Tips-Of-Mine/infrastructure
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
896 Commits 15 Branches 0 Tags
6f0d4b60dff973c0db0d0a75af6942a2f4aee696
Commit Graph

896 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jake Howard a25c0751fb Update Plausible 
Also required updating Clickhouse, due to syntax errors in migrations. It's also nice it's alpine now, and newer
 2021-04-15 18:11:44 +01:00
Jake Howard 4eec3292a6 Update wallabag 2021-04-11 12:54:59 +01:00
Jake Howard b6f23b31a9 Stop unnecessarily restarting tt-rss 2021-04-11 12:52:48 +01:00
Jake Howard 3ce4626e29 Update synapse 2021-04-11 12:52:10 +01:00
Jake Howard 62373bf352 Update nextcloud to 21.0.1 2021-04-11 12:48:02 +01:00
Jake Howard 796375446e Update gitea to 1.13.7 2021-04-11 12:42:15 +01:00
Jake Howard 1c424cb2ef Update some IP addresses 
I really need to stop using these external addresses somewhen...
 2021-04-07 22:11:24 +01:00
Jake Howard 22d43c16a7 Correctly redirect http traffic to https 
Bug caused by https://github.com/traefik/traefik/issues/8035
 2021-04-06 11:56:05 +01:00
Jake Howard f0193b5807 Scale up bitwarden slightly 
Should be able to handle a bit more, faster
 2021-04-02 12:32:33 +01:00
Jake Howard e0311111af Update bitwarden 
Send functionality, woohoo!
 2021-03-29 08:23:48 +01:00
Jake Howard ad6bab108a Keep backups for slightly longer 
This makes my occasional syncs less likely to do bad things
 2021-03-28 19:47:34 +01:00
Jake Howard a1307ff3a5 Remove obsolete port 2021-03-28 16:30:07 +01:00
Jake Howard 3c8d9fe940 Block all ports 2021-03-28 16:28:07 +01:00
Jake Howard 4d218248fa Remotely connect to fail2ban to do ports 
Traefik can affect the edge, so blocks work there and prevent traffic hitting home network.
 2021-03-28 16:06:36 +01:00
Jake Howard ac186f42e0 Keep fewer fail2ban logs 2021-03-28 13:06:01 +01:00
Jake Howard 6973fb536f Add fail2ban for traefik 
Remote action coming soon
 2021-03-28 13:05:38 +01:00
Jake Howard 8398a2df21 Use endpoint middleware rather than hacky router 2021-03-27 23:34:34 +00:00
Jake Howard a5af5bea6c Force bitwarden to use public DNS 
It doesn't like creating icons for local IP spaces, so my overriden DNS doesn't play well
 2021-03-27 18:45:06 +00:00
Jake Howard 1d997d3c33 Remove separate private and protected IP 2021-03-27 18:42:06 +00:00
Jake Howard 7580c0fd59 Remove walker for now 
Tried to use alpine, Nebula doesn't like it. Will use Debian, and recreate the machine when I have more time
 2021-03-26 21:58:24 +00:00
Jake Howard 116e1adb50 Disable Traefik pilot on dashboard 2021-03-24 23:14:01 +00:00
Jake Howard 36f6bd62bb Update gitea to 1.13.6 2021-03-24 22:57:45 +00:00
Jake Howard 5084bfecdf Ignore PVE interface from f2b jails 2021-03-24 22:35:28 +00:00
Jake Howard f436e4660b Remove intersect host config 
is dead
 2021-03-24 22:19:50 +00:00
Jake Howard e67e4565d3 Remove expose_ssh and support SSH listening on nebula and PVE 
No more wireguard SSH for me
 2021-03-24 22:19:29 +00:00
Jake Howard e80bcb5a8b Move generic vultr firewall stuff into module 
Modules are pretty nice!
 2021-03-23 22:33:10 +00:00
Jake Howard 95e97ef757 Iterate over firewall ports 
I'll convert this to a module some day, honest!
 2021-03-23 22:09:48 +00:00
Jake Howard 70829dc617 Provision walker server 
This will eventually replace `grimes`
 2021-03-23 21:31:31 +00:00
Jake Howard ba8220cff2 Remove minecraft port forward 2021-03-23 21:23:45 +00:00
Jake Howard bbfe85b2c8 Update vultr provider 
This was a pretty breaking change which required re-importing most of its state
 2021-03-23 21:22:31 +00:00
Jake Howard 3c06eb748d Update gitea to 1.13.5 2021-03-23 17:22:13 +00:00
Jake Howard a43dac3a80 Actually add bitwarden DNS 2021-03-21 21:03:47 +00:00
Jake Howard ece0c841b2 Fix compose version 
Mostly fix quotes, but also standardize
 2021-03-21 18:51:38 +00:00
Jake Howard d4477c4bea Add bitwarden_rs 2021-03-21 18:47:20 +00:00
Jake Howard 65f9206b95 Fix NTP updates 
Manually apply https://github.com/geerlingguy/ansible-role-ntp/pull/84, so machines actually update themselves via NTP
 2021-03-13 18:46:45 +00:00
Jake Howard f6559ff1bd Remove collabora 
It doesn't seem to like being run inside LXC. I barely used it, anyway.
 2021-03-12 23:35:39 +00:00
Jake Howard ab1e2fbae2 Increase ZFS RAM usage 
If i've got a load of RAM free, it might as well be being used to cache ZFS!
 2021-03-06 21:38:21 +00:00
Jake Howard 3eb286c9bd Move envrironment variables to docker 
Using the `TTRSS_` prefix to follow upstream standard rather than container's

https://github.com/lunik1/docker-tt-rss/issues/3
 2021-03-06 12:11:08 +00:00
Jake Howard 8d136f0b55 Set default phone region for Nextcloud 2021-03-06 11:19:11 +00:00
Jake Howard 9d6ed88e13 Monitor proxmox stats 2021-03-05 22:14:21 +00:00
Jake Howard d43d3433fa Collect SMART metrics for disks 2021-03-05 20:50:08 +00:00
Jake Howard 6b95b75fc2 Move telegraf to host 
This makes metric collection for SMART much simpler. I'll still be using the prometheus node exporter for actual system metrics, though.
 2021-03-05 20:39:11 +00:00
Jake Howard aa3da3cf10 Upgrade gitea to 1.13.3 2021-03-05 20:05:51 +00:00
Jake Howard 89dbbc71e5 Move files into application directories 2021-03-05 14:40:17 +00:00
Jake Howard 8e977edba1 Ignore go metrics 2021-03-05 14:27:33 +00:00
Jake Howard b264e5cbcc Monitor traefik with prometheus rather than influxdb 2021-03-04 16:37:53 +00:00
Jake Howard e8960ebf27 Connect forrest to nebula hosts 2021-03-04 16:08:53 +00:00
Jake Howard 2e05ed08fa Use hostname rather than fqdn 2021-03-04 16:06:43 +00:00
Jake Howard a4eb26b129 Use Nebula as the primary private interface rather than wireguard 2021-03-04 16:02:42 +00:00
Jake Howard c6d9102e1e Don't install NTP on LXC containers 
This can cause issues with containers trying to sync the system clock, and getting it wrong
 2021-03-04 15:45:47 +00:00