Abbau munin (#581)

Reviewed-on: #581
Co-authored-by: Michael Grote <michael.grote@posteo.de>
Co-committed-by: Michael Grote <michael.grote@posteo.de>

docker-compose/munin/docker-compose.yml.j2

@@ -1,41 +0,0 @@
-version: '3'
-services:
-  munin:
-    container_name: "munin-master-prod"
-    image: registry.mgrote.net/munin-server:master
-    restart: always
-    environment:
-      MAILCONTACT: michael.grote@posteo.de
-      MAILSERVER: smtp.strato.de
-      MAILPORT: 587
-      MAILUSER: info@mgrote.net
-      MAILPASSWORD: {{ lookup('keepass', 'postfix_absender_passwort', 'password') }}
-      MAILFROM: info@mgrote.net
-      MAILNAME: Munin-Prod
-      MAILDOMAIN: mgrote.net
-      TZ: Europe/Berlin
-      CRONDELAY: 5
-      NODES: |
-        fileserver3.grote.lan:fileserver3.grote.lan
-        ansible2.grote.lan:ansible2.grote.lan
-        pve5.grote.lan:pve5.grote.lan
-        dokuwiki2.grote.lan:dokuwiki2.grote.lan
-        gitea.grote.lan:gitea.grote.lan
-        docker10.grote.lan:docker10.grote.lan
-        pbs.grote.lan:pbs.grote.lan
-      # z.B.
-      # computer-test.grote.lan.test:192.68.2.4
-      # computer.grote.lan:computer.grote.lan
-    volumes:
-      - db:/var/lib/munin
-      - logs:/var/log/munin
-      - cache:/var/cache/munin
-    ports:
-      - 1234:80
-    labels:
-      com.centurylinklabs.watchtower.enable: true
-
-volumes:
-  db:
-  logs:
-  cache:

group_vars/all.yml

@@ -46,45 +46,6 @@
       public_ssh_key: ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJcBwOjanQV6sFWaTetqpl20SVe3aRzGjKbsp7hKkDCE mg@irantu
       allow_sudo: true
       allow_passwordless_sudo: true
-  ### mgrote.munin-node
-  munin_node_bind_host: "0.0.0.0"
-  munin_node_bind_port: "4949"
-  munin_node_allowed_cidrs: [192.168.2.0/24]
-  munin_node_disabled_plugins:
-    - name: meminfo # zu hohe last
-    - name: hddtemp2 # ersetzt durch hddtemp_smartctl
-    - name: ntp # verursacht zu viele dns ptr request
-    - name: hddtempd # ersetzt durch hddtemp_smartctl
-    - name: mt_system_crs309 # switch ausgebaut
-    - name: squid_cache # proxmox
-    - name: squid_objectsize # proxmox
-    - name: squid_requests # proxmox
-    - name: squid_traffic # proxmox
-    - name: solarman_api_inverter
-    - name: deye
-    - name: timesync
-  munin_node_plugins:
-    - name: systemd_status
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
-    - name: systemd_mem
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_mem
-      config: |
-        [systemd_mem]
-        env.all_services true
-    - name: lvm_
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/disk/lvm_
-      config: |
-        [lvm_*]
-        user root
-    - name: fail2ban
-      src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
-      config: |
-        [fail2ban]
-        env.client /usr/bin/fail2ban-client
-        env.config_dir /etc/fail2ban
-        user root
-    - name: chrony
-      src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/chrony/chrony
 
   ### mgrote.dotfiles
   dotfiles_repo_url: https://git.mgrote.net/mg/dotfiles
@@ -139,11 +100,6 @@
       protocol: tcp
       comment: 'ssh'
       from_ip: 0.0.0.0/0
-    - rule: allow
-      to_port: 4949
-      protocol: tcp
-      comment: 'munin'
-      from_ip: 192.168.2.0/24
   ufw_default_incoming_policy: deny
   ufw_default_outgoing_policy: allow
   ### mgrote.apt_manage_packages
@@ -186,6 +142,7 @@
     - open-vm-tools
   apt_packages_absent:
     - nano
+    - snapd
     - ubuntu-advantage-tools
   apt_packages_internet:
     - http://docker10.grote.lan:3344/bash-helper-scripts-mgrote-latest.deb

