c3053e9378
Fix location for sanoid install
...
This makes it sync up with where the systemd services expect them to be
2021-01-09 21:28:16 +00:00
7d235e67e0
Add ZFS configuration for PVE
2021-01-09 21:27:52 +00:00
decf5176f7
Use systemd rather than cron for sanoid
...
It's more reliable and easier to get logs
2021-01-09 20:57:47 +00:00
57d9c9d288
Allow configuring of pools to scrub
2021-01-09 20:52:51 +00:00
721bdf60b3
Fix quotes
2021-01-09 18:32:16 +00:00
1b72afdd29
Remove scrutiny role
...
SMART checks are handeld by PVE / something else in future
2021-01-09 18:30:28 +00:00
0506a78d02
Listen on public port
...
Makes connection so much easier
2021-01-09 18:25:08 +00:00
8fe8788458
Move ARC size to defaults so it can be easily changed
2021-01-09 18:24:52 +00:00
5b495688cd
Remove intersect wireguard keys
2021-01-09 18:23:10 +00:00
c38ecfebd7
Update gateway to point to ingress instance
2021-01-09 18:17:54 +00:00
fef7f2c2b4
Move docker containers to new PVE container
2021-01-09 18:02:17 +00:00
a35f2f91ff
Default to using python3 over "legacy python"
2021-01-09 17:55:29 +00:00
0355b6b214
Remove jellyfin docker config
...
It'll be replaced by something else later, don't worry.
2021-01-09 17:17:12 +00:00
2300426f0f
Move default variables into role defaults rather than group vars
2020-12-28 16:23:12 +00:00
422062ae63
Fix lint warning around missing mode
...
This only applies to directories https://stackoverflow.com/a/29793833
2020-12-28 16:16:35 +00:00
3338a1f898
Add jellyfin host
...
Role TBC
2020-12-28 16:08:15 +00:00
6267363ab0
Provision docker VM
2020-12-28 15:57:44 +00:00
bdfd38c9fe
Allow traefik to run on non-wireguard host
2020-12-28 15:55:45 +00:00
4f1e54baab
Actually enable timer
2020-12-28 15:14:50 +00:00
58879d2e1d
Ensure fail2ban and logrotate are available on all machines
2020-12-27 22:39:33 +00:00
b11dbfc829
Move traefik file provider to use directory rather than single file
...
This makes future composition possible
2020-12-22 15:53:03 +00:00
0353887590
Add override to ensure ZFS starts before docker
...
Stolen with love from 7dda0bc7cb
2020-12-21 21:37:46 +00:00
30cb9e52e7
Install and provision wireguard client on ingress server
2020-12-21 18:24:35 +00:00
3197953796
Provision PVE and ingress VM
2020-12-21 17:11:38 +00:00
44fb8f5380
Set some image resizing preferences
...
This stops the thumbnailing being quite as intensive
2020-12-11 17:39:58 +00:00
2bfad84071
Pin wallabag to newer version
...
2.4.0 came out *finally*
2020-12-11 17:39:35 +00:00
5a808e90e0
Update synapse
2020-12-11 17:36:06 +00:00
af1b7f754c
Update nextcloud to 20.0.3
2020-12-11 17:35:50 +00:00
8e6a3324a1
Install duplicati on grimes
...
Makes backing up website things a bit easier
2020-12-07 18:09:29 +00:00
6d75272d34
Move plausible to new server
2020-12-05 12:33:50 +00:00
e1dd6c4c05
Init new web server on Linode
...
I'll terraform it later, honest!
2020-12-04 23:02:19 +00:00
08bb8f22ca
Add feediron plugin for tt-rss
2020-11-25 13:16:13 +00:00
b5d676b6fe
Install fever plugin for tt-rss
...
