Commit graph

539 commits

Author SHA1 Message Date
b47de7e70b
Disable healthchecks for GitLab pages
Because of everything we have disabled, Docker considers the container unhealthy
2020-09-05 23:08:58 +01:00
8c4397d39a
Set rails trusted proxies 2020-09-05 22:29:16 +01:00
2af3241bd2
GZIP compress gitlab pages 2020-09-05 20:52:18 +01:00
19b2330832
Disable logrotate for pages
Logs are in a tempfs anyway, and it's just another process to be running
2020-09-05 20:36:45 +01:00
ea54d1be69
Expose pages sites 2020-09-05 20:33:57 +01:00
0a1b541974
Remove compression middleware for gitlab
This is already handled by the application
2020-09-05 18:27:56 +01:00
e9aeed26ee
Use cloudflare DNS challenge for Traefik 2020-09-05 18:27:04 +01:00
0289342e2c
Remove goaccess container 2020-09-05 17:29:40 +01:00
4c1ccfc4e4
Only clear containers weekly
This will be more helpful now, as repeat CI jobs won't need to re-download containers as often
2020-09-05 17:01:54 +01:00
af9c66785e
Decrease watchtower polling rate to 10 minutes
Doesn't need to be that intensive
2020-09-05 17:01:30 +01:00
77113246b0
Remove remaining gitea configuration
Goodbye old friend
2020-09-05 16:56:27 +01:00
c1dc26ce35
Install gitlab pages daemon
I'll deal with traefik domains later
2020-09-05 16:50:56 +01:00
e579edc758
Use lsyncd to push files to gitlab pages server
Server itself in future commit
2020-09-05 16:24:47 +01:00
1487915bbc
Also disable thread log 2020-09-02 20:12:31 +01:00
c47ff494e0
Revert "Disable docker healthchecks"
Turns out it really just takes that long to start up!

This reverts commit 61ed3db887.
2020-09-01 21:50:03 +01:00
61ed3db887
Disable docker healthchecks
Makes traefik take *ages* to detect the container is actually running. Let it 502 if it has to
2020-09-01 20:12:52 +01:00
3bc1d75d9e
Ensure the correct IP is detected 2020-09-01 20:12:16 +01:00
acef6246d0
Replace gitea with gitlab
Leave gitea in place for a bit in case I need to change back suddenly
2020-09-01 19:47:39 +01:00
84d529be2f
Update synapse 2020-08-31 18:47:37 +01:00
3b7493ae8f
Set default theme to dark and assign default proxy 2020-08-30 21:11:29 +01:00
1ed078ef23
Fix SSH port for gitlab 2020-08-30 21:08:04 +01:00
4610d5ced2
Update nextcloud to 19.0.2 2020-08-30 20:28:49 +01:00
3d76c48bbf
Use postgres on homeassistant 2020-08-30 16:58:27 +01:00
ec751ffa1a
Add influxdb to monitor traefik 2020-08-30 15:58:03 +01:00
17f0e22962
Migrate grafana to postgres 2020-08-30 14:53:08 +01:00
8efb3e0d69
Expose gitlab SSH 2020-08-30 11:22:15 +01:00
796c694170
Run duplicati as root
This ensures it has all the right permissions to access all the right files. Host is mounted read-only, so there's no real security risk.
2020-08-30 11:15:08 +01:00
5940b6970a
Move gitlab to ZFS pool 2020-08-30 10:19:57 +01:00
0ce15cb4d8
Add gitlab 2020-08-29 23:56:14 +01:00
da90b12643
Modify clickhouse settings so it's not a resource whore
This means it can be moved back to ZFS!
2020-08-28 14:20:13 +01:00
c6791e4098
Remove stray vault file from removing todoist-github 2020-08-28 14:17:45 +01:00
8a7cc5e57e
Move clickhouse back to old disk
It does a stupid number of writes, and the snapshots are massive! Until i've worked out why it writes so much, move it to a less critical disk
2020-08-27 14:16:12 +01:00
9a8995f1f8
Use single cron job for pruning and taking snapshots
Less to manage, and less lock contention
2020-08-26 13:02:50 +01:00
77262cd206
Reduce number of sanoid snapshots
It should be pretty quick for me to realise something went wrong. Can recycle through space much quicker this way!
