ac36a6b323
Ensure nginx is in place before certbot tries to issue certs
2024-05-04 12:52:33 +01:00
f90ae0b1b4
Use port 53053 for coredns docker proxy
...
Otherwise it causes annoying issues with systemd-resolved and mdns
2024-05-04 12:19:00 +01:00
c93c7b5c16
Use external DNS for uptime-kuma
...
/ terraform (push) Failing after 38s
/ ansible (push) Successful in 2m17s
Keep the AGH logs cleaner
2024-04-29 18:42:17 +01:00
2a799d6b03
Scrape Uptime Kuma with prometheus
/ terraform (push) Failing after 1m43s
/ ansible (push) Successful in 2m29s
2024-04-29 14:28:58 +01:00
afa926c767
Remove blackbox monitoring
...
Uptime-Kuma is great
2024-04-29 14:12:21 +01:00
5481554e15
Only install compose on debian
...
/ ansible (push) Successful in 2m11s
/ terraform (push) Failing after 11m55s
The rest will get it through the system package manager
2024-04-27 17:42:24 +01:00
e2a94b6302
Install hetzner provider
2024-04-27 16:54:32 +01:00
6c8cab3ce7
Update louislam/uptime-kuma Docker tag to v1.23.13
/ terraform (push) Successful in 36s
/ ansible (push) Successful in 2m21s
2024-04-25 10:00:20 +01:00
670ad78d44
Add wireguard config for glinet router
/ terraform (push) Successful in 44s
/ ansible (push) Successful in 1m34s
2024-04-23 22:19:57 +01:00
8929a22ce5
Use LSIO docker socket proxy
/ terraform (push) Successful in 53s
/ ansible (push) Successful in 1m31s
2024-04-23 19:52:48 +01:00
ee96e6ab08
Rename forrest role to prometheus
...
/ ansible (push) Failing after 1m35s
/ terraform (push) Failing after 12m54s
Makes organising much simpler
2024-04-21 19:47:02 +01:00
ffbba254fb
Remove redundant quotes
2024-04-21 18:11:57 +01:00
c472411801
Deploy uptime-kuma
2024-04-21 18:11:39 +01:00
7564911da3
Add IPv6 to blackbox
...
/ terraform (push) Failing after 3s
/ ansible (push) Failing after 2s
This is needed to monitor private services
2024-04-20 18:12:38 +01:00
7ff44ee238
Add IPv6 to proxmox internal network
2024-04-20 18:00:08 +01:00
7c8d224c4a
Add headscale ACLs
...
/ ansible (push) Failing after 39s
/ terraform (push) Failing after 46s
Tags are managed entirely server side, so there's no priv esc issues.
This lets my devices do what they want, and server style devices can't do anything.
2024-04-20 15:46:21 +01:00
7bc0ebeb26
Update traefik Docker tag to v2.11
/ terraform (push) Failing after 2s
/ ansible (push) Failing after 2s
2024-04-15 17:43:05 +01:00
33f9c544fd
Remove /tt-rss/ path from URL
/ terraform (push) Failing after 3s
/ ansible (push) Failing after 2s
2024-04-15 17:33:36 +01:00
b6583cc823
Update Nextcloud version in config
/ terraform (push) Failing after 2s
/ ansible (push) Failing after 2s
2024-04-15 15:28:16 +01:00
9c02017fed
Unpin tandoor
2024-04-15 15:28:16 +01:00
91ec56717f
Update dependency artis3n.tailscale to v4.4.4
/ terraform (push) Failing after 16s
/ ansible (push) Failing after 13s
2024-04-15 15:07:14 +01:00
3318656730
Update dependency geerlingguy.ntp to v2.4.0
/ ansible (push) Failing after 24s
/ terraform (push) Failing after 31s
2024-04-15 15:06:23 +01:00
9d98d88089
Update lscr.io/linuxserver/nextcloud Docker tag to v28.0.4
/ terraform (push) Failing after 2s
/ ansible (push) Failing after 2s
2024-04-15 15:02:53 +01:00
c882e246ab
Update Terraform gandi to v2.3.0
/ terraform (push) Failing after 3s
/ ansible (push) Failing after 3s
2024-04-15 14:40:48 +01:00
67af033fcd
Update dependency dokku_bot.ansible_dokku to v2024
/ terraform (push) Failing after 2s
/ ansible (push) Failing after 2s
2024-04-15 14:36:50 +01:00
cee3679504
Update Terraform b2 to v0.8.9
/ terraform (push) Failing after 2s
/ ansible (push) Failing after 2s
2024-04-15 14:27:12 +01:00
5330fdc56f
Update ghcr.io/goauthentik/server Docker tag to v2024
/ terraform (push) Failing after 2s
/ ansible (push) Failing after 2s
2024-04-15 14:11:11 +01:00
2e0b562f5d
Update matrixdotorg/synapse Docker tag to v1.104.0
/ terraform (push) Failing after 2s
/ ansible (push) Failing after 2s
2024-04-15 13:58:20 +01:00
989a804bad
Update wallabag/wallabag Docker tag to v2.6.9
/ terraform (push) Failing after 51s
/ ansible (push) Failing after 46s
2024-04-03 12:00:18 +01:00
8424b3211b
Allow ingress
to serve as tailscale exit node
/ terraform (push) Successful in 38s
/ ansible (push) Successful in 1m46s
2024-03-28 23:30:24 +00:00
b83e239123
Rename private domain
/ terraform (push) Successful in 33s
/ ansible (push) Successful in 1m35s
2024-03-23 12:55:54 +00:00
5157940f20
Stop exposing homeassistant
/ terraform (push) Successful in 58s
/ ansible (push) Successful in 1m52s
2024-03-23 11:54:26 +00:00
eb6fe3a23b
Allow forrest to access internal services
...
