Commit graph

181 commits

Author SHA1 Message Date
d7ae77247b
Setup NTP on tang 2023-01-16 09:11:15 +00:00
ad50176ee9
Add internal alias to pihole 2023-01-08 18:36:03 +00:00
e86ed81102
Decommission decker server
It's been replaced by prometheus running internally, and uptimerobot checking.
2022-12-09 19:04:54 +00:00
3ec359ed0e
Deploy me a mastodon 2022-11-18 09:12:28 +00:00
330e7e9305
Clear pacman cache 2022-11-14 09:04:53 +00:00
041f791b60
Add squid as a forwarding proxy so containers are exposed through a VPN
Implementation isn't perfect, but as `qbittorrent` already had an outbound VPN connection, it makes sense to just reuse it.
2022-11-06 18:26:09 +00:00
d81ed290d7
Put the new website live 2022-10-30 12:04:15 +00:00
08afdd951e
Add hosting for new website
Top sneaky
2022-10-29 18:09:30 +01:00
f49b26c6f0
Deploy authentik
Not integrated into other services quite yet. But it's there
2022-09-18 18:49:17 +01:00
cc3f980d34
Deploy tandoor 2022-08-24 22:17:29 +01:00
b62f8001bb
Deploy commento++ 2022-06-05 15:44:49 +01:00
82040a5c85
Move qbittorrent to be a LXC 2022-05-16 22:02:01 +01:00
8eae7b69e0
Pin versions of galaxy requirements 2022-05-07 12:21:21 +01:00
b8736e1c65
Create VPN for port 53 2022-03-18 19:44:06 +00:00
5cc552d0eb
Add container to automatically backup DBs 2022-01-16 17:51:03 +00:00
c5215e330b
Update yamllint to fix dependency issue
I think this still validates everything we need it to
2022-01-11 20:51:12 +00:00
1a74e05a7c
Create a dedicated machine for renovate
This way it can do what it wants with docker. Because apparently it's very picky about how it's setup
2022-01-01 22:59:13 +00:00
78b0161585
Install renovate
It doesn't quite work, as really it needs docker to correctly update packages. But it's a start for now
2022-01-01 18:23:32 +00:00
8a37a9d41b
Move uptime-kuma to decker 2021-09-25 21:03:56 +01:00
a135aae5f3
Provision new VM
This will be used for monitoring
2021-09-25 16:59:23 +01:00
c2cd2e6e34
Add backups for grimes 2021-08-30 21:50:55 +01:00
453a374801
Replace ingress proxy with nginx
This enables HTTPS redirecting at it too much more easily, and matches the gateway configuration.

Requires using upstream versions of nginx to enable https://nginx.org/en/docs/stream/ngx_stream_realip_module.html
2021-08-24 14:21:51 +01:00
8fabd11e31
Remove unnecessary pve role
no-subscription is handled by the nag removal role
2021-08-22 15:20:27 +01:00
f3bc72d2ba
Provision uptime-kuma 2021-07-31 16:43:12 +01:00
18603d726e
Add username to proxmox-nag-removal role
Makes it obviously not one of mine
2021-06-25 22:47:21 +01:00
09a010f28e
Version snapraid config
Using fork of role at https://github.com/IronicBadger/ansible-role-snapraid/pull/7
2021-06-25 22:43:26 +01:00
83c84abc62
Use dokku role to install it
I also switched the host to debian, as the arch install didn't quite work.
2021-06-22 22:08:01 +01:00
bb5bbf16f5
Remove alpine special case
https://github.com/ansible-collections/community.general/pull/1722 has shipped.
2021-06-20 12:43:59 +01:00
e3502ae1e0
Provision dokku server 2021-06-20 12:12:34 +01:00
6c23180591
Remove gitea
I use GitLab now
2021-06-02 19:27:09 +01:00
9c2ebd60e8
Remove duplicati
We're a restic shop now!
