Commit graph

383 commits

Author SHA1 Message Date
Tobias Hachmer
8212fc243c
Delete old Playbooks; update Playbooks 2019-03-22 22:06:26 +01:00
Tobias Hachmer
dc9f792992
ansible.cfg: increase forks to 10 2019-03-22 22:02:20 +01:00
Tobias Hachmer
aa38067f20
Role wireguard: split var 'my_wireguard_networks' into multiple lines for better reading 2019-03-22 21:52:47 +01:00
Tobias Hachmer
b995bbffdf
Role network-routing: rename 'sysctl_settings_routing_gateway' to 'sysctl_settings_routing_forwarding'; enable ip forwarding also for monitoring hosts 2019-03-22 21:52:08 +01:00
Tobias Hachmer
0c6cec55e3
Add linse.freifunk-mwu.de
* Update Playbook dns.yml to manage linse as the external dns master server
2019-03-22 20:34:54 +01:00
Tobias Hachmer
d194d6e936
Role pdns-admin: make dns prefix configurable; add lets encrypt snippet to nginx template 2019-03-22 20:33:32 +01:00
Tobias Hachmer
91e8a2ff3d
Update Playbook dns.yml
* update passwordstore lookup usage: use other subkey than 'password'
 * add mysql_bind_address
2019-03-22 19:48:47 +01:00
Tobias Hachmer
f0eeb53442
Inventory ffmwu-mesh-services: remove group dns-master-internal 2019-03-22 19:48:25 +01:00
Tobias Hachmer
d7d456d158
Role wireguard: flush handler after configuration 2019-03-22 19:45:26 +01:00
Julian Labus
36a1335d9b
Role service-domain-director: update config 2019-03-22 13:41:16 +01:00
Julian Labus
af41e77619
Playbooks: add role service-prometheus to mesh-services 2019-03-21 21:20:58 +01:00
Tobias Hachmer
3a3388ccf7
Inventory: remove old host aubergine 2019-03-21 18:12:02 +01:00
Tobias Hachmer
da2e6e35f7
Inventory: remove unused wireguard networks 2019-03-21 17:54:30 +01:00
Julian Labus
165e22ab5e
Role service-nginx-firmware: add proxy to downloads.openwrt.org 2019-03-21 15:49:01 +01:00
Julian Labus
a8995d573c
Inventory: shorten IPv6 anycast address 2019-03-21 11:29:04 +01:00
Tobias Hachmer
869dd5b62a
Migrate internal DNS master to PowerDNS
* Add playbook dns to manage internal dns master servers
 * Add role to manage PowerDNS Admin Web Frontend for PowerDNS
 * Move dns zone related data from mesh list to a simpler dict with a simple zone list
 * Update role service-bind-slave
 * Update Readme.md
 * Add requirements.yml
 * Update .gitignore
2019-03-20 19:43:11 +01:00
Tobias Hachmer
fe4415afcf
Role nodejs: make major version configurable 2019-03-20 19:25:12 +01:00
Julian Labus
6c3e8336c9
Role service-nginx: use $host instead of $server_name for redirects 2019-03-20 10:23:12 +01:00
Julian Labus
28717aec73
Role service-bird: add source IP to routes in table mwu 2019-03-20 10:21:38 +01:00
Julian Labus
a8784c80eb
Revert "Role service-bird-lg: update lgproxy.cfg for new p2p vpn links"
This reverts commit 2ca3fdd43e.
2019-03-20 10:19:48 +01:00
Julian Labus
2ca3fdd43e
Role service-bird-lg: update lgproxy.cfg for new p2p vpn links 2019-03-19 17:03:02 +01:00
Tobias Hachmer
e4e8c0998f
Introduce p2p vpn link between all ffmwu servers via WireGuard for routing purpose.
* add jinja2 extension 'jinja2.ext.do' to ansible.cfg
 * add host kichererbse.freifunk-mwu.de
 * add new server_type 'mesh-service' and new host group 'ffmwu-mesh-services'
 * use new loopback and anycast networks
 * add role wireguard
 * add role wireguard as dependency for roles network-routing + service-bird
 * add playbook 'mesh-services'
2019-03-19 15:23:12 +01:00
Julian Labus
3e297ed09f
Revert "Role service-fastd-mesh: update fastd peer limit method"
This reverts commit 7bb4c241e2.
