--- install: vm: memory: 2G numcpus: 2 autostart: True disks: primary: /dev/sda scsi: sda: type: zfs name: root size: 10g interfaces: - bridge: br-public name: primary0 mac: 52:54:00:02:f5:a1 network: nameservers: "{{ vm_host.network.dns }}" domain: "{{ host_domain }}" systemd_link: interfaces: "{{ install.interfaces }}" primary: &_network_primary_ name: primary0 address: "{{ vm_host.network.bridges.public.prefix | ansible.utils.ipaddr(vm_host.network.bridges.public.offsets[inventory_hostname]) }}" gateway: "{{ vm_host.network.bridges.public.gateway }}" address6: "{{ vm_host.network.bridges.public.prefix6 | ansible.utils.ipaddr(vm_host.network.bridges.public.offsets6[inventory_hostname]) }}" gateway6: "{{ vm_host.network.bridges.public.gateway6 }}" interfaces: - *_network_primary_ spreadspace_apt_repo_components: - prometheus ntp_variant: systemd-timesyncd bind_option_empty_zones_enable: no bind_option_notify: explicit bind_option_allow_transfer: - 116.203.212.131 - 2a01:4f8:c2c:906c::2 bind_option_allow_update: - none bind_option_allow_recursion: - localhost bind_stats_channels: - addr: 127.0.0.1 port: 8053 allow: - 127.0.0.1 bind_empty_onion_zone: yes bind_master_zones: chaos-at-home.org: file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.chaos-at-home.org" chaox.org: file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.chaox.org" spreadspace.org: file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.spreadspace" spreadspace.com: file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.spreadspace" spreadspace.net: file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.spreadspace" spreadspace.systems: file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.spreadspace" elev8.at: file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.elev8.at" java-sucks.com: file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.java-sucks.com" xn--gh-via.org: file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.gäh.org" # schaaas.at: # file: ... gimpf.org: file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.gimpf.org" movetogether.at: file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.movetogether.at" bind_slave_zones: realraum: masters: - 89.106.211.33 - 2a02:3e0:4000:1::1 zones: - realraum.at - r3.at - hack-challenge.at funkfeuer: masters: - 193.33.150.114 zones: - ffgraz.net - graz.funkfeuer.at - 10.in-addr.arpa - 150.33.193.in-addr.arpa - 151.33.193.in-addr.arpa prometheus_exporters_extra: - bind prometheus_job_multitarget_blackbox__probe: ch-mon: - instance: "ssh-{{ inventory_hostname }}" target: "{{ network.primary.address | ansible.utils.ipaddr('address') }}:{{ ansible_port | default(22) }}" module: ssh_banner - instance: "https-pan.chaos-at-home.org" target: "https://pan.chaos-at-home.org" module: http_tls_2xx