87 commits

Author	SHA1	Message	Date
Stefan Bethke	ad783e4a15	now in production	2026-01-27 16:21:18 +01:00
Stefan Bethke	0f3cd2c70a	amcedns to enable Let's Encrypt DNS-01 challenges	2026-01-25 22:41:42 +01:00
chris	c7d51af5b4	rollout Alloy to replace prometheus_node_exporter ... With the new network we need to deploy a push based solution in order to get metrics into prometheus	2026-01-25 21:44:49 +01:00
Stefan Bethke	cee1fe970a	Add spaceapiccc as a replacement for erfafoo	2026-01-25 14:03:54 +01:00
June	d514688574	systemd_networkd(role),router(host): support global config to fix forw. ... With the router upgrade to Debian 13 the systemd version got upgraded as well breaking the current configuration for IP forwarding. Add a variable for global systemd-networkd configuration and use that to enable IPv4 and IPv6 forwarding on the router. The systemd_networkd role could be a bit nicer, not deploying/deleting the global configuration, if the variable is empty and reloading/restarting systemd-networkd at appropriate times. But as is works for now.	2026-01-18 19:21:33 +01:00
Renovate	c638790819	Update all stable non-major dependencies	2026-01-12 02:30:47 +00:00
June	70461c98ba	first run ansible_pull for router, then for all other hosts ... Do this to avoid a restarting router affecting playbook runs on other hosts.	2026-01-12 03:29:06 +01:00
June	b9add5bda3	cloud(host): set correct new proxy protocol reverse proxy ip	2025-12-16 20:59:15 +01:00
June	183b91b9f2	router(host): add nftables config for basic router functionality	2025-12-13 22:07:38 +01:00
June	a9e394da06	router(host): add systemd-networkd-based network config	2025-12-13 22:07:37 +01:00
c6ristian	c39cb0e390	we dont need to set a specific alloy version	2025-12-06 22:11:53 +01:00
c6ristian	df3710f019	grafana: set alloy to version v1.11.3 ... 1.12.0 is buggy	2025-12-02 22:55:29 +01:00
Renovate	0eaaf9227c	Update all stable non-major dependencies	2025-11-19 13:30:39 +00:00
June	dc6c7cbfb7	sunders(host): deploy sunders using docker compose ... https://git.hamburg.ccc.de/CCCHH/sunders	2025-11-01 17:53:08 +01:00
Renovate	ea5b4b8d69	Update dependency netbox to v4.4.5	2025-10-30 04:17:13 +00:00
June	f7918e7b6f	add renovate comment for custom regex matcher to inventory version vars	2025-10-30 05:01:02 +01:00
June	747e5b2d4c	zammad(host): change to .env configuration ... Align the compose.yaml to upstreams v11.2.0 version. This is a first step to hopefully then just use the upstreams version directly and not vendor it.	2025-10-24 22:15:48 +02:00
June	94e1920388	setup ansible-pull for all Chaosknoten hosts ... Additionally setup ansible-pull for: ccchoir, tickets, keycloak, lists, mumble, pad, public-reverse-proxy, zammad, ntfy	2025-10-20 21:25:56 +02:00
c6ristian	f3902b43b1	update keycloak and nextcloud	2025-10-20 21:11:28 +02:00
June	cad2f036e5	renovate(host): replace non-working GitHub token with working one ... Replace the token with one created from a new CCCHH GitHub service account.	2025-10-17 01:18:17 +02:00
June	e76c66d74c	renovate(host): set up Renovate using role and exisiting config ... Set up Renovate using role and existing config from current Forgejo/GitHub Actions-based deployment.	2025-10-16 17:52:30 +02:00
June	a32998d8da	renovate(host): initialize renovate host	2025-10-16 17:44:23 +02:00
June	f646cc0bf2	fix creation rules for eh22-wiki, sunders and wiki hosts ... Also update the keys of the secret files accordingly. This should then fix ansible-pull on these hosts.	2025-10-15 10:45:54 +02:00
June	1d6d1094bc	setup ansible-pull for 7 more hosts ... Setup for: cloud, eh22-wiki, grafana, onlyoffice, pretalx, sunders and wiki.	2025-10-15 01:59:29 +02:00
June	18dda95c46	remove max expired key	2025-10-13 22:12:31 +02:00
June	bd281713f1	netbox(host): setup ansible_pull for host	2025-10-13 16:59:42 +02:00
c6ristian	1355d4d834	grafana: make alerts better for fux	2025-09-09 19:30:53 +02:00
c6ristian	72489be8bd	updatekeys for junes new key	2025-07-20 20:29:22 +02:00
c6ristian	5863b2f9e3	ntfy: iOS instant notifications	2025-06-30 21:11:48 +02:00
c6ristian	a49b8b6d13	cloud: bump nextcloud version to 31	2025-06-29 20:54:32 +02:00
c6ristian	2cb9dc6dae	grafana dinge versuchen	2025-06-12 19:20:03 +02:00
c6ristian	0a50ee470a	grafana: add email alerts, and fix some rules	2025-06-10 21:22:53 +02:00
c6ristian	75bf485eac	Alloy: enable collector systemd	2025-06-03 01:11:39 +02:00
c6ristian	3a9673b113	ntfy alerts	2025-06-02 22:42:37 +02:00
c6ristian	0248b64670	update ntfy user uread and uwrite in sops	2025-06-02 18:36:35 +02:00
c6ristian	c620f0f86b	ntfy: alloy	2025-06-02 00:47:55 +02:00
c6ristian	6824bf5e4f	ntfy	2025-06-02 00:29:08 +02:00
c6ristian	8ff457b01e	Update Postgres to 15.13	2025-05-20 20:24:29 +02:00
June	7f1afef50d	move secrets from sops lookup plugin to sops vars plugin ... This makes secret configuration and usage a good bit cleaner.	2025-05-04 16:50:15 +02:00
June	bbe4cc131a	eh22-netbox: remove eh22-netbox as its being decommissioned	2025-05-03 23:40:03 +02:00
June	60b2093a02	netbox(host): move secrets to SOPS	2025-05-03 23:08:41 +02:00
June	97b8386878	grafana(host): move secrets to SOPS	2025-05-03 22:18:26 +02:00
June	8de07c2688	cloud(host): move secrets to SOPS	2025-05-03 21:30:06 +02:00
c6ristian	01c006ec22	grafana fix nginx ip allow list	2025-05-02 01:08:55 +02:00
c6ristian	0c9e3ccb87	fix switchup in prometheus.relabel	2025-04-30 15:07:26 +02:00
c6ristian	e183f1a2c3	prometheus remote write with alloy using it	2025-04-30 01:11:17 +02:00
c6ristian	456117a789	adding loki	2025-04-28 20:31:55 +02:00
June	ca16e3d55f	dep._hypervisor(playb.): introduce play for setting up vm template gen.	2025-02-23 22:42:58 +01:00
Dario	5dc2520ecd	eh22-wiki: configure custom eh22-theme	2025-02-17 22:26:17 +01:00
June	79012fb7f8	eh22-netbox: setup EH22 NetBox	2025-02-17 01:23:35 +01:00