2021-06-02 19:18:21 +01:00
a867df04a5
Add a GitLab runner
Woo CI!
2021-06-01 19:29:21 +01:00
8610be3ac3
Rename host
"gitlab" sounds more like the hosted service, not mine
2021-05-29 22:01:01 +01:00
c7bde8b3dd
Init a GitLab server
Some day i'll make up my mind on which server to use, honest!
2021-05-28 22:49:48 +01:00
1431f7a30a
Add restic to walker 2021-05-09 14:26:21 +01:00
781aa93892
Add some restic wrapper things 2021-05-08 16:45:08 +01:00
9b31efbf43
Destroy grimes
And the entire Linode integration
2021-05-05 18:11:14 +01:00
ad415c2b53
Move website to walker 2021-05-02 17:24:10 +01:00
86482246b3
Move plausible to walker 2021-05-02 16:07:25 +01:00
4a0f7b701b
Install jellyfin through Ansible 2021-05-02 12:04:48 +01:00
a669e34f57
Update bitwarden_rs to vaultwarden
I'll do the full rename of everything another time
2021-05-01 23:00:37 +01:00
8ab0d7cd80
Add duplicati to walker 2021-04-24 22:25:40 +01:00
1fcc63a5da
Move upload 2021-04-24 22:14:29 +01:00
c048e6d20e
Provision walker 2021-04-24 21:59:53 +01:00
5d9ee7190d
Swap out deluge for qbittorrent
Just run on arch instead of docker, too. Much simpler.
2021-04-16 21:49:00 +01:00
6973fb536f
Add fail2ban for traefik
Remote action coming soon
2021-03-28 13:05:38 +01:00
d4477c4bea
Add bitwarden_rs 2021-03-21 18:47:20 +00:00
6b95b75fc2
Move telegraf to host
This makes metric collection for SMART much simpler. I'll still be using the prometheus node exporter for actual system metrics, though.
2021-03-05 20:39:11 +00:00
e8960ebf27
Connect forrest to nebula hosts 2021-03-04 16:08:53 +00:00
c6d9102e1e
Don't install NTP on LXC containers
This can cause issues with containers trying to sync the system clock, and getting it wrong
2021-03-04 15:45:47 +00:00
3014e5d052
Provision privatebin 2021-02-12 23:32:31 +00:00
47df8164fa
Define timezone as variable 2021-02-10 09:12:42 +00:00
b940d22373
Install docker on forrest
I'll be migrating it to docker, so I can run more things simply under Docker
2021-02-08 21:56:06 +00:00
a95ceb348f
Install docker from binary on debian distros
This is because the repos are usually super out of date, or at least can stray quite a bit
2021-02-07 15:56:25 +00:00
e8496ddced
Deploy deluge in docker
Makes version managing so much easier!
2021-02-01 17:24:36 +00:00
ac68b36841
Initially provision deluge machine
Based on Docker, so deluge itself is easier to install and keep updated. Until such time it's in the repos
2021-02-01 15:40:06 +00:00
c7fba8107a
Move grafana to forrest 2021-01-31 16:52:24 +00:00
9023b269eb
Allow PVE VMs to access nebula hosts via ingress 2021-01-31 12:19:33 +00:00
643d843bfb
Enable unsafe routing to PVE network over nebula 2021-01-30 22:59:56 +00:00
da301eb7dd
Provision remaining nebula instances 2021-01-30 20:47:11 +00:00
698804ff38
Remove gitlab 2021-01-28 19:54:03 +00:00
89a6c7680c
Decommission walker
Kimsufi is just too annoying of a host. Everything has either been moved off, killed, or has further plans.
