|
|
9d685d85aa
|
Update website deployment to unify containers
|
2024-01-14 14:22:19 +00:00 |
|
|
|
ac166c3874
|
Start resolved to support mDNS
|
2024-01-10 13:28:45 +00:00 |
|
|
|
06b9197c5b
|
Sync terraform state to restic
This allows it to be backed up easily
|
2024-01-09 19:56:06 +00:00 |
|
|
|
4a69df1d6c
|
Ignore ansible-lint for nebula install block
I'm smarter than it is
|
2024-01-08 21:49:38 +00:00 |
|
|
|
f33d19e156
|
Move AdGuardHome configuration to Terraform
https://git.theorangeone.net/systems/adguardhome
|
2024-01-08 21:45:28 +00:00 |
|
|
|
ed59458f39
|
Add backups to tang
|
2024-01-08 19:20:55 +00:00 |
|
|
|
616d20e23b
|
Tweak some AGH settings
|
2024-01-08 19:01:46 +00:00 |
|
|
|
383a57d1f2
|
Use DoH endpoint fot quad9
Seems latency is much lower
|
2024-01-08 18:21:03 +00:00 |
|
|
|
9f13ace88c
|
Use newer S3 configuration resources
|
2024-01-07 13:49:35 +00:00 |
|
|
|
094091dd21
|
Add role for minio state management
|
2024-01-07 13:06:37 +00:00 |
|
|
|
9ac9380387
|
Restructure state IAM to use separate role
|
2024-01-07 12:58:16 +00:00 |
|
|
|
1555803d25
|
Move terraform state file
This lets me use the bucket for other states too
|
2024-01-06 21:28:57 +00:00 |
|
|
|
c8211d4756
|
Use Debian repo version of nginx
It's older, and doesn't have `stream` compiled in, but the repo one can't link to any of the installed modules, which is a non-starter.
|
2024-01-04 14:17:36 +00:00 |
|
|
|
57ad143268
|
Set password for homeassistant SMB mount
It had an IP restriction, but still
|
2024-01-03 21:23:49 +00:00 |
|
|
|
16e9952b2f
|
Replace custom restic logs with runitor
|
2024-01-03 21:09:07 +00:00 |
|
|
|
f5154d1683
|
Use CoreDNS to do recursive CNAME aliasing for AGH
|
2024-01-02 17:48:47 +00:00 |
|
|
|
3ed7074af6
|
Rename coredns role
|
2024-01-02 17:02:34 +00:00 |
|
|
|
5581bbc01a
|
Replace pihole with adguardhome
AGH is much simpler to install and manage, and does DoH natively.
|
2024-01-01 15:48:14 +00:00 |
|
|
|
6a14679edf
|
Only add IPv4 address for PVE sys domain
For some reason, ipv6 doesn't really work with my current setup. It'll change at another time, so it's future me's problem
|
2023-12-31 23:01:53 +00:00 |
|
|
|
56bfe544e4
|
nginx HTTPS redirect on ipv6
|
2023-12-31 22:49:11 +00:00 |
|
|
|
e03cc40bf3
|
Update DNS records to alias sys records
|
2023-12-31 21:10:55 +00:00 |
|
|
|
6a23d8cab5
|
Use sys domain resource for reverse DNS
|
2023-12-31 18:22:21 +00:00 |
|
|
|
8b21c7d64c
|
Add record for PVE
|
2023-12-31 16:46:45 +00:00 |
|
|
|
8df1806faa
|
Update Terraform b2 to v0.8.7
|
2023-12-31 16:44:33 +00:00 |
|
|
|
83543fe081
|
Update lscr.io/linuxserver/nextcloud Docker tag to v28.0.1
|
2023-12-28 21:39:28 +00:00 |
|
|
|
0e0d0c9b82
|
walker doesn't have a traefik anymore
|
2023-12-26 22:31:12 +00:00 |
|
|
|
026d8db13e
|
Be root when generating dhparams
This is needed to write to the destination
|
2023-12-24 19:44:30 +00:00 |
|
|
|
593a945c5c
|
Install nginx from package manager if available
|
2023-12-24 19:44:30 +00:00 |
|
|
|
bd15946f3b
|
Update Nebula
|
2023-12-24 19:44:30 +00:00 |
|
|
|
f4b96afcfa
|
Deploy ntfy
|
2023-12-23 16:40:53 +00:00 |
|
|
|
c0c7f393e3
|
Only pin to minor versions of gitea
|
2023-12-21 16:43:18 +00:00 |
|
|
|
5fd952be4c
|
Only pin to minor version of Authentik
|
2023-12-21 16:42:02 +00:00 |
|
|
|
1e798ac5ce
|
Don't require role variables to be prefixed
|
2023-12-21 16:38:24 +00:00 |
|
|
|
39899cd1e0
|
Use certbot to issue certificates
|
2023-12-21 16:38:07 +00:00 |
|
|
|
8e1a203df2
|
Add helper map for better websocket support
|
2023-12-21 16:38:07 +00:00 |
|
|
|
a3baf8be1e
|
Use nginx as reverse proxy on walker, removing traefik
SSL coming soon
|
2023-12-21 16:38:07 +00:00 |
|
|
|
a7eb372899
|
Fix HTTPS redirect hostname
|
2023-12-21 14:58:19 +00:00 |
|
|
|
80a770f399
|
Add include files before main nginx config
|
2023-12-21 14:58:04 +00:00 |
|
|
|
ef432642dd
|
Unify nginx module tasks
|
2023-12-20 22:35:11 +00:00 |
|
|
|
b32a63bd72
|
Add helpful includes
Along with ensuring there are dhparams
|
2023-12-20 22:29:42 +00:00 |
|
|
|
2336e4dd5b
|
Add brotli
|
2023-12-17 18:12:33 +00:00 |
|
|
|
46eda36515
|
Fully block Server header
|
2023-12-16 21:57:19 +00:00 |
|
|
|
cfb498d7c6
|
Only add HTTPS redirect when it's needed
|
2023-12-16 18:13:49 +00:00 |
|
|
|
48efcf4d91
|
Use mainline nginx release on Arch
|
2023-12-16 18:03:01 +00:00 |
|
|
|
930cf87084
|
gzip as much as makes sense
|
2023-12-16 17:58:15 +00:00 |
|
|
|
92052a3d0a
|
Unify nginx configuration
This creates a simple base configuration skeleton, that other configuration can be easily loaded into.
|
2023-12-16 17:47:04 +00:00 |
|
|
|
943c141d59
|
Ensure ingress proxy doesn't terminate connections
This mostly works around a weird issues with Jellyfin
|
2023-12-14 22:08:02 +00:00 |
|
|
|
2ff2128330
|
Set pihole temp unit
|
2023-12-14 22:04:14 +00:00 |
|
|
|
b33e19e152
|
Remove unnecessary extra variable definitions
The world could do with a bit less YAML!
|
2023-12-14 22:03:23 +00:00 |
|
|
|
7ad5d6e51e
|
Deploy coredns as a proxy to Docker's internal DNS
|
2023-12-14 21:04:26 +00:00 |
|