Had to chown the directory afterwards, as git wouldn't play nice with `become_user`
2020-11-25 13:00:06 +00:00
48762bcfcd
Remove redundant quoting
2020-11-25 11:41:26 +00:00
a35ee7c824
Change base URL to default so the tracker script still uses disguised domain
2020-11-25 11:40:54 +00:00
2b291548f9
Just do plain path replacement
2020-11-25 11:38:47 +00:00
a81e2793f8
Add a secondary domain for plausible less likely to match blockers
...
Might change things, might not. But it's a fun experiment to try anyway.
Using a custom middleware to override the path due to https://github.com/plausible/analytics/pull/340
2020-11-25 11:11:29 +00:00
e8d3a72ea8
Update nextcloud to 20.0.2
2020-11-22 15:40:23 +00:00
1d8f54c778
Update synapse
2020-11-22 15:32:17 +00:00
3ddfd77bdf
Stop running synapse as root
2020-11-22 15:08:08 +00:00
310feaf332
Use correct args to build synapse DB
2020-11-22 15:07:34 +00:00
367de37fab
Actually disable unnecessary logging rather than change level
...
Also disable even more of them
2020-11-12 23:01:32 +00:00
2a4b3ec3e6
Increase timeout for SSH sessions
...
Stll check relatively often the client is still there, but check many times so the connection stays open a decent amount of time. Especially useful for long-running commands.
2020-11-08 22:04:30 +00:00
f5c7c094d3
Fix gotify container name
...
Gotify != duplicati
2020-11-08 11:07:57 +00:00
5c1f17e2aa
Update synapse
2020-10-28 18:22:30 +00:00
0fc57049e4
Update nextcloud to 20.0.1
2020-10-28 15:22:49 +00:00
f450d4a8f2
Pin jellyfin version
2020-10-27 17:38:10 +00:00
f414781182
Use new whoami container
2020-10-27 16:13:14 +00:00
c63506d2bc
Pin traefik to patch version
2020-10-27 16:13:14 +00:00
6ae8d0febe
Pin plausible versions
2020-10-27 16:13:14 +00:00
f665b87965
Allow NTP role to manage config
...
Hopefully this closes the port
2020-10-24 17:36:39 +01:00
ff72f5a25e
Move nextcloud data dir to ZFS
2020-10-24 14:26:30 +01:00
5eb3870fbe
Set mode on fail2ban filter and jail
2020-10-24 12:10:54 +01:00
8932ac828f
Add geoip database for plausible
2020-10-24 12:10:37 +01:00
47ad40bb52
Remove watchtower, and do updates manually from now on
...
Keeps @IronicBadger happy!
2020-10-22 18:07:48 +01:00
efd22010b7
Use new LSIO mod which does more
2020-10-19 17:29:28 +01:00
a46525aa80
Move configuration for custom port to Traefik config rather than custom container expose
...
Still a work-around for https://github.com/plausible/analytics/pull/237
2020-10-18 22:31:23 +01:00
0ca3f36f7a
Move some more nextcloud components to ZFS
2020-10-18 18:02:48 +01:00
58605c1c24
Don't snapshot tank root
...
This makes syncoid unhappy, and is generally unnecessary
2020-10-18 17:45:49 +01:00
bedbb0f5f4
Fix service to restart
2020-10-16 19:16:42 +01:00
1930cc83e8
Use generic package module
2020-10-16 19:16:42 +01:00
b2e91d7d6d
Update haproxy fail2ban jail to use systemd for logs
2020-10-16 19:16:42 +01:00
4890c3d3e5
Revert "Remove fail2ban"
...
This reverts commit 1f0e33acc8
.
2020-10-16 19:16:42 +01:00
30baed441e
Mount external files into nextcloud
...
Means some bits can live outside the nextcloud dir
2020-10-10 18:01:27 +01:00
b8ea056455
Remove netdata
...
Don't use it anyway
2020-10-09 23:39:55 +01:00
6852b84406
Change watchtower to run daily
...
