Compare commits
5 commits
d68fefe9a4
...
f8922d51bd
Author | SHA1 | Date | |
---|---|---|---|
f8922d51bd | |||
8c715171ff | |||
f84098dec8 | |||
acb18e77f6 | |||
1893ca6d99 |
8 changed files with 19 additions and 17 deletions
|
@ -3,6 +3,5 @@ hashi_arch: arm
|
||||||
consul_arch: arm64
|
consul_arch: arm64
|
||||||
nomad_arch: arm64
|
nomad_arch: arm64
|
||||||
docker_arch: arm64
|
docker_arch: arm64
|
||||||
k3s_version: v1.24.1+k3s1
|
|
||||||
k3s_role: 'client'
|
k3s_role: 'client'
|
||||||
k3s_server_hostname: hardtack1.minhas.io
|
k3s_server_hostname: hardtack1.minhas.io
|
||||||
|
|
|
@ -1,6 +1,7 @@
|
||||||
---
|
---
|
||||||
hashi_arch: arm
|
hashi_arch: arm
|
||||||
consul_arch: arm64
|
consul_arch: arm64
|
||||||
k3s_version: v1.25.4+k3s1
|
k3s_version: v1.24.8+k3s1
|
||||||
k3s_role: 'client'
|
k3s_role: 'client'
|
||||||
k3s_server_hostname: teapot01.minhas.io
|
k3s_server_hostname: teapot01.minhas.io
|
||||||
|
kube_storage: True
|
||||||
|
|
|
@ -4,7 +4,6 @@ haproxy_domains:
|
||||||
- { name: "gitea", url: "git.minhas.io" }
|
- { name: "gitea", url: "git.minhas.io" }
|
||||||
- { name: "kanban", url: "kanban.minhas.io" }
|
- { name: "kanban", url: "kanban.minhas.io" }
|
||||||
- { name: "nextcloud", url: "nextcloud.minhas.io" }
|
- { name: "nextcloud", url: "nextcloud.minhas.io" }
|
||||||
- { name: "radicale", url: "dav.minhas.io" }
|
|
||||||
- { name: "sudoscientist-go-backend", url: "api.sudoscientist.com" }
|
- { name: "sudoscientist-go-backend", url: "api.sudoscientist.com" }
|
||||||
- { name: "wallabag", url: "wallabag.minhas.io" }
|
- { name: "wallabag", url: "wallabag.minhas.io" }
|
||||||
...
|
...
|
||||||
|
|
|
@ -32,11 +32,6 @@ defaults
|
||||||
errorfile 503 /etc/haproxy/errors/503.http
|
errorfile 503 /etc/haproxy/errors/503.http
|
||||||
errorfile 504 /etc/haproxy/errors/504.http
|
errorfile 504 /etc/haproxy/errors/504.http
|
||||||
|
|
||||||
frontend fe_tcp
|
|
||||||
mode tcp
|
|
||||||
bind :8000
|
|
||||||
default_backend be_airsonic
|
|
||||||
|
|
||||||
frontend fe_default
|
frontend fe_default
|
||||||
mode http
|
mode http
|
||||||
bind :443 ssl crt /etc/haproxy/certs/ alpn h2,http/1.1
|
bind :443 ssl crt /etc/haproxy/certs/ alpn h2,http/1.1
|
||||||
|
@ -57,10 +52,6 @@ backend be_{{ domain.name }}
|
||||||
|
|
||||||
{% endfor %}
|
{% endfor %}
|
||||||
|
|
||||||
backend be_airsonic
|
|
||||||
balance leastconn
|
|
||||||
server airsonic 192.168.0.12:8001
|
|
||||||
|
|
||||||
resolvers consul
|
resolvers consul
|
||||||
nameserver consul 127.0.0.1:8600
|
nameserver consul 127.0.0.1:8600
|
||||||
accepted_payload_size 8192
|
accepted_payload_size 8192
|
||||||
|
|
3
ansible/roles/k3s/defaults/main.yml
Normal file
3
ansible/roles/k3s/defaults/main.yml
Normal file
|
@ -0,0 +1,3 @@
|
||||||
|
---
|
||||||
|
k3s_version: v1.24.8+k3s1
|
||||||
|
kube_storage: False
|
|
@ -13,9 +13,4 @@
|
||||||
enabled: yes
|
enabled: yes
|
||||||
name: k3s
|
name: k3s
|
||||||
state: started
|
state: started
|
||||||
|
|
||||||
- name: ensure nfsd is installed
|
|
||||||
apt:
|
|
||||||
name: nfs-common
|
|
||||||
state: present
|
|
||||||
...
|
...
|
||||||
|
|
|
@ -4,6 +4,8 @@
|
||||||
name:
|
name:
|
||||||
- apparmor
|
- apparmor
|
||||||
- apparmor-utils
|
- apparmor-utils
|
||||||
|
- nfs-common
|
||||||
|
- open-iscsi
|
||||||
|
|
||||||
- name: check k3s version
|
- name: check k3s version
|
||||||
shell:
|
shell:
|
||||||
|
@ -21,6 +23,7 @@
|
||||||
mode: 0755
|
mode: 0755
|
||||||
owner: root
|
owner: root
|
||||||
group: root
|
group: root
|
||||||
|
force: True
|
||||||
when: installed_k3s_version.stdout != k3s_version
|
when: installed_k3s_version.stdout != k3s_version
|
||||||
notify: restart k3s
|
notify: restart k3s
|
||||||
|
|
||||||
|
@ -45,4 +48,12 @@
|
||||||
owner: root
|
owner: root
|
||||||
group: root
|
group: root
|
||||||
mode: 0644
|
mode: 0644
|
||||||
|
|
||||||
|
- name: ensure mount is configured
|
||||||
|
ansible.posix.mount:
|
||||||
|
path: /mnt/storage
|
||||||
|
src: /dev/nvme0n1p1
|
||||||
|
fstype: ext4
|
||||||
|
state: mounted
|
||||||
|
when: kube_storage
|
||||||
...
|
...
|
||||||
|
|
3
vault/policies/external-dns.hcl
Normal file
3
vault/policies/external-dns.hcl
Normal file
|
@ -0,0 +1,3 @@
|
||||||
|
path "kv/data/external-dns" {
|
||||||
|
capabilities = ["read"]
|
||||||
|
}
|
Loading…
Reference in a new issue