blob: 0f370fb98ae983aa2e0c04e59b939a1639208e20 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
|
---
install:
vm:
memory: 2G
numcpus: 2
autostart: True
disks:
primary: /dev/sda
scsi:
sda:
type: zfs
name: root
size: 10g
interfaces:
- bridge: br-public
name: primary0
mac: 52:54:00:02:f5:a1
network:
nameservers: "{{ vm_host.network.dns }}"
domain: "{{ host_domain }}"
systemd_link:
interfaces: "{{ install.interfaces }}"
primary: &_network_primary_
name: primary0
address: "{{ vm_host.network.bridges.public.prefix | ansible.utils.ipaddr(vm_host.network.bridges.public.offsets[inventory_hostname]) }}"
gateway: "{{ vm_host.network.bridges.public.gateway }}"
address6: "{{ vm_host.network.bridges.public.prefix6 | ansible.utils.ipaddr(vm_host.network.bridges.public.offsets6[inventory_hostname]) }}"
gateway6: "{{ vm_host.network.bridges.public.gateway6 }}"
interfaces:
- *_network_primary_
spreadspace_apt_repo_components:
- prometheus
ntp_variant: systemd-timesyncd
bind_option_empty_zones_enable: no
bind_option_notify: explicit
bind_option_allow_transfer:
- 116.203.212.131
- 2a01:4f8:c2c:906c::2
bind_option_allow_update:
- none
bind_option_allow_recursion:
- localhost
bind_stats_channels:
- addr: 127.0.0.1
port: 8053
allow:
- 127.0.0.1
bind_empty_onion_zone: yes
bind_master_zones:
chaos-at-home.org:
file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.chaos-at-home.org"
chaox.org:
file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.chaox.org"
spreadspace.org:
file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.spreadspace"
spreadspace.com:
file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.spreadspace"
spreadspace.net:
file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.spreadspace"
spreadspace.systems:
file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.spreadspace"
elev8.at:
file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.elev8.at"
java-sucks.com:
file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.java-sucks.com"
xn--gh-via.org:
file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.gäh.org"
# schaaas.at:
# file: ...
gimpf.org:
file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.gimpf.org"
movetogether.at:
file: "{{ global_files_dir }}/chaos-at-home/bind-zones/db.movetogether.at"
bind_slave_zones:
realraum:
masters:
- 89.106.211.33
- 2a02:3e0:4000:1::1
zones:
- realraum.at
- r3.at
- hack-challenge.at
funkfeuer:
masters:
- 193.33.150.114
zones:
- ffgraz.net
- graz.funkfeuer.at
- 10.in-addr.arpa
- 150.33.193.in-addr.arpa
- 151.33.193.in-addr.arpa
prometheus_exporters_extra:
- bind
prometheus_job_multitarget_blackbox__probe:
ch-mon:
- instance: "ssh-{{ inventory_hostname }}"
target: "{{ network.primary.address | ansible.utils.ipaddr('address') }}:{{ ansible_port | default(22) }}"
module: ssh_banner
- instance: "https-pan.chaos-at-home.org"
target: "https://pan.chaos-at-home.org"
module: http_tls_2xx
|
