--- install_jumphost: ch-jump install: vm: memory: 8G numcpus: 8 autostart: yes disks: primary: /dev/sda scsi: sda: type: zfs name: root size: 10g sdb: type: zfs name: data size: 50g interfaces: - bridge: br-svc name: svc0 - bridge: br-iot name: iot0 - bridge: br-mgmt name: mgmt0 network: nameservers: "{{ network_zones.svc.dns }}" domain: "{{ host_domain }}" systemd_link: interfaces: "{{ install.interfaces }}" primary: &_network_primary_ name: svc0 address: "{{ network_zones.svc.prefix | ipaddr(network_zones.svc.offsets[inventory_hostname]) | ipaddr('address/prefix') }}" gateway: "{{ network_zones.svc.gateway }}" static_routes: - destination: "{{ network_zones.lan.prefix }}" gateway: "{{ network_zones.svc.prefix | ipaddr(network_zones.svc.offsets['ch-gw-lan']) | ipaddr('address') }}" interfaces: - *_network_primary_ - name: iot0 address: "{{ network_zones.iot.prefix | ipaddr(network_zones.iot.offsets[inventory_hostname]) | ipaddr('address/prefix') }}" - name: mgmt0 address: "{{ network_zones.mgmt.prefix | ipaddr(network_zones.mgmt.offsets[inventory_hostname]) | ipaddr('address/prefix') }}" lvm_groups: mondata: pvs: - /dev/sdb spreadspace_apt_repo_components: - prometheus prometheus_server_storage: type: lvm vg: mondata lv: prometheus size: 30G fs: ext4 prometheus_server_alertmanager: url: "127.0.0.1:9093" path_prefix: "/alertmanager/" prometheus_server_web_external_url: /prometheus/ prometheus_exporters_extra: - blackbox prometheus_exporter_blackbox_modules_extra: icmp: prober: icmp promethues_alertmanager_smtp: smarthost: "{{ network_zones.lan.prefix | ipaddr(network_zones.lan.offsets['ch-prometheus-legacy']) | ipaddr('address') }}:25" from: "noreply@chaos-at-home.org" require_tls: no prometheus_alertmanager_web_route_prefix: /alertmanager/ grafana_secret_key: "{{ vault_grafana_secret_key }}" prometheus_server_jobs_extra: | - job_name: 'ping' metrics_path: /proxy params: module: - blackbox - icmp scheme: https tls_config: ca_file: /etc/ssl/prometheus/ca-crt.pem cert_file: /etc/ssl/prometheus/server/scrape-crt.pem key_file: /etc/ssl/prometheus/server/scrape-key.pem static_configs: - targets: - 62.99.185.129 - 9.9.9.9 relabel_configs: - source_labels: [__address__] target_label: __param_target - source_labels: [__param_target] target_label: instance - target_label: __address__ replacement: 192.168.32.230:9999 - job_name: 'https' metrics_path: /proxy params: module: - blackbox - http_tls_2xx scheme: https tls_config: ca_file: /etc/ssl/prometheus/ca-crt.pem cert_file: /etc/ssl/prometheus/server/scrape-crt.pem key_file: /etc/ssl/prometheus/server/scrape-key.pem static_configs: - targets: - web.chaos-at-home.org relabel_configs: - source_labels: [__address__] target_label: __param_target - source_labels: [__param_target] target_label: instance - target_label: __address__ replacement: 192.168.32.230:9999 - job_name: 'ssh' metrics_path: /proxy params: module: - blackbox - ssh_banner scheme: https tls_config: ca_file: /etc/ssl/prometheus/ca-crt.pem cert_file: /etc/ssl/prometheus/server/scrape-crt.pem key_file: /etc/ssl/prometheus/server/scrape-key.pem static_configs: - targets: - 192.168.32.230:222 relabel_configs: - source_labels: [__address__] target_label: __param_target - target_label: instance replacement: 'ch-mon' - target_label: __address__ replacement: 192.168.32.230:9999