31a2371fa1
Simplify task includes
2021-09-18 07:23:03 -05:00
9b79068380
Allow for the definition of a singular proxy_pass on ingress_servers to simplify configuration
2021-09-18 07:19:26 -05:00
60bfe91947
Add role for ingress controller, move configuration into it and its data structures
2021-09-18 00:04:05 -05:00
37150bf7d1
Remove polkit.service check
...
Apparently it's completely normal behavior for this service to be not running on a fresh boot
2021-09-14 19:40:53 -05:00
0f1fbf4fea
Allow 30 second timeouts on check_by_ssh
2021-09-14 17:26:47 -05:00
ac702380b1
Add git to the tags for monitoring-scripts
2021-09-14 17:22:50 -05:00
b4f564cade
Fix mountpoints and NFS exports for media
2021-09-13 13:59:27 -05:00
3f3c7b8392
Decom the K8s cluster, roll all its jobs into one singular machine
2021-09-13 13:50:22 -05:00
e49ebc583f
Upgrade Netbox to 3.0
2021-09-12 15:07:31 -05:00
e405d7bf79
Add some directives to make Nextcloud stop throwing 413s
2021-09-11 10:36:22 -05:00
3f8ecbd8f5
Fix my borked pgsql connection pooling check
2021-09-07 17:08:18 -05:00
4bf02aedd3
Add even more checks for zerotier and psql
2021-09-07 16:11:11 -05:00
3cf9b94cea
Add a quick service check for postgresql
2021-09-07 15:29:26 -05:00
b349015913
Add a ton more checks for things
2021-09-07 15:00:43 -05:00
92f26b7a0c
Add check for atd
2021-09-07 14:55:00 -05:00
c362effe2a
Remove NRPE
2021-09-07 14:33:45 -05:00
bad192e93e
Refactor Nagios checks into check_by_ssh instead of NRPE
...
I was never particularly fond of having a random one-off daemon doing my RCE. Sure, it offers some protection, but limiting my exposure to the open internet is far more ideal.
I have tremendously more trust in the OpenSSH project than I do in Nagios. And for that reason, I'll be deprecating NRPE and shredding config files once these plays clean up
2021-09-07 14:27:23 -05:00
b38bb4bf62
Fix improper tagging on NRPE role
2021-09-07 13:41:21 -05:00
1ca062d6ea
Modularize declaration of Nagios commands
2021-09-07 13:37:06 -05:00
2a7d343ef1
Move SSH check into YAML declaration of services
2021-09-07 13:29:19 -05:00
8e845b5f4e
Modularize out all our service checks
...
I want them in DATA STRUCTURES God dammit. Get them out of the config file.
2021-09-06 19:43:54 -05:00
d3e51301bb
Remove deprecated SNMP service checks
2021-09-06 19:23:54 -05:00
fc2b3cb7b3
Rename Nagios config to more appropriately reflect its role
2021-09-06 19:13:15 -05:00
360238fdd4
Ensure we're on a version of Netbox with secrets support
...
*sigh*
Guess I gotta set up a vault or something now.
2021-09-01 19:25:31 -05:00
c299e505cf
Add Nextcloud auto app update cronjob
2021-08-29 23:55:56 -05:00
4bea6c2168
Add _netdev to args for pi-storage-1 mount
2021-08-29 16:43:55 -05:00
a6a8cd8590
Figure out how custom_apps works with Nextcloud
2021-08-28 11:01:44 -05:00
579b2fa296
Move "all" configuration into its own playbook
2021-08-26 02:39:17 -05:00
62b6a93b65
Discard cron output again
2021-08-24 21:22:11 -05:00
20e73e6fcf
I'm fucking stupid? Don't put the TTY flag on things that aren't TTYs
2021-08-24 21:21:53 -05:00
89e86efafc
Log output of Nextcloud cron to file for debugging
2021-08-24 21:16:44 -05:00
45098866e3
Add some stuff for MOVIE NIGHT WIT DA BOIS
2021-08-24 16:58:45 -05:00
2cef4b1992
Fix incorrect mountpoint for srv
2021-08-24 13:28:53 -05:00
6a938ea6b3
Add Nagios user to pi-storage-1
2021-08-24 12:40:32 -05:00
3b133782c9
Have pi-storage-1 psql listen on localhost
2021-08-24 12:29:44 -05:00
f6004def4a
Add system-wide cronjob for Nextcloud cron
...
Guess that's not containerized, huh
2021-08-24 12:25:29 -05:00
145dcfe3fb
Add Redis for Nextcloud, plus some config tuning
2021-08-24 01:12:12 -05:00
fc6739907e
Remove unnecessary tasks and var files
2021-08-24 00:44:17 -05:00
e49b8e26a0
Fix srv.9iron.club using a mountpoint that didn't make sense
2021-08-24 00:39:42 -05:00
54eeb4a643
God damn can I stop forgetting random small shit please
2021-08-24 00:35:41 -05:00
d8bf31b144
Add rewrite for www.9iron.club to nginx config
2021-08-24 00:32:33 -05:00
1fb222fb15
Move web1 over to a containerized setup, containerize Nextcloud
2021-08-24 00:31:11 -05:00
a6cc1ecece
Move ansible_pull vars to the relevant playbook
2021-08-23 23:25:02 -05:00
38b52a5e4a
Make said playbook executable
2021-08-23 23:22:17 -05:00
5486f26c76
Move S76 configuration to its own playbook with a couple of tasks
2021-08-23 23:21:58 -05:00
02dd6cd553
Reorganize ALL of the playbooks
2021-08-23 20:28:18 -05:00
a2a5f6eedc
Begin a refactor of playbook naming and organization
2021-08-23 20:20:59 -05:00
7f8a06180d
Rename desktops from tags_desktop to device_roles_workstation
...
