--- install: vm: memory: 6G numcpus: 4 autostart: yes disks: primary: /dev/sda scsi: sda: type: zfs name: root size: 10g sdb: type: zfs backend: storage name: data size: 50g interfaces: - bridge: br-lan name: lan0 - bridge: br-mgmt name: mgmt0 - bridge: br-funkfeuer name: funkfeuer0 - bridge: br-forum_a1 name: funkfeuer1 network: nameservers: "{{ network_zones.lan.dns }}" domain: "{{ host_domain }}" systemd_link: interfaces: "{{ install.interfaces }}" primary: &_network_primary_ name: lan0 address: "{{ network_zones.lan.prefix | ipaddr(network_zones.lan.offsets[inventory_hostname]) | ipaddr('address/prefix') }}" gateway: "{{ network_zones.lan.gateway }}" interfaces: - *_network_primary_ - name: mgmt0 address: "{{ network_zones.mgmt.prefix | ipaddr(network_zones.mgmt.offsets[inventory_hostname]) | ipaddr('address/prefix') }}" - name: funkfeuer0 address: "{{ network_zones.murat_transfer.prefix | ipaddr(network_zones.murat_transfer.offsets[inventory_hostname]) | ipaddr('address/prefix') }}" - name: funkfeuer1 address: "{{ network_zones.funkfeuer.prefix | ipaddr(network_zones.funkfeuer.offsets[inventory_hostname]) | ipaddr('address/prefix') }}" ssh_users_root: - equinox - datacop lvm_groups: mondata: pvs: - /dev/sdb spreadspace_apt_repo_components: - prometheus prometheus_server_storage: type: lvm vg: mondata lv: prometheus size: 30G fs: ext4 prometheus_server_alertmanager: url: "127.0.0.1:9093" path_prefix: "/alertmanager/" prometheus_server_web_external_url: /prometheus/ prometheus_exporters_extra: - blackbox - nut - mikrotik prometheus_exporter_blackbox_modules_extra: icmp: prober: icmp prometheus_exporter_mikrotik_devices: - name: ele-br-nextlib0 address: "{{ network_zones.mgmt.prefix | ipaddr(network_zones.mgmt.offsets['ele-br-nextlib0']) | ipaddr('address') }}" user: prometheus password: "{{ vault_prometheus_exporter_mikrotik_api_password }}" - name: ele-br-tub0 address: "{{ network_zones.mgmt.prefix | ipaddr(network_zones.mgmt.offsets['ele-br-tub0']) | ipaddr('address') }}" user: prometheus password: "{{ vault_prometheus_exporter_mikrotik_api_password }}" - name: ele-br-nextlib1 address: "{{ network_zones.funkfeuer.prefix | ipaddr(network_zones.funkfeuer.offsets['ele-br-nextlib1']) | ipaddr('address') }}" user: prometheus password: "{{ vault_prometheus_exporter_mikrotik_api_password }}" - name: ele-br-tub1 address: "{{ network_zones.funkfeuer.prefix | ipaddr(network_zones.funkfeuer.offsets['ele-br-tub1']) | ipaddr('address') }}" user: prometheus password: "{{ vault_prometheus_exporter_mikrotik_api_password }}" prometheus_alertmanager_web_route_prefix: /alertmanager/ prometheus_alertmanager_smtp: smarthost: "mailrelay.chaos-at-home.org:587" from: "noreply@elev8.at" require_tls: yes auth: username: ele-mon password: "{{ vault_prometheus_alertmanager_smtp_auth_password }}" prometheus_alertmanager_route: receiver: equinox # routes: # - match_re: # instance: ^$ # receiver: empty prometheus_alertmanager_receivers: - name: empty - name: equinox email_configs: - to: equinox@spreadspace.org grafana_secret_key: "{{ vault_grafana_secret_key }}" prometheus_server_jobs_extra: | - job_name: 'mikrotik' metrics_path: /proxy params: module: - mikrotik scheme: https tls_config: ca_file: /etc/ssl/prometheus/ca-crt.pem cert_file: /etc/ssl/prometheus/server/scrape-crt.pem key_file: /etc/ssl/prometheus/server/scrape-key.pem static_configs: - targets: - dummy relabel_configs: - target_label: __address__ replacement: 192.168.18.220:9999