Tips-Of-Mine/infrastructure
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,613 Commits 15 Branches 0 Tags
ee96e6ab08c4963eb9f0957dbf7cbc7efeae32c3
Commit Graph

1613 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Renovate
6c1c245c23 Update matrixdotorg/synapse Docker tag to v1.100.0 2024-02-02 13:38:12 +00:00
Renovate
379d4a26fa Update vabene1111/recipes Docker tag to v1.5.12 2024-02-02 13:38:00 +00:00
Renovate
f1a2694f1a Update lscr.io/linuxserver/mastodon Docker tag to v4.2.5 2024-02-02 13:37:05 +00:00
Jake Howard
02847355a7 Install tailscale 
Install, not configure
 2024-02-01 19:41:47 +00:00
Jake Howard
29cac09b48 Remove explicit port for headscale 2024-02-01 18:32:53 +00:00
Jake Howard
dba0262801 Remove website tmpfs 
The server's disk is probably fast enough, and container restarts will nuke that storage anyway
 2024-02-01 18:15:51 +00:00
Jake Howard
0c6528f9ca Restrict access to headscale OIDC and API 2024-01-31 21:40:43 +00:00
Jake Howard
dfa8328e7b Move gateway logs to separate file 2024-01-31 21:06:19 +00:00
Jake Howard
53c758a781 Monitor headscale with prometheus 2024-01-27 17:40:02 +00:00
Jake Howard
b51677b795 Back up headscale config 2024-01-27 15:04:53 +00:00
Jake Howard
2ceeaf091d Deploy headscale 2024-01-27 14:18:37 +00:00
Jake Howard
06784563a7 Don't resolve ipv6 
Something about this setup doesn't like it, so I'll disable v6 for now
 2024-01-26 21:43:04 +00:00
Renovate
4f6f4143ce Update matrixdotorg/synapse Docker tag to v1.99.0 2024-01-22 09:15:38 +00:00
Renovate
5292785cd9 Update wallabag/wallabag Docker tag to v2.6.8 2024-01-22 09:11:27 +00:00
Renovate
d297674fb5 Update vabene1111/recipes Docker tag to v1.5.11 2024-01-22 08:42:36 +00:00
Jake Howard
88f0828153 Use primary Quad9 servers 
DNSSEC and malware blocking is probably useful, just in case
 2024-01-21 23:19:49 +00:00
Jake Howard
cfc3de61b4 Add fallback quad9 address 
This aids availability, along with a healthcheck
 2024-01-21 23:05:25 +00:00
Jake Howard
c6bae0f797 Do simple endsWith matching for docker view 
This saves the need for a regex
 2024-01-14 22:27:02 +00:00
Jake Howard
4c5936b2aa Disable Grafana analytics 2024-01-14 15:30:12 +00:00
Jake Howard
9d685d85aa Update website deployment to unify containers 2024-01-14 14:22:19 +00:00
Jake Howard
ac166c3874 Start resolved to support mDNS 2024-01-10 13:28:45 +00:00
Jake Howard
06b9197c5b Sync terraform state to restic 
This allows it to be backed up easily
 2024-01-09 19:56:06 +00:00
Jake Howard
4a69df1d6c Ignore ansible-lint for nebula install block 
I'm smarter than it is
 2024-01-08 21:49:38 +00:00
Jake Howard
f33d19e156 Move AdGuardHome configuration to Terraform 
https://git.theorangeone.net/systems/adguardhome
 2024-01-08 21:45:28 +00:00
Jake Howard
ed59458f39 Add backups to tang 2024-01-08 19:20:55 +00:00
Jake Howard
616d20e23b Tweak some AGH settings 2024-01-08 19:01:46 +00:00
Jake Howard
383a57d1f2 Use DoH endpoint fot quad9 
Seems latency is much lower
 2024-01-08 18:21:03 +00:00
Jake Howard
9f13ace88c Use newer S3 configuration resources 2024-01-07 13:49:35 +00:00
Jake Howard
094091dd21 Add role for minio state management 2024-01-07 13:06:37 +00:00
Jake Howard
9ac9380387 Restructure state IAM to use separate role 2024-01-07 12:58:16 +00:00
Jake Howard
1555803d25 Move terraform state file 
This lets me use the bucket for other states too
 2024-01-06 21:28:57 +00:00
Jake Howard
c8211d4756 Use Debian repo version of nginx 
It's older, and doesn't have `stream` compiled in, but the repo one can't link to any of the installed modules, which is a non-starter.
 2024-01-04 14:17:36 +00:00
Jake Howard
57ad143268 Set password for homeassistant SMB mount 
It had an IP restriction, but still
 2024-01-03 21:23:49 +00:00
Jake Howard
16e9952b2f Replace custom restic logs with runitor 2024-01-03 21:09:07 +00:00
Jake Howard
f5154d1683 Use CoreDNS to do recursive CNAME aliasing for AGH 2024-01-02 17:48:47 +00:00
Jake Howard
3ed7074af6 Rename coredns role 2024-01-02 17:02:34 +00:00
Jake Howard
5581bbc01a Replace pihole with adguardhome 
AGH is much simpler to install and manage, and does DoH natively.
 2024-01-01 15:48:14 +00:00
Jake Howard
6a14679edf Only add IPv4 address for PVE sys domain 
For some reason, ipv6 doesn't really work with my current setup. It'll change at another time, so it's future me's problem
 2023-12-31 23:01:53 +00:00
Jake Howard
56bfe544e4 nginx HTTPS redirect on ipv6 2023-12-31 22:49:11 +00:00
Jake Howard
e03cc40bf3 Update DNS records to alias sys records 2023-12-31 21:10:55 +00:00
Jake Howard
6a23d8cab5 Use sys domain resource for reverse DNS 2023-12-31 18:22:21 +00:00
Jake Howard
8b21c7d64c Add record for PVE 2023-12-31 16:46:45 +00:00
Renovate
8df1806faa Update Terraform b2 to v0.8.7 2023-12-31 16:44:33 +00:00
Renovate
83543fe081 Update lscr.io/linuxserver/nextcloud Docker tag to v28.0.1 2023-12-28 21:39:28 +00:00
Jake Howard
0e0d0c9b82 walker doesn't have a traefik anymore 2023-12-26 22:31:12 +00:00
Jake Howard
026d8db13e Be root when generating dhparams 
This is needed to write to the destination
 2023-12-24 19:44:30 +00:00
Jake Howard
593a945c5c Install nginx from package manager if available 2023-12-24 19:44:30 +00:00
Jake Howard
bd15946f3b Update Nebula 2023-12-24 19:44:30 +00:00
Jake Howard
f4b96afcfa Deploy ntfy 2023-12-23 16:40:53 +00:00
Jake Howard
c0c7f393e3 Only pin to minor versions of gitea 2023-12-21 16:43:18 +00:00