2019-03-18 16:11:34 +01:00
Julian Labus
483f49bba4
Inventory: add new domain dom0 2019-03-18 15:20:54 +01:00
Julian Labus
78916057d6
Inventory: fix DHCP ranges on gateway lotuswurzel
lotuswurzel was using the first /23 net which is used for static server 
IPs
2019-03-18 11:38:44 +01:00
Julian Labus
f9700c4dd8
Role service-ntpd: only run ntpdate on primary interface during if-up 2019-03-18 10:05:11 +01:00
Julian Labus
f43931649a
Role service-prometheus: FastdNoTraffic - check if clients are connected 2019-03-16 23:54:25 +01:00
Julian Labus
db509e43db
Role service-respondd: add version number
without a version number it is hard to filter out servers in meshviewer
2019-03-15 18:27:33 +01:00
Julian Labus
1dd24773eb
Inventory: mark old domains ffbin, ffrhg and ffta as legacy 2019-03-14 23:39:23 +01:00
Julian Labus
af832f3703
Role service-prometheus: fix broken rule FastdNoTraffic 2019-03-14 23:20:59 +01:00
Julian Labus
acaf0e63e6
Role server-basic: update unattended-upgrades pattern 2019-03-14 15:37:25 +01:00
Julian Labus
d87a6f877c
Roles: use environment instead of passing variable in shell command 2019-03-14 15:35:47 +01:00
Julian Labus
ac15a69ac5
Inventory: update prometheus_opts 2019-03-11 11:20:06 +01:00
Julian Labus
703f1ebd01
Add .gitignore 2019-03-11 10:53:13 +01:00
Julian Labus
62ac41501f
Intentory: update fastd_exporter_opts 2019-03-11 10:34:54 +01:00
Julian Labus
7d1289f811
Role service-fastd-mesh: restart fastd-exporter after changes 2019-03-11 10:34:25 +01:00
Julian Labus
7bb4c241e2
Role service-fastd-mesh: update fastd peer limit method 2019-03-08 14:04:51 +01:00
Julian Labus
902a0eded7
Playbooks: add role service-domain-director to playbook monitoring 2019-03-06 17:18:21 +01:00
Julian Labus
c6be99258b
Roles: add service-domain-director 2019-03-06 17:16:34 +01:00
Julian Labus
9b4dec1cf6
Inventory: add new domains
dom1: mainz
dom2: wiesbaden
dom3: bingen
dom4: rheingau
dom5: taunus
dom6: limburg
dom7: wielrod
2019-03-02 18:13:41 +01:00
Julian Labus
721b278d3b
Roles: improve multidomain support 2019-03-02 18:12:56 +01:00
Julian Labus
4127e56524
Role service-prometheus: remove dep service-cpthook 2019-02-15 19:29:58 +01:00
Julian Labus
7a91bbaa2f
Role service-prometheus: simplify and move all files to role directory 2019-02-15 15:45:38 +01:00
Julian Labus
603f6af64d
Role service-prometheus: send alerts via IRC 2019-02-15 11:41:55 +01:00
Julian Labus
e29fd1c5d5
Roles: add service-cpthook 2019-02-15 11:39:48 +01:00
Julian Labus
bfe9509580
Playbooks: add service-nginx-openlayers to monitoring 2019-02-13 12:49:38 +01:00
Julian Labus
3dbcb8f2c5
Roles: add service-nginx-openlayers 2019-02-13 11:57:16 +01:00
Julian Labus
026844de30
Role service-nginx-meshviewer: add linkList 2019-02-06 11:51:39 +01:00
Julian Labus
7291d75262
Role service-prometheus: update alert FastdNoTraffic
check `fastd_uptime_seconds` instead of `node_boot_time_seconds`
2019-02-05 17:21:19 +01:00
Julian Labus
6d016c034c
Role service-fastd-mesh: remove peers-ffbin
remove the individual peers repo for ffbin after successful migration to 
the multidomain firmware
2019-02-05 15:18:48 +01:00