: root
- name: Install watchtower config - name: Install watchtower compose file
template: template:
src: files/watchtower/docker-compose.yml src: files/watchtower/docker-compose.yml
dest: "/opt/watchtower/docker-compose.yml" dest: "/opt/watchtower/docker-compose.yml"

7
ansible/roles/docker/vars/dnsmasq.yml Normal file
View file

@ -0,0 +1,7 @@
internal_hostnames:
- duplicati.jakehoward.tech
- traefik.jakehoward.tech
- portainer.jakehoward.tech
- netdata.jakehoward.tech
- deluge.jakehoward.tech
- speed.jakehoward.tech