group_vars/docker.yml

@@ -46,58 +46,9 @@
   docker_users:
     - mg
     - docker-user
-  ### geerlingguy.pip
+
-  pip_package: python3-pip
-  pip_install_packages:
-    - name: docker # für munin-plugin docker_
   ### mgrote.docker-compose-deploy
   docker_compose_base_dir: /home/docker-user
-  ### mgrote.munin-node
-  munin_node_bind_host: "0.0.0.0"
-  munin_node_bind_port: "4949"
-  munin_node_allowed_cidrs: [192.168.2.0/24]
-  munin_node_plugins:
-    - name: systemd_status
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
-    - name: systemd_mem
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_mem
-      config: |
-        [systemd_mem]
-        env.all_services true
-    - name: lvm_
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/disk/lvm_
-      config: |
-        [lvm_*]
-        user root
-    - name: fail2ban
-      src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
-      config: |
-        [fail2ban]
-        env.client /usr/bin/fail2ban-client
-        env.config_dir /etc/fail2ban
-        user root
-    - name: docker_containers
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
-      config: |
-        [docker_*]
-        user root
-        env.DOCKER_HOST unix://run/docker.sock
-    - name: docker_cpu
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
-    - name: docker_memory
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
-    - name: docker_network
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
-    - name: docker_volumes
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
-    - name: docker_volumesize
-      src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/docker/docker_volumesize
-    - name: chrony
-      src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/chrony/chrony
-  ### mgrote.apt_manage_packages
-  apt_packages_extra:
-    - bc # für munin plugins
-    - jq # für munin plugins
 
   ### mgrote.apt_manage_sources
   repos_override: # mit docker-repos

group_vars/dokuwiki.yml

@@ -17,39 +17,3 @@
       comment: 'dokuwiki-webserver'
       from_ip: 0.0.0.0/0
       protocol: tcp
-    - rule: allow
-      to_port: 4949
-      protocol: tcp
-      comment: 'munin'
-      from_ip: 192.168.2.144/24
-  ### mgrote.munin-node
-  munin_node_plugins:
-    - name: chrony
-      src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/chrony/chrony
-    - name: systemd_status
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
-    - name: systemd_mem
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_mem
-      config: |
-        [systemd_mem]
-        env.all_services true
-    - name: lvm_
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/disk/lvm_
-      config: |
-        [lvm_*]
-        user root
-    - name: fail2ban
-      src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
-      config: |
-        [fail2ban]
-        env.client /usr/bin/fail2ban-client
-        env.config_dir /etc/fail2ban
-        user root
-    - name: http_response
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/http/http_response
-      config: |
-        [http_response]
-        env.sites http://dokuwiki2.grote.lan https://wiki.mgrote.net/
-        env.max_time 20
-        env.short_label true
-        env.follow_redirect true

group_vars/fileserver.yml

@@ -17,37 +17,6 @@
       to_port: 139
       comment: 'smb'
       from_ip: 0.0.0.0/0
-    - rule: allow
-      to_port: 4949
-      protocol: tcp
-      comment: 'munin'
-      from_ip: 192.168.2.144/24
-  ### mgrote.munin-node
-  munin_node_plugins:
-    - name: chrony
-      src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/chrony/chrony
-    - name: systemd_status
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
-    - name: systemd_mem
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_mem
-      config: |
-        [systemd_mem]
-        env.all_services true
-    - name: fail2ban
-      src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
-      config: |
-        [fail2ban]
-        env.client /usr/bin/fail2ban-client
-        env.config_dir /etc/fail2ban
-        user root
-    - name: samba
-      src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/samba
-      config: |
-        [samba]
-        user root
-        group root
-        env.smbstatus /usr/bin/smbstatus
-        env.ignoreipcshare 1
 