2020-08-26 09:08:26 +01:00
1f70a46c35
Add custom clickhouse config
This changes the default log level to warning, to ensure the log file isn't being hammered
2020-08-26 08:54:37 +01:00
3edc34759d
Mount clickhouse logs on tmpfs
WHO LOGS TRACE BY DEFAULT?!
2020-08-25 22:05:10 +01:00
742412259c
Mount transcodes on scratch disk
Don't want them getting caught by sanoid!
2020-08-25 14:30:26 +01:00
4feff3d247
Move jellyfin to ZFS 2020-08-25 14:17:57 +01:00
6808e86a6d
Update nextcloud base 2020-08-24 14:30:11 +01:00
922b688615
Bump ZFS usage to 50% RAM
It's a lot, but should be dealable on most machines
2020-08-23 14:15:09 +01:00
f531d4f915
Move plausible onto ZFS 2020-08-22 12:19:47 +01:00
9ffdd4d711
Move grafana to ZFS
Don't need to create the directory anymore really
2020-08-22 12:07:44 +01:00
f517831435
Install synapse config to right place 2020-08-22 12:03:04 +01:00
67dfe6a8a0
Remove todoist-github
It's got some pretty big bugs, and isn't running anyway
2020-08-22 12:01:24 +01:00
07d5c4fa72
Move quassel to ZFS 2020-08-22 11:59:10 +01:00
3dc8ee16b5
Move wallabag to ZFS 2020-08-22 11:51:51 +01:00
ff7ec46e77
Move synapse to ZFS 2020-08-22 11:42:03 +01:00
037d719906
Migrate deluge data to ZFS pool 2020-08-22 11:20:38 +01:00
8d2c6dfb68
Move gitea to ZFS 2020-08-21 16:02:56 +01:00
bc5d6d512b
Move calibre to ZFS pool 2020-08-21 15:34:04 +01:00
2866cd0602
Move TT-RSS into ZFS pool 2020-08-21 15:33:46 +01:00
35266e975d
Drive sanoid changes from YAML 2020-08-20 21:47:12 +01:00
1bcb8f22b1
Fully resolve path to sanoid
Apparently cron didn't like just `sanoid`
2020-08-20 21:24:33 +01:00
a2e021ac43
Install ZFS on home server 🎉 2020-08-19 21:34:23 +01:00
a5aa21429c
Conditionally run reflector role rather than manually defining which machines run arch 2020-08-19 18:58:58 +01:00
63ec7c671a
Manually install sanoid
Makes the foundation for a future external role
2020-08-19 18:40:17 +01:00
fcd4dbf657
Fix casing
Turns out it's a lower case "l"
2020-08-19 17:59:56 +01:00
2ef836b2e9
Remove synapse helper scripts
They're not maintained, and actually highly advised against
2020-08-18 20:39:23 +01:00
efc7a5d7fb
Allow arc to be 20% RAM usage 2020-08-18 13:47:48 +01:00
cbbd7bf83d
Update synapse 2020-08-18 13:13:25 +01:00
6716b418d7
Ensure cron tasks are run as the right user
Looks like by default they're installed as the current user, not root. Bad ansible documentation!
2020-08-17 22:29:02 +01:00
af22e89a73
Update nextcloud base 2020-08-17 13:57:53 +01:00
bf4e90d053
Update synapse 2020-08-17 13:57:44 +01:00
150a34be2f
Provide cron flag to sanoid 2020-08-17 13:49:07 +01:00
0902dd001e
Expose grafana 2020-08-07 12:03:45 +01:00
9d014cfa1c
Install grafana and link it to HA 2020-08-07 11:52:15 +01:00
301ac37868
Remove legacy integrations 2020-08-06 17:05:19 +01:00
55f79b4a51
Remove socks proxy 2020-08-05 20:56:12 +01:00
c888fc5e72
Pull new images before taking application down 2020-08-05 17:43:04 +01:00
1195a5001e
Add reflector to keep mirror lists updated 2020-08-05 12:15:28 +01:00
384a07b513
Run plausible migrations on startup 2020-08-04 22:07:45 +01:00
19c134564a
Add duplicati to walker
Gotta backup them backups
2020-08-04 21:09:45 +01:00
7d3f6a8121
Remove duplicati from grimes 2020-08-04 20:58:10 +01:00
e184c7fba1
Move website over to walker 2020-08-04 20:54:53 +01:00
6ceea80ee7
Fix website restart 2020-08-04 20:54:34 +01:00
4b7830567b
Add postgres backups for plausible 2020-08-04 19:49:21 +01:00
7c0d78ee9d
Remove folding-at-home
New server location isn't especially ventilated, so heat is an issue.

