Alexandre Iooss
f0b8075ca6
postgresql: move variables in playbook
3 years ago
Alexandre Iooss
aba0370c5b
Add grafana playbook and machine
3 years ago
pz2891
7ca7c27fec
Add PDU snmp credentials
3 years ago
jeltz
6f927e30f3
Exclude docker and lxcfs folders from borgbackup
3 years ago
jeltz
6713b550b6
Merge branch 'master' into backups
3 years ago
otthorn
e570ce67b3
[borgbackup_client] do not backup /var/log/
3 years ago
otthorn
c5afbdbde4
remove borg_host_dir
3 years ago
jeltz
c99b611b8f
Various fixes
3 years ago
jeltz
f45cd77510
Merge branch 'master' into logs-first-phase
3 years ago
otthorn
a01a2095d6
Add passwords in all and vault for postgres db for wikijs, gitea, nextcloud, drone
3 years ago
otthorn
904678d1ac
[borgbackup_client] Add borg encryption passphrase to vault
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is passing
Details
3 years ago
otthorn
d16676bfb6
[borgbackup_client] hostname should also be unique, but more legible than fqdn
3 years ago
otthorn
cdcfad7ac2
[borgbackup_client] backup /var/ also (for now)
3 years ago
otthorn
454bc66ae0
[borgbackup_client] backup /etc/ everywhere
3 years ago
jeltz
69516012a2
Add databases for Grafana and CAS
continuous-integration/drone/push Build is failing
Details
continuous-integration/drone/pr Build is failing
Details
3 years ago
jeltz
df4bee2980
Add kanboard database to bdd-ovh
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is passing
Details
3 years ago
otthorn
b3fa8a455d
Add/Update password for postgres db codimd, etherpad and synapse
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is passing
Details
3 years ago
otthorn
5871e1cfb8
Add/Update password for postgres db codimd, etherpad and synapse
3 years ago
jeltz
deb4372588
Merge branch 'master' into add-ssh-keys
continuous-integration/drone/push Build is failing
Details
continuous-integration/drone/pr Build is failing
Details
3 years ago
jeltz
2e912fc47a
Add recovery SSH keys for ynerant and otthorn
continuous-integration/drone/pr Build is failing
Details
continuous-integration/drone/push Build is failing
Details
3 years ago
jeltz
8ae94fa8f8
Rename vault_snmp_switch{s,}_community
3 years ago
jeltz
5d319cf167
Define rsyslog_{inputs,outputs} for all hosts
3 years ago
jeltz
1fe8d1d28b
Remove "Root Aurore" SSH key + add histausse key
3 years ago
jeltz
c3d24c1cd0
Add SSH key for Jeltz
continuous-integration/drone/push Build is passing
Details
3 years ago
ynerant
ae151321db
[nginx/certbot] Clone roles from Crans
...
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is passing
Details
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
3 years ago
ynerant
4ecb6ed7be
Update re2o-service password
...
continuous-integration/drone/push Build is failing
Details
continuous-integration/drone/pr Build is failing
Details
Signed-off-by: ynerant <ynerant@crans.org>
3 years ago
pz2891
88ffd2297f
Add residence les rives
continuous-integration/drone/push Build is failing
Details
4 years ago
Yohann D'ANELLO
f9b7e052b9
Store reverse proxy data in proxy host vars
4 years ago
Yohann D'ANELLO
c11b3bc20f
Comments must start by a space
4 years ago
Yohann D'ANELLO
9505e87113
Use true instead of yes
4 years ago
chirac
4a43c0f0db
Update re2o ip
4 years ago
chirac
68f7fd5b59
Isc-dhcp-server config for banni/accueil vlans
4 years ago
Yohaï-Eliel BERREBY
9b07fc9001
dhcp: manage dhcp-aurore
4 years ago
chirac
26743b464d
Add Radius-aurore.adm.auro.re to ansible managed radius servers
4 years ago
Yohaï-Eliel BERREBY
646ebd3ba9
router: ansibilize routeur-aurore{,backup}
4 years ago
Yohaï-Eliel BERREBY
3a8112bf0d
roll out (private) IPv6 on George Sand
4 years ago
Yohaï-Eliel BERREBY
d54da8d2b9
add ipv6_base_prefix variable
4 years ago
Yohaï-Eliel BERREBY
337906c6c0
add gs dhcp, dns, routing
...
and add thor to inventory
4 years ago
Yohaï-Eliel BERREBY
a6b15c0e10
vars: use apartment block id for subnets
4 years ago
Yohaï-Eliel BERREBY
63b4425a27
gs: fix vars
4 years ago
Yohaï-Eliel BERREBY
99070ed5ef
radius: step 2 of deployment (WIP)
4 years ago
Yohaï-Eliel BERREBY
e2fa1964af
radius: change proxy.conf password, use vault
...
and also actually template it... it wasn't being
uploaded.
4 years ago
Yohaï-Eliel BERREBY
266b0dde6f
radius: initial setup
4 years ago
Yohaï-Eliel BERREBY
ba3aec348f
keepalived: deploy to fleming w/ proper password
4 years ago
Alexandre Iooss
a992612381
Add certbot challenge DNS-01 key
4 years ago
Alexandre IOOSS
81592fa986
Merge branch 'master' into 'aurore-dev'
...
# Conflicts:
# .gitignore
# hosts
# network.yml
# proxmox.yml
4 years ago
Yohaï-Eliel BERREBY
a77b2c4f0f
unbound: fix MTU settings
...
That was the root cause of all our DNSSEC issues.
Now that this was fixed, we're not having these anymore,
so the relaxed checks can be restored back to their original state.
4 years ago
Yohaï-Eliel BERREBY
662452065f
dhcp: remove Cloudflare from backup DNS
...
and rename variable, since these are not technically
upstream DNS servers
(unbound will ask the root servers, not these)
4 years ago
Yohaï-Eliel BERREBY
a0651d7703
unbound: bind to the right addresses on backup hosts
4 years ago
Yohaï-Eliel BERREBY
22166bc69b
unbound: log to journalctl
4 years ago