Commit graph

199 commits

Author SHA1 Message Date
Alexandre IOOSS
81592fa986 Merge branch 'master' into 'aurore-dev'
# Conflicts:
#   .gitignore
#   hosts
#   network.yml
#   proxmox.yml
2020-05-03 16:11:19 +02:00
Yohaï-Eliel BERREBY
a77b2c4f0f unbound: fix MTU settings
That was the root cause of all our DNSSEC issues.
Now that this was fixed, we're not having these anymore,
so the relaxed checks can be restored back to their original state.
2020-05-02 18:59:22 +02:00
Yohaï-Eliel BERREBY
aae7e0120a unbound: drop verbosity but log SERVFAILs
TODO: less frequent log rotation because of decreased log volume
2020-05-02 18:06:58 +02:00
Yohaï-Eliel BERREBY
c54e8f5d67 unbound: smarter logging
- stop using journald, write to /var/log/unbound/
- set up frequent log rotation for the huge log files
we are producing
2020-05-02 17:13:01 +02:00
Yohaï-Eliel BERREBY
1dca5d2259 unbound: use handlers
Only restart unbound if the configuration
was actually updated.
2020-05-02 16:43:44 +02:00
Yohaï-Eliel BERREBY
b94c62d710 unbound-control: no certificates for local use 2020-05-02 16:37:21 +02:00
Yohaï-Eliel BERREBY
3695a3d771 unbound: attempt to fix spurious blacklisting 2020-04-28 23:14:43 +02:00
Yohaï-Eliel BERREBY
b4482b6d3b unbound: configure unbound-control 2020-04-28 20:21:47 +02:00
Yohaï-Eliel BERREBY
bac131791b unbound: bump verbosity up to 3
Some users are having issues resolving *.auro.re domains from our
network, and the bug does not show itself reliably. Increased verbosity
should help us pinpoint its source.
2020-04-28 20:13:56 +02:00
Yohaï-Eliel BERREBY
ded5f38aec unbound: name set_fact tasks 2020-04-18 17:36:25 +02:00
Yohaï-Eliel BERREBY
662452065f dhcp: remove Cloudflare from backup DNS
and rename variable, since these are not technically
upstream DNS servers
(unbound will ask the root servers, not these)
2020-04-18 17:06:38 +02:00
Yohaï-Eliel BERREBY
a0651d7703 unbound: bind to the right addresses on backup hosts 2020-04-18 16:56:34 +02:00
Yohaï-Eliel BERREBY
b57fa6e356 dhcp: use backup DNS servers too 2020-04-18 16:56:34 +02:00
Yohaï-Eliel BERREBY
22166bc69b unbound: log to journalctl 2020-04-18 16:56:17 +02:00
Yohaï-Eliel BERREBY
1777d0e154 unbound: log to /var/log/unbound.log, errors only 2020-04-18 15:42:31 +02:00
Yohaï-Eliel BERREBY
7275ebda47 dhcp: ask clients to use our DNS servers 2020-04-18 15:39:32 +02:00
Yohaï-Eliel BERREBY
f05e92dc5e unbound: remove unchecked configuration keys 2020-04-13 18:42:02 +02:00
Yohaï-Eliel BERREBY
b3712ed335 unbound: initial deployment 2020-04-13 18:41:12 +02:00
Yohaï-Eliel BERREBY
8fee0857c1 re2o-service: force clone git repository 2020-04-06 19:03:38 +02:00
Yohaï-Eliel BERREBY
8579b99b2e dhcp: cron.d entry + let main.py restart the server 2020-04-06 19:03:10 +02:00
Yohaï-Eliel BERREBY
6cce62850d dhcp: configure log rotation 2020-04-06 17:58:14 +02:00
Yohaï-Eliel BERREBY
7347829494 tackle logs 2020-04-06 17:48:56 +02:00
Yohaï-Eliel BERREBY
51fdb89940 extract dhcp-failover.conf into separate file 2020-04-06 17:28:04 +02:00
Yohaï-Eliel BERREBY
d323b78c16 fix bogus dhcpd config
- move failover peer declaration to beginning of file
- set split only on primary
- fix re2o-service hostname
- add /etc/default/isc-dhcp-server
2020-04-06 17:22:50 +02:00
Yohaï-Eliel BERREBY
34b448faec dhcp: implement failover peer configuration 2020-04-06 14:41:34 +02:00
Yohaï-Eliel BERREBY
2a0a2e2ac6 dhcp: fix silly mix-ups 2020-04-06 13:20:52 +02:00
Yohaï-Eliel BERREBY
709e4614c2 suppression d'une déclaration DNS redondante 2020-04-05 19:04:03 +02:00
Yohaï-Eliel BERREBY
e6b2f80b49 templatisation de la config dhcpd
non encore testé
2020-04-05 18:44:37 +02:00
fpoutre
40e915a7e0 happy little mistakes 2020-03-22 19:06:38 +01:00
fpoutre
23f1b7a4a1 added support for edc and gs in ldap replica backup configuration 2020-03-22 18:42:00 +01:00
fpoutre
3a399bd04c added ldap-replica support for ldap-clients of pacaterie and fleming 2020-02-20 18:42:34 +01:00
Alexandre Iooss
5061a029e0
Do not ask why, it was not there 2019-12-05 14:07:48 +01:00
Alexandre Iooss
ccbd7d3770
Failover VMs 2019-11-01 15:38:35 +01:00
Alexandre Iooss
6dec3ed0d1
Proxmox playbook and unifi ap 2019-11-01 15:17:59 +01:00
Alexandre Iooss
5b3ac2a21a
Merge crans version 2019-11-01 14:16:32 +01:00
Alexandre Iooss
e91d47ea8d
Update matrix conf 2019-08-29 07:04:37 +02:00
Alexandre Iooss
6cc0a6a6b7
Remove appservice Discord 2019-08-29 07:03:54 +02:00
Alexandre Iooss
743e902e85
Refractor ldap 2019-08-29 07:03:05 +02:00
Alexandre Iooss
e15ea7854a
Base config sync with crans 2019-08-29 07:02:15 +02:00
Alexandre Iooss
044e8af3aa
Move EtherPad to Docker 2019-07-26 08:50:07 +02:00
Alexandre Iooss
b488007578
[docker] Install docker-compose 2019-07-25 19:10:50 +02:00
Alexandre Iooss
24331ca25b
Fix CI 2019-07-22 21:04:58 +02:00
Alexandre Iooss
2e753db873
Indicate unifi role 2019-07-22 21:00:13 +02:00
Alexandre Iooss
694501dfa3
Merge crans monitoring 2019-07-22 20:56:43 +02:00
Alexandre Iooss
a45ca1a890
Move CodiMD to Docker 2019-07-22 19:14:43 +02:00
Alexandre Iooss
9a35650166
Move Riot web to docker 2019-07-22 10:32:34 +02:00
Alexandre Iooss
66d870ce36
Add docker role 2019-07-22 10:32:01 +02:00
Alexandre Iooss
9018c69da3
Fix matrix v1 2019-07-22 09:12:55 +02:00
Alexandre Iooss
1ed6228728
Simplify help message on server login 2019-05-26 13:03:09 +02:00
Alexandre Iooss
2e0679a973
[passbolt] Add some dep 2019-05-26 12:52:41 +02:00