blob: 834ec6d5d3d82652e78a5fe8dd4dd926c5a11609 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
|
---
install_interface: eno1
system_lvm_volume_size_root: 3G
install:
efi: true
disks:
primary: /dev/disk/by-id/nvme-KIOXIA-EXCERIA_SSD_31MA10GJK2N2
system_lvm:
size: 25G
network:
nameservers: "{{ network_zones.lan.dns }}"
domain: "{{ host_domain }}"
primary: &_network_primary_
name: br-lan
address: "{{ network_zones.lan.prefix | ansible.utils.ipaddr(network_zones.lan.offsets[inventory_hostname]) }}"
gateway: "{{ network_zones.lan.gateway }}"
interfaces:
- *_network_primary_
vlans:
eno3: "{{ __vmhost_bridge_interface_zones__['eno3'] | map('extract', network_zones) | map(attribute='vlan') | list }}"
eno4: "{{ __vmhost_bridge_interface_zones__['eno4'] | map('extract', network_zones) | map(attribute='vlan') | list }}"
apt_repo_components:
- main
- contrib ## for zfs
- non-free ## for microcode updates
ssh_keys_root_extra:
- ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBjZEFZLrl2KIqYl/GU8Vkp7mlhAbFbjwf4Ht9zQRmI8 ZFS Backup syncoid@epimetheus
spreadspace_apt_repo_components:
- main
- prometheus
prometheus_exporter_node_textfile_collector_scripts:
- deleted-libraries
- smartmon
- sensors
prometheus_exporter_node_textfile_collector__sensors:
i2c:
- name_regex: "^i2c%-tiny%-usb at bus 001 device %d+$"
devices:
- address: 0x18
type: ds2482
w1:
- name: rack-center
address: 28-3c01d607db23
- name: rack-intake
address: 28-012112eedaa7
- name: rack-outlet
address: 28-012113b14676
prometheus_exporters_extra:
- ssl
- ipmi
prometheus_exporter_ipmi_modules:
default:
collectors:
- bmc
- ipmi
- chassis
- sel
prometheus_job_multitarget_blackbox__probe:
ch-mon:
- instance: "ssh-{{ inventory_hostname }}"
target: "{{ network_zones.lan.prefix | ansible.utils.ipaddr(network_zones.lan.offsets[inventory_hostname]) | ansible.utils.ipaddr('address') }}:{{ ansible_port | default(22) }}"
module: ssh_banner
prometheus_job_multitarget_ssl__probe:
ch-phoebe:
- instance: "sslcert-prometheus-{{ inventory_hostname }}"
target: "/etc/ssl/prometheus/**/*.pem"
module: file
installer_storage:
type: lvm
vg: "{{ host_name }}"
lv: installer
size: 10G
fs: ext4
zfs_arc_size:
min: 512MB
max: 2GB
zfs_pools:
nvme:
mountpoint: /srv/nvme
create_vdevs: /dev/disk/by-id/nvme-KIOXIA-EXCERIA_SSD_31MA10GJK2N2-part3
properties:
ashift: 12
autotrim: "on"
zfs_sanoid_modules:
nvme/vm:
use_template: production
recursive: yes
process_children_only: yes
|