I already have the role so I may as well
2021-08-23 20:05:27 -05:00
535509db0a
Fix open quotes on NRPE config
2021-08-23 18:23:30 -05:00
26c776a7db
Add check_pgsql monitors
2021-08-23 18:18:53 -05:00
406adc20b9
Tune psql1 a bit to avoid more Bleromer outages
2021-08-22 10:45:23 -05:00
7d3e8b5a86
Specify backup dirs per-desktop
2021-08-20 15:07:27 -05:00
227f5828cd
Oh right the disk check is here
2021-08-18 23:45:21 -05:00
888353910d
Add checks for reboot-required
2021-08-18 23:01:26 -05:00
c031124246
Tighten the thresholds for disk warnings a bit more
2021-08-18 22:37:22 -05:00
ea8e205b42
Rename a bunch of checks to be shorter
2021-08-18 22:28:41 -05:00
5efa094fdc
Back up Pi k8s nodes in some rudimentary way
2021-08-18 19:15:52 -05:00
94edbeafd9
Add checks for some common Systemd units
2021-08-18 19:05:16 -05:00
051fee73d3
Clone a new monitoring-scripts repo to hosts with NRPE installed
2021-08-18 18:16:43 -05:00
812b6dff77
Destroy old MC servers
2021-08-16 00:02:37 -05:00
f8951d61a4
Tag swap monitoring separately from other NRPE checks
2021-08-15 15:36:25 -05:00
beb8cad9ed
Fix swap being way too lenient when there's no swap space at all
2021-08-15 15:28:34 -05:00
668ef3a75f
Fix up some checks, add the swap check
2021-08-15 15:21:46 -05:00
9f4727b6c9
Tweak checks to make them more better
2021-08-15 15:18:52 -05:00
4d0b005181
Add NRPE role, provision checks for it
2021-08-15 14:24:35 -05:00
2918a3348b
Polish up our SNMP checks and playbooks
2021-08-15 13:09:04 -05:00
c745de9309
Reorder args on TCP checks to better match the natural sorting order of the iterations
2021-08-15 02:44:42 -05:00
94f6d45d07
Fix HTTP checks that redirect to TLS connections failing
2021-08-15 02:43:59 -05:00
ce77c104a6
Fix typo in docker-prune playbook
2021-08-15 02:30:20 -05:00
9ab0f62442
Genericize manually-defined checks into tagged Netbox services
2021-08-15 02:29:56 -05:00
73abab9607
Add docker-prune playbook
2021-08-15 00:59:08 -05:00
be7fa959ea
Switch to a regex match for that SNMP check
2021-08-08 15:34:11 -05:00
da432c0dcc
Make our Nagios SNMP user, apply some changes to its container, and spin up some barebones checks
2021-08-08 14:46:58 -05:00
a254910cdc
Testing some SNMP stuff
2021-08-08 13:36:52 -05:00
caadf375f2
Add basic site checks
2021-08-08 12:35:35 -05:00
be7d1a24d6
Auto-restart nagios when its config changes
2021-08-08 12:15:10 -05:00
4c2bfb996c
Actually add that Nagios template
2021-08-08 02:24:59 -05:00
e968d4a7cf
Fix up that jank config and make it actually totally usable
2021-08-08 01:20:48 -05:00
5d5cab59eb
Add Nagios and some dysfunctional templating code
2021-08-08 00:28:25 -05:00
691a934297
Genericize the inclusion of libraspberrypi-bin
2021-08-07 17:23:15 -05:00
d68e3430a8
Modularize zerotier as well
2021-08-07 17:14:28 -05:00
759df2f593
Allow for dynamic tagging of ansible-pull hosts
2021-08-07 17:09:20 -05:00
07ea9806da
Docker goes on everything
2021-08-07 16:55:28 -05:00
38f70d0fca
Unify motd definition
2021-08-07 16:52:19 -05:00
30dd4ff8dc
Divide webservices into task files
2021-08-07 16:49:24 -05:00
69f3edcf2b
Clean out deprecated k8s garbage
2021-08-07 16:31:36 -05:00
55304ac4d9
Rename pistorage to tags_pistorage
2021-08-07 12:16:07 -05:00
340da1926e
Move gameservers into task files
2021-08-07 12:08:29 -05:00
d6328146b3
Add nfs-common to common role
2021-08-07 11:52:03 -05:00
51b9ee745f
Spin botaniapack2 back up
2021-08-03 16:04:10 -05:00
de8c216dbf
Fix incorrect tag naming for k8s Pis
2021-08-02 11:00:37 -05:00
c831a76517
Remove netbox DB creds from pi-storage-1
2021-08-01 23:07:44 -05:00
ccad04d544
Attempt to pivot to a Netbox-based inventory solution
2021-08-01 22:28:39 -05:00
3051d8a299
Provision (read: move) Netbox to desu.ltd
2021-08-01 21:35:41 -05:00
ba321f0e91
Add Terraform stuff
2021-08-01 19:36:39 -05:00
ce034d28b0
Also, only those hosts that use ansible-pull should pull the repo to /etc/ansible
2021-08-01 15:07:02 -05:00
79220bef76
Disable ansible-pull for most systems
...
From now on, nightly plays triggered by GitLab will be standard.
Desktops will still use an ansible-pull configuration as there is
no guarantee that they will be available at 1AM.
2021-08-01 15:00:05 -05:00
1ef715f52e
Disable botaniapack2
2021-08-01 12:32:24 -05:00
e8c3ce3d13
Configure Docker per-machine
2021-07-27 17:41:27 -05:00
df86a7bf38
Also get rid of telegram
2021-07-27 17:23:40 -05:00