I'm sorry.
2020-08-04 19:41:01 +01:00
c435ad1ba8
Ensure plausible is restarted on error 2020-08-04 19:38:01 +01:00
969b0bd8d9
Update traefik
Fixes GHSA-6qq8-5wq3-86rp
2020-07-30 21:46:44 +01:00
ed00a0d40e
Update gitea 2020-07-29 18:26:13 +01:00
a6047da465
Use default port 2020-07-28 20:31:32 +01:00
91effbcac5
Add ZFS scrub cron job 2020-07-26 22:17:28 +01:00
6e58b07519
Remove unnecessary quotes 2020-07-26 18:22:43 +01:00
ebbd2a4015
Install zfs and sanoid 2020-07-26 18:03:09 +01:00
5cb1a470ab
Bump plausible pool size 2020-07-26 15:40:03 +01:00
f77cd1216f
Move upload server to walker 2020-07-24 17:14:39 +01:00
3c7c0ec3fa
GZIP plausible traffic
Plausible doesn't gzip for itself. Funnily enough the tracker is actually too small to be compressed by Traefik!
2020-07-22 12:18:49 +01:00
9ee4e1c14b
Add plausible analytics 2020-07-21 20:55:44 +01:00
74d40ac915
Update traefik 2020-07-18 13:29:20 +01:00
005cc528b6
Update nextcloud to 19.0.1 2020-07-17 14:48:50 +01:00
7a38207ef0
Update traefik 2020-07-15 14:53:36 +01:00
b7aebfaabd
Move statping to new machine
Also update it to the latest version. It's probably still buggy AF, but it'll do for what I need it to rigth now.
2020-07-14 19:35:55 +01:00
52e8f34198
Pin jellyfin to latest
It can update itself just fine
2020-07-13 18:09:33 +01:00
9d962c324b
Update synapse 2020-07-13 18:04:20 +01:00
bb5a5b61bd
Update traefik 2020-07-13 18:04:11 +01:00
dd8523ebdd
Update gitea 2020-07-13 18:02:51 +01:00
eed13e3727
Setup offsite storage service
My own lil' S3
2020-07-12 21:01:06 +01:00
3c49c80ff1
Ensure traefik only listens on wireguard network 2020-07-12 19:29:18 +01:00
0314908eac
Install docker on new server 2020-07-12 19:21:27 +01:00
9c0682ef9b
Restrict SSH connections to wireguard cidr
Except on home server, still handy to connect on same network.
2020-07-12 17:53:02 +01:00
a6a3982cc8
Provision keys for walker 2020-07-12 17:19:51 +01:00
693c3fc0ab
Remove legacy vars file 2020-07-12 17:12:47 +01:00
63eecf7a56
Provision new dedicated server 2020-07-12 17:06:02 +01:00
e5e308fafa
Remove firewall role
firewalld does not play nice with docker!
2020-07-12 17:04:13 +01:00
f2d7d63e2d
Update nextcloud base 2020-07-10 16:15:13 +01:00
dc2b51db6b
Update synapse 2020-07-10 16:02:06 +01:00
ba486a26e4
Update duplicati 2020-07-09 19:27:53 +01:00
13a70b27a4
Add RGB LED controller 2020-07-06 20:48:57 +01:00
82bffc3538
Setup firewalld 2020-07-03 21:53:31 +01:00
fba284f9a9
Change primary gitea domain to the one I actually use 2020-07-02 19:42:51 +01:00
1c99477ce9
Move nextcloud config into root 2020-07-02 18:44:27 +01:00
c80d4b7e04
Move tt-rss config out of config directory 2020-07-02 18:24:26 +01:00
689c0cecd9
Set permissions on nextcloud data dir 2020-07-02 17:52:53 +01:00
452118e2a9
Update synapse 2020-07-02 17:41:22 +01:00
86a398d6b4
Replace docker-compose restart hack with shell handler hack
The docker-compose integration would start 2 of the same container, which does bad things to things like databases!