   ### mgrote.apt_manage_packages
   apt_packages_internet:

group_vars/gitea.yml

@@ -33,11 +33,7 @@
       protocol: tcp
       comment: 'gitea'
       from_ip: 0.0.0.0/0
-    - rule: allow
+
-      to_port: 4949
-      protocol: tcp
-      comment: 'munin'
-      from_ip: 192.168.2.144/24
   ### l3d.gitea
   # config liegt in /etc/gitea/gitea.ini
   gitea_version: "1.20.3"
@@ -101,41 +97,3 @@
 
   gitea_backup_on_upgrade: false
   gitea_backup_location: "{{ gitea_home }}/backups/"
-
-  ### mgrote.munin-node
-  munin_node_plugins:
-    - name: chrony
-      src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/chrony/chrony
-    - name: systemd_status
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
-    - name: systemd_mem
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_mem
-      config: |
-        [systemd_mem]
-        env.all_services true
-    - name: lvm_
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/disk/lvm_
-      config: |
-        [lvm_*]
-        user root
-    - name: fail2ban
-      src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
-      config: |
-        [fail2ban]
-        env.client /usr/bin/fail2ban-client
-        env.config_dir /etc/fail2ban
-        user root
-    - name: http_response
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/http/http_response
-      config: |
-        [http_response]
-        env.sites http://gitea.grote.lan:3000 https://git.mgrote.net
-        env.max_time 20
-        env.short_label true
-        env.follow_redirect true
-    - name: drone
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/cicd/drone
-      config: |
-        [drone]
-        env.url http://docker10.grote.lan:81/api/user/repos?latest=true
-        env.token {{ lookup('keepass', 'munin_plugin_drone_token', 'password') }}

group_vars/pbs.yml

@@ -30,53 +30,3 @@
       public_ssh_key: ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJcBwOjanQV6sFWaTetqpl20SVe3aRzGjKbsp7hKkDCE mg@irantu
       allow_sudo: true
       allow_passwordless_sudo: true
-
-  ### mgrote.munin-node
-  munin_node_plugins:
-    - name: chrony
-      src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/chrony/chrony
-    - name: systemd_status
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
-    - name: systemd_mem
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_mem
-      config: |
-        [systemd_mem]
-        env.all_services true
-    - name: fail2ban
-      src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
-      config: |
-        [fail2ban]
-        env.client /usr/bin/fail2ban-client
-        env.config_dir /etc/fail2ban
-        user root
-    - name: zfs_arcstats
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfs_arcstats
-    - name: zfsonlinux_stats_
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfsonlinux_stats_
-    - name: zpool_iostat
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zpool_iostat
-    - name: zfs_list
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfs_list
-      config: |
-        [zfs_list]
-        env.ignore_datasets_pattern autodaily
-    - name: zfs_count
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfs_pool_dataset_count
-    - name: zpool_iostat
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zpool_iostat
-    - name: zpool_capacity
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zpool_capacity
-  munin_node_disabled_plugins:
-    - name: meminfo # zu hohe last
-    - name: hddtemp2 # ersetzt durch hddtemp_smartctl
-    - name: ntp # verursacht zu viele dns ptr request
-    - name: hddtempd # ersetzt durch hddtemp_smartctl
-    - name: mt_system_crs309 # switch ausgebaut
-    - name: squid_cache # proxmox
-    - name: squid_objectsize # proxmox
-    - name: squid_requests # proxmox
-    - name: squid_traffic # proxmox
-    - name: solarman_api_inverter
-    - name: deye
-    - name: lvm_
-    - name: timesync

