Jake Howard
|
92052a3d0a
|
Unify nginx configuration
This creates a simple base configuration skeleton, that other configuration can be easily loaded into.
|
2023-12-16 17:47:04 +00:00 |
|
Jake Howard
|
dd1558bafa
|
Set sensible permissions on nftables config
|
2023-11-05 21:43:16 +00:00 |
|
Jake Howard
|
850278ab19
|
Allow nebula through firewall
|
2023-11-03 18:06:36 +00:00 |
|
Jake Howard
|
9f83efa53b
|
Use nftables for firewall on ingress
See ya never, iptables!
|
2023-10-26 21:34:06 +01:00 |
|
Jake Howard
|
f07b5d9b7b
|
Migrate include: to include_tasks
|
2022-01-22 20:21:32 +00:00 |
|
Jake Howard
|
c5215e330b
|
Update yamllint to fix dependency issue
I think this still validates everything we need it to
|
2022-01-11 20:51:12 +00:00 |
|
Jake Howard
|
453a374801
|
Replace ingress proxy with nginx
This enables HTTPS redirecting at it too much more easily, and matches the gateway configuration.
Requires using upstream versions of nginx to enable https://nginx.org/en/docs/stream/ngx_stream_realip_module.html
|
2021-08-24 14:21:51 +01:00 |
|
Jake Howard
|
3485f8e1f0
|
Actually version the ingress haproxy config
|
2021-06-12 17:32:47 +01:00 |
|
Jake Howard
|
a2c6d7c276
|
Swap out alpine for debian on ingress
Mostly for future nebula deployment
|
2021-01-22 14:53:02 +00:00 |
|
Jake Howard
|
30cb9e52e7
|
Install and provision wireguard client on ingress server
|
2020-12-21 18:24:35 +00:00 |
|