diff options
author | Christian Pointner <equinox@spreadspace.org> | 2024-06-02 20:48:51 +0200 |
---|---|---|
committer | Christian Pointner <equinox@spreadspace.org> | 2024-06-02 20:48:51 +0200 |
commit | f595ca6e49e975459604a10f991ff472f41d4bdf (patch) | |
tree | d635009f31c50b9fd8df0d48b624d162205d054d /inventory/host_vars/ch-repo.yml | |
parent | revert some debian/preseed and ubuntu/autoinstall changes because they don't ... (diff) |
rename ch-apt to ch-repo
Diffstat (limited to 'inventory/host_vars/ch-repo.yml')
-rw-r--r-- | inventory/host_vars/ch-repo.yml | 104 |
1 files changed, 104 insertions, 0 deletions
diff --git a/inventory/host_vars/ch-repo.yml b/inventory/host_vars/ch-repo.yml new file mode 100644 index 00000000..cbba6599 --- /dev/null +++ b/inventory/host_vars/ch-repo.yml @@ -0,0 +1,104 @@ +--- +install_jumphost: ch-jump + +install: + vm: + memory: 2G + numcpus: 2 + autostart: True + disks: + primary: /dev/sda + scsi: + sda: + type: zfs + name: root + size: 10g + sdb: + type: zfs + name: data + size: 50g + properties: + 'syncoid:sync': 'false' + interfaces: + - bridge: br-svc + name: svc0 + +network: + nameservers: "{{ network_zones.svc.dns }}" + domain: "{{ host_domain }}" + systemd_link: + interfaces: "{{ install.interfaces }}" + primary: &_network_primary_ + name: svc0 + address: "{{ network_zones.svc.prefix | ansible.utils.ipaddr(network_zones.svc.offsets[inventory_hostname]) }}" + gateway: "{{ network_zones.svc.gateway }}" + static_routes: + - destination: "{{ network_zones.lan.prefix }}" + gateway: "{{ network_zones.svc.prefix | ansible.utils.ipaddr(network_zones.svc.offsets['ch-gw-lan']) | ansible.utils.ipaddr('address') }}" + interfaces: + - *_network_primary_ + + +apt_repo_provider: anexia + +spreadspace_apt_repo_components: + - prometheus + +ntp_variant: systemd-timesyncd + + +lvm_groups: + storage: + pvs: + - /dev/sdb + + +apt_cacher_ng_storage: + type: lvm + vg: storage + lv: apt-cacher-ng + size: 15G + fs: ext4 + +apt_cacher_ng_hostname: apt.chaos-at-home.org + +apt_cacher_ng_remaps: + debian: + path: /debian + backends: + - http://debian.anexia.at/debian + debian-security: + path: /debian-security + backends: + - http://debian.anexia.at/debian-security + debian-archive: + path: /debian-archive + backends: + - http://archive.debian.org/debian + ubuntu: + path: /ubuntu + backends: + - http://ubuntu.anexia.at/ubuntu + kali: + path: /kali + backends: + - http://http.kali.org/kali + raspios: + path: /raspios + backends: + - http://archive.raspberrypi.com/debian + +apt_cacher_ng_admin_auth: + username: admin + password: "{{ vault_apt_cacher_ng_admin_auth_password }}" + + + +prometheus_job_multitarget_blackbox__probe: + ch-mon: + - instance: "ssh-{{ inventory_hostname }}" + target: "{{ network_zones.svc.prefix | ansible.utils.ipaddr(network_zones.svc.offsets[inventory_hostname]) | ansible.utils.ipaddr('address') }}:{{ ansible_port | default(22) }}" + module: ssh_banner + - instance: "http-apt.chaos-at-home.org" + target: "http://{{ apt_cacher_ng_hostname }}/acng-report.html" + module: "http_2xx" |