mirror/ infrastructure
1
1
Fork 0
mirror of https://gitlab.archlinux.org/archlinux/infrastructure.git synced 2024-05-18 03:16:03 +02:00
Code Issues
4,934 Commits 19 Branches 0 Tags 16 MiB
Commit Graph

12 Commits

Author SHA1 Message Date
Evangelos Foutras 7408a94a04
Correct gemini's "raid_level" host var to "raid10" 
We moved away from raid6 a while back; update the host var to reflect
the current configuration.
 2022-09-06 19:08:09 +03:00
Evangelos Foutras a9e0790f53
Remove the three dashes from all YAML documents 
These are used to signal the start of the document in a stream of many
documents. As Ansible only supports one YAML document per file this is
unnecessary. About a third of our YAML documents already lacked these.
 2022-06-08 14:35:45 +03:00
Evangelos Foutras 375a781611
Re-encrypt all default vaults with a new password 2022-05-07 17:45:19 +03:00
Kristian Klausen a8369f311d Be consistent and use en* everywhere for matching ethernet interfaces 
en is the prefix for ethernet according to systemd.net-naming-scheme(7)
 2021-07-30 20:18:18 +02:00
Kristian Klausen 664deb67ab WireGuard all hosts 
This is meant as a internal authenticated and encrypted network which we
can use for internal services, we don't want to expose to the internet
or when encryption is desired but not easily implementable.
 2021-07-06 20:58:15 +00:00
Jelle van der Waa 4bc660d6be
Remove zabbix-agent, zabbix roles 
Zabbix has been replaced by Prometheus for monitoring our services.
 2020-11-21 22:14:20 +01:00
Jelle van der Waa 992f81d766
By default enable the sshd jail for fail2ban 
For all hosts we want to have a working fail2ban for sshd brute force
attempts through a group_vars/all. For some hosts an override is
required to enable postfix or dovecot jails.
 2020-11-02 17:58:18 +01:00
Jelle van der Waa 97afb67171
gemini is a full archive server now 2020-06-27 16:23:02 +02:00
Jelle van der Waa 2eff66dd8a
Add fail2ban for sshd on gemini 2020-06-21 21:54:17 +02:00
Jelle van der Waa 569c120e2a
Monitor borg/nginx on gemini 2020-06-21 20:01:43 +02:00
Jelle van der Waa 209090046f
Move archive.archlinux.org to gemini 
In preparation of the move to gemini make it already run the
archive.archlinux.org frontend and the archive-uploader. So the
migration is done in steps.
 2020-06-21 19:18:16 +02:00
Sven-Hendrik Haase 4468f9062e
Add initial gemini.archlinux.org playbook 2020-06-17 09:14:49 +02:00