--- system_lvm_volume_size_root: 3G system_lvm_volume_size_varlog: 2G install: vm: memory: 48G numcpus: 8 autostart: True disks: primary: /dev/sda scsi: sda: type: zfs name: root size: 15g sdb: type: zfs name: data size: 800g properties: compression: off interfaces: - bridge: br-public name: primary0 network: nameservers: "{{ vm_host.network.dns }}" domain: "{{ host_domain }}" systemd_link: interfaces: "{{ install.interfaces }}" primary: &_network_primary_ name: primary0 address: "{{ vm_host.network.bridges.public.prefix | ansible.utils.ipaddr(vm_host.network.bridges.public.offsets[inventory_hostname]) }}" gateway: "{{ vm_host.network.bridges.public.prefix | ansible.utils.ipaddr(vm_host.network.bridges.public.offsets[vm_host.name]) | ansible.utils.ipaddr('address') }}" template: overlay overlay: "{{ (vm_host.network.bridges.public.overlays.default.prefix | ansible.utils.ipaddr(vm_host.network.bridges.public.overlays.default.offsets[inventory_hostname])).split('/')[0] }}" interfaces: - *_network_primary_ external_ip: "{{ network.primary.overlay }}" apt_repo_components: - main - contrib ## for zfs spreadspace_apt_repo_components: - main - container zfs_arc_size: min: 2GB max: 8GB zfs_pools: storage: mountpoint: /srv/storage create_vdevs: /dev/sdb properties: ashift: 12 autotrim: "on" zfs_sanoid_modules: storage/nextcloud: use_template: production recursive: yes process_children_only: yes storage/onlyoffice: use_template: production recursive: yes process_children_only: yes docker_pkg_provider: docker-com docker_storage: type: zfs pool: storage name: docker properties: quota: 15G kubelet_storage: type: zfs pool: storage name: kubelet properties: quota: 15G kubernetes_version: 1.27.3 kubernetes_cri_tools_pkg_version: 1.26.0-00 kubernetes_container_runtime: docker kubernetes_standalone_max_pods: 15 kubernetes_standalone_cni_variant: with-portmap kubernetes_standalone_local_services_tcp: - 25 postfix_base_mynetworks: - "127.0.0.0/8" - "[::ffff:127.0.0.0]/104" - "[::1]/128" - "{{ kubernetes_standalone_pod_cidr }}" acme_directory_server: "{{ acme_directory_server_le_live_v2 }}" nginx_server_names_hash_bucket_size: 64 nextcloud_zfs: pool: storage name: nextcloud properties: compression: lz4 nextcloud_instances: team.tomwaitz.eu: # new: true version: 27.0.2 port: 8100 hostnames: - team.tomwaitz.eu zfs_properties: quota: 780G database: type: mariadb version: 10.11.4 password: "{{ vault_nextcloud_database_passwords['team.tomwaitz.eu'] }}" custom_image: dockerfile: | RUN set -x \ && if [ -e "/etc/apt/sources.list" ]; then sed 's/main$/main contrib non-free/' -i /etc/apt/sources.list; fi \ && if [ -e "/etc/apt/sources.list.d/debian.sources" ]; then sed 's/^Components: main$/Components: main contrib non-free/' -i /etc/apt/sources.list.d/debian.sources; fi \ && apt-get update -q \ && apt-get install -y -q unrar \ && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/* RUN set -x \ && apt-get update -q \ && apt-get install -y -q smbclient libsmbclient-dev \ && pecl install smbclient \ && docker-php-ext-enable smbclient \ && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/* collabora_code_base_path: /srv/storage/collabora/code collabora_code_instances: o.tomwaitz.eu: version: 6.4.10.2 port: 8200 hostname: o.tomwaitz.eu admin: username: admin password: "{{ vault_collabora_code_admin_passwords['o.tomwaitz.eu'] }}" backend_storages: - team.tomwaitz.eu custom_image: dockerfile: | USER root RUN set -x \ && echo ttf-mscorefonts-installer msttcorefonts/accepted-mscorefonts-eula select true | debconf-set-selections \ && apt-get update -q \ && apt-get install -y -q ttf-mscorefonts-installer \ && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/* USER lool onlyoffice_zfs: pool: storage name: onlyoffice properties: compression: lz4 quota: 10G onlyoffice_instances: oo.tomwaitz.eu: version: 6.4.2.6 port: 8600 hostname: oo.tomwaitz.eu jwt_secret: "{{ vault_onlyoffice_jwt_secrets['oo.tomwaitz.eu'] }}" database: version: 9.5.25 password: "{{ vault_onlyoffice_database_passwords['oo.tomwaitz.eu'] }}" amqp: version: 3.9.11 password: "{{ vault_onlyoffice_amqp_passwords['oo.tomwaitz.eu'] }}"