2020-06-28 20:13:12 +01:00
71086ca291
Do HA person management through web UI 2020-06-28 19:35:39 +01:00
e2ca9ad4a9
Don't use host hack to connect to influx
Just bind to internal port like a sane person
2020-06-28 19:16:22 +01:00
9f09554053
Set some sysctl settings so zeroconf works for HA
https://stackoverflow.com/a/46890741
2020-06-28 17:35:49 +01:00
bf2a5e9320
Add Tado and Arlo integrations 2020-06-27 21:00:18 +01:00
e4aba817cc
Fix influxdb comms
Stupid host network mode and DNS
2020-06-27 21:00:07 +01:00
cfd46ea752
I'm probably where my phone is 2020-06-27 19:53:21 +01:00
fe5a5984c3
Remove container names from containers
They're not needed for anything, and caused annoying weird issues when cycling containers
2020-06-27 17:45:28 +01:00
681d591176
Add ESPHome 2020-06-27 16:45:00 +01:00
c89715c52b
Add influxdb for homeassistant storage 2020-06-27 16:34:41 +01:00
93b4bef05d
Add home-assistant 2020-06-27 16:16:52 +01:00
e5cbae81f4
Switch from Emby to Jellyfin
Merge remote-tracking branch 'origin/jellyfin'
2020-06-25 21:39:19 +01:00
e051db5e71
Remove obsolete middleware 2020-06-24 18:48:39 +01:00
7119d5877f
Only expose deluge to internal network
And VPN
2020-06-24 18:48:30 +01:00
dd12b795b5
Remove pihole
Internal VPN server is working just perfectly instead
2020-06-24 18:46:13 +01:00
7d61282d19
Set depends_on where needed 2020-06-24 18:35:20 +01:00
7a3643f3c2
Persist mirror caches outside container 2020-06-24 18:21:14 +01:00
c771e425fb
Replace ansible with system installed version
Similar to a572868b8f
2020-06-24 17:14:25 +01:00
df54decc99
Mirror dotfiles repo 2020-06-24 16:47:31 +01:00
82a3c85263
Install git-mirror container
This also moves the canonical home of this repo to my gitea instance!
2020-06-24 16:27:13 +01:00
5f9b337c7a
Update gitea 2020-06-24 14:26:12 +01:00
2ab8928985
Update nextcloud base 2020-06-24 14:26:05 +01:00
319c96512e
Change default theme to original
Black and green looks odd
2020-06-22 21:03:08 +01:00
913ee4759f
Quote value to silence errors 2020-06-18 21:18:47 +01:00
9ba9593127
Remove debug log level for deluge 2020-06-18 20:50:04 +01:00
f878866f10
Update yamllint 2020-06-18 20:49:12 +01:00
9f59b30f1e
Update synapse 2020-06-18 20:34:23 +01:00
7f62ed43d4
Update gitea to 1.12 2020-06-18 20:33:09 +01:00
c09b46aac0
Stop moving into ansible/ before running things
Makes life easier
2020-06-15 13:21:52 +01:00
4d13e3c78f
Move requirements files into ansible dir 2020-06-15 13:11:44 +01:00
624d1b5425
Set HSTS header for nextcloud 2020-06-13 21:14:23 +01:00
ca188ab1b4
Rename middleware
It's not actually applying a HSTS header
2020-06-13 21:09:48 +01:00
d7b6abaf58
Update to nextcloud 19 2020-06-13 21:06:33 +01:00
a22f555878
Unpin the versions of things I don't care about too much
If they update and break, it's not the end of the world, however unlikely it may be
2020-06-13 19:38:42 +01:00
a3d19eba94
Update synapse 2020-06-13 19:27:53 +01:00
cfee50159a
Remove netdata from grimes
`htop` works just fine for that machine
2020-06-11 19:30:48 +01:00