A holdover until less of the containers are using `:latest`
2020-10-09 23:20:07 +01:00
5496744428
Remove web-rng
2020-10-09 23:11:53 +01:00
f7afaacbdc
Move website to be hosted on GitLab pages
2020-10-09 21:35:57 +01:00
7f09db5d20
Add heimdall
2020-10-07 14:09:23 +01:00
e9f61070f8
Update nextcloud to version 20
...
Using the new LSIO tags for version specific pins! 🎉
2020-10-07 09:18:32 +01:00
0a9deb3d9e
Update plausible environment so it's compatible with v1
...
Read the changelog, folks!
2020-10-06 21:48:34 +01:00
93ccb686e7
Drive watchtower config from environment
2020-10-06 09:10:26 +01:00
413ff4dad9
Add script to update containers
...
This is an attended update, which is better. Eventually replace watchtower
2020-10-06 08:44:01 +01:00
2c4e1e0414
Pin Plausible to major version
2020-10-05 18:43:12 +01:00
29c9e14f62
Remove haproxy chroot
...
This is technically _slightly_ less secure, but means it logs to journald properly, so can be picked up by fail2ban in future
2020-10-05 11:10:29 +01:00
4c40faf21d
Move clickhouse off ZFS
...
For some reason, they really don't play well together!
2020-10-03 17:18:11 +01:00
68bda30cb2
Add nginx container for getting access to files via rclone
2020-10-03 11:41:38 +01:00
64788eb602
Move transcodes to tempfs
...
Means I can remove the scratch disk
2020-10-02 18:12:15 +01:00
1f398b25c3
Store fewer snapshots for downloads directory
2020-10-02 18:11:53 +01:00
191374b812
Move deluge onto walker
...
Stop torrent traffic being limitted by home broadband
2020-10-02 18:11:34 +01:00
6cfaa3a03a
Update traefik
2020-10-02 09:20:33 +01:00
aee9507ec0
Update synapse
2020-10-02 09:13:41 +01:00
addd4f351c
Update nextcloud base
2020-10-02 09:13:34 +01:00
285f7b8a31
Update Gotify
2020-10-02 09:13:13 +01:00
a799ad9657
Scale gitlab up a tiny bit
2020-10-01 19:46:04 +01:00
4742552839
Add notes site
2020-09-30 18:49:36 +01:00
4e7c5ffd67
Add docker mod to scale worker processes to a sane value
2020-09-28 20:14:41 +01:00
07b0650618
Remove statping
...
It's buggy as all hell, super slow, and doesn't really get used for monitoring
2020-09-27 14:17:46 +01:00
5079599b9d
Require TLS 1.2
2020-09-27 12:36:49 +01:00
d93920c2b6
Move home-assistant stuff to ZFS
2020-09-27 11:31:05 +01:00
a303bed27f
Define app data dir in variable
2020-09-26 21:15:44 +01:00
361a78e8e0
Update yamllint
2020-09-26 17:54:14 +01:00
24d11deeae
Update ansible-lint
...
Required a lot of renaming :(
2020-09-26 17:53:47 +01:00
cc43910be6
Fix scrutiny so it picks up which task to run correctly
2020-09-26 17:10:07 +01:00
3c21c5670c
Replace postgres with mariadb
...
Its' recommended, and might hopefully fix my annoying auth issues!
2020-09-26 14:49:38 +01:00
40488f62b7
Also set user id for collector container
...
Else it chowns the DB, and doesn't run correctly
2020-09-24 22:18:34 +01:00
fd83820faa
Install scrutiny
2020-09-21 21:16:00 +01:00
a67361b9b5
Explicitly define bed lights
2020-09-19 16:16:24 +01:00
2bbc7c715f
Add GZIP compression to projects which don't natively support it
2020-09-18 12:42:36 +01:00
092f12459e
Fix XML formatting
...
This caused clickhouse to crash hard!
2020-09-18 12:21:15 +01:00