/ terraform (push) Successful in 36s
/ ansible (push) Successful in 1m36s
This is mostly for monitoring
2024-03-22 18:13:25 +00:00
b2656bdf43
Make vaultwarden VPN only
...
/ terraform (push) Successful in 33s
/ ansible (push) Successful in 1m36s
The first service to go dark...
2024-03-21 23:20:27 +00:00
124b83526d
Fix spacing
/ terraform (push) Successful in 35s
/ ansible (push) Successful in 2m0s
2024-03-20 17:59:32 +00:00
0295507d0b
Increase frequency of snapshots
/ terraform (push) Failing after 34s
/ ansible (push) Successful in 1m34s
2024-03-19 21:31:27 +00:00
f88d224168
Allow only exposing services over Tailscale
...
/ terraform (push) Failing after 41s
/ ansible (push) Successful in 1m41s
This works using public DNS, so doesn't need Tailscale's magic DNS to override my local.
2024-03-07 22:30:10 +00:00
451a114262
Add IPv6 support for internal DNS overrides
...
CoreDNS 1.11.2 finally shipped!
2024-03-07 20:02:39 +00:00
119b3212a9
Remove robots.txt for gitea
/ terraform (push) Successful in 27s
/ ansible (push) Successful in 1m30s
2024-03-04 08:38:16 +00:00
fb0830e9fc
Update actions/setup-python action to v5
/ terraform (push) Successful in 23s
/ ansible (push) Successful in 1m42s
2024-03-04 08:35:57 +00:00
5aae711cb8
Update vaultwarden/server Docker tag to v1.30.5
/ terraform (push) Successful in 46s
/ ansible (push) Successful in 1m45s
2024-03-04 08:33:59 +00:00
f552332598
Update lscr.io/linuxserver/mastodon Docker tag to v4.2.8
/ ansible (push) Has been cancelled
/ terraform (push) Has been cancelled
2024-03-04 08:33:51 +00:00
82451784a8
Deploy slides hosting
/ terraform (push) Successful in 50s
/ ansible (push) Successful in 1m49s
2024-03-03 21:39:22 +00:00
000f3d3348
Add HSTS to all nginx requests
2024-03-03 21:37:07 +00:00
0dcc3f7c30
Use regular version of nginx on Arch
...
/ terraform (push) Successful in 30s
/ ansible (push) Successful in 1m30s
`nginx-mainline` requires modules be recompiled each time, and isn't handled automatically. It's still a very new and maintained release.
2024-02-29 19:46:32 +00:00
8a1e21c79d
Ensure headscale sees the correct IP
/ terraform (push) Successful in 49s
/ ansible (push) Successful in 1m48s
2024-02-29 17:41:29 +00:00
998d798797
Set maintenance window for nextcloud
/ terraform (push) Successful in 26s
/ ansible (push) Successful in 1m37s
2024-02-21 21:57:03 +00:00
11a93dac55
Update nextcloud version in config
2024-02-21 21:52:58 +00:00
97da6edc13
Update dependency ansible-lint to v24
/ terraform (push) Successful in 27s
/ ansible (push) Successful in 1m36s
2024-02-21 21:47:29 +00:00
d66708b10b
Update dependency artis3n.tailscale to v4.4.2
/ terraform (push) Successful in 24s
/ ansible (push) Successful in 1m34s
2024-02-21 21:43:33 +00:00