group_vars/pve.yml

@@ -35,78 +35,6 @@
     - open-vm-tools
     - systemd-boot
 
-  ### mgrote.munin-node
-  munin_node_plugins:
-    - name: chrony
-      src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/chrony/chrony
-    - name: systemd_status
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
-    - name: systemd_mem
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_mem
-      config: |
-        [systemd_mem]
-        env.all_services true
-    - name: fail2ban
-      src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
-      config: |
-        [fail2ban]
-        env.client /usr/bin/fail2ban-client
-        env.config_dir /etc/fail2ban
-        user root
-    - name: zfs_arcstats
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfs_arcstats
-    - name: zfsonlinux_stats_
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfsonlinux_stats_
-    - name: zpool_iostat
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zpool_iostat
-    - name: zfs_list
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfs_list
-      config: |
-        [zfs_list]
-        env.ignore_datasets_pattern autodaily
-    - name: zpool_capacity
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zpool_capacity
-    - name: kvm_mem
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/libvirt/kvm_mem
-    - name: kvm_net
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/libvirt/kvm_net
-    - name: kvm_io
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/libvirt/kvm_io
-      config: |
-        [kvm_io]
-        user root
-    - name: kvm_cpu
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/libvirt/kvm_cpu
-    - name: proxmox_count
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/proxmox/proxmox_vm_count
-      config: |
-        [proxmox_count]
-        user root
-        group root
-    - name: zfs_count
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfs_pool_dataset_count
-    - name: ksm_
-      src:  https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/system/kernel_same_page_merging
-  munin_node_disabled_plugins:
-    - name: meminfo # zu hohe last
-    - name: hddtemp2 # ersetzt durch hddtemp_smartctl
-    - name: ntp # verursacht zu viele dns ptr request
-    - name: hddtempd # ersetzt durch hddtemp_smartctl
-    - name: mt_system_crs309 # switch ausgebaut
-    - name: squid_cache # proxmox
-    - name: squid_objectsize # proxmox
-    - name: squid_requests # proxmox
-    - name: squid_traffic # proxmox
-    - name: solarman_api_inverter
-    - name: deye
-    - name: lvm_
-    - name: apcupsd_ww
-    - name: slab
-    - name: apcupsd_pwr
-    - name: timesync
-    - name: http_response
-    - name: timesync
-
   # Ansible Variablen
   ### sudo
   sudo: false

host_vars/docker10.grote.lan.yml

@@ -27,8 +27,6 @@
   compose_files:
     - name: homer
       state: present
-    - name: munin
-      state: absent
     - name: drone
       state: present
     - name: nextcloud
@@ -64,11 +62,6 @@
       protocol: tcp
       comment: 'ssh'
       from_ip: 0.0.0.0/0
-    - rule: allow
-      to_port: 4949
-      protocol: tcp
-      comment: 'munin'
-      from_ip: 0.0.0.0/0
     # docker network inspect $(docker network ls -q)|grep -E "IPv(4|6)A" | grep -v \"\" | sort -h
     - rule: allow
       from_ip: 192.168.0.0/16
@@ -76,204 +69,3 @@
     - rule: allow
       from_ip: 172.0.0.0/8
       comment: 'docker networks'
-
-  ### geerlingguy.pip
-  pip_package: python3-pip
-  pip_install_packages:
-    - name: docker # für munin-plugin docker_
-    - name: fritzconnection # für munin fritzbox*
-    - name: lxml # für munin fritzbox*
-    - name: requests # für munin fritzbox*
-
-  ### mgrote.apt_manage_packages
-  apt_packages_extra:
-    - libnet-dns-perl # für munin: dnsresponse_*
-    - libwww-curl-perl # für munin-plugin: unifi
-    - libjson-perl # für munin-plugin: unifi
-    - sshpass # fur munin mt_system_*
-
-  ### mgrote.munin-node
-  munin_node_allowed_cidrs: [0.0.0.0/0] # weil der munin-server aus einem anderen subnet zugreift
-  munin_node_plugins:
-    - name: chrony
-      src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/chrony/chrony
-    - name: systemd_status
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
-    - name: systemd_mem
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_mem
-      config: |
-        [systemd_mem]
-        env.all_services true
-    - name: lvm_
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/disk/lvm_
-      config: |
-        [lvm_*]
-        user root
-    - name: fail2ban
-      src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
-      config: |
-        [fail2ban]
-        env.client /usr/bin/fail2ban-client
-        env.config_dir /etc/fail2ban
-        user root
-    - name: docker_containers
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
-      config: |
-        [docker_*]
-        user root
-        env.DOCKER_HOST unix://run/docker.sock
-    - name: docker_cpu
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
-    - name: docker_memory
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
-    - name: docker_network
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
-    - name: docker_volumes
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
-    - name: http_response
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/http/http_response
-      config: |
-        [http_response]
-        env.sites http://docker10.grote.lan:333 http://docker10.grote.lan:1234 https://nextcloud.mgrote.net http://docker10.grote.lan:3344 http://docker10