2021-01-28 18:56:39 +00:00
b339cb0e2d
Move upload to grimes 2021-01-28 14:04:55 +00:00
3de14efd9e
Remove heimdall
I've literally not used it since setting it up
2021-01-26 21:53:52 +00:00
a44a79031a
Init some skeleton nebula stuff 2021-01-25 21:53:04 +00:00
0ecd884a9a
Deploy yourls 2021-01-22 21:29:27 +00:00
0f9802a46c
Install duplicati on PVE docker machine
Requires some changes to how private IPs are specified, which I really need to clean up at some point!
2021-01-20 21:38:01 +00:00
41915ec69c
Replace gitlab with gitea
Leave gitlab in place for a bit in case I need to get at data
2021-01-18 20:14:38 +00:00
604202fdce
Add traefik pages
Add it ready for the migration in future
2021-01-16 23:29:55 +00:00
b40266b276
Add roles to handle PVE nag and repos 2021-01-09 23:21:35 +00:00
7d235e67e0
Add ZFS configuration for PVE 2021-01-09 21:27:52 +00:00
fef7f2c2b4
Move docker containers to new PVE container 2021-01-09 18:02:17 +00:00
6267363ab0
Provision docker VM 2020-12-28 15:57:44 +00:00
30cb9e52e7
Install and provision wireguard client on ingress server 2020-12-21 18:24:35 +00:00
8e6a3324a1
Install duplicati on grimes
Makes backing up website things a bit easier
2020-12-07 18:09:29 +00:00
6d75272d34
Move plausible to new server 2020-12-05 12:33:50 +00:00
e1dd6c4c05
Init new web server on Linode
I'll terraform it later, honest!
2020-12-04 23:02:19 +00:00
f665b87965
Allow NTP role to manage config
Hopefully this closes the port
2020-10-24 17:36:39 +01:00
47ad40bb52
Remove watchtower, and do updates manually from now on
Keeps @IronicBadger happy!
2020-10-22 18:07:48 +01:00
b8ea056455
Remove netdata
Don't use it anyway
2020-10-09 23:39:55 +01:00
f7afaacbdc
Move website to be hosted on GitLab pages 2020-10-09 21:35:57 +01:00
7f09db5d20
Add heimdall 2020-10-07 14:09:23 +01:00
191374b812
Move deluge onto walker
Stop torrent traffic being limitted by home broadband
2020-10-02 18:11:34 +01:00
07b0650618
Remove statping
It's buggy as all hell, super slow, and doesn't really get used for monitoring
2020-09-27 14:17:46 +01:00
24d11deeae
Update ansible-lint
Required a lot of renaming :(
2020-09-26 17:53:47 +01:00
fd83820faa
Install scrutiny 2020-09-21 21:16:00 +01:00
9ca2546766
Decommission grimes
Most of the function has moved to `walker`
2020-09-10 20:39:54 +01:00
c1dc26ce35
Install gitlab pages daemon
I'll deal with traefik domains later
2020-09-05 16:50:56 +01:00
0ce15cb4d8
Add gitlab 2020-08-29 23:56:14 +01:00
a2e021ac43
Install ZFS on home server 🎉 2020-08-19 21:34:23 +01:00
a5aa21429c
Conditionally run reflector role rather than manually defining which machines run arch 2020-08-19 18:58:58 +01:00
9d014cfa1c
Install grafana and link it to HA 2020-08-07 11:52:15 +01:00
55f79b4a51
Remove socks proxy 2020-08-05 20:56:12 +01:00
1195a5001e
Add reflector to keep mirror lists updated 2020-08-05 12:15:28 +01:00
19c134564a
Add duplicati to walker
Gotta backup them backups
2020-08-04 21:09:45 +01:00
7d3f6a8121
Remove duplicati from grimes 2020-08-04 20:58:10 +01:00
e184c7fba1
Move website over to walker 2020-08-04 20:54:53 +01:00
ebbd2a4015
Install zfs and sanoid 2020-07-26 18:03:09 +01:00
f77cd1216f
Move upload server to walker 2020-07-24 17:14:39 +01:00
9ee4e1c14b
Add plausible analytics 2020-07-21 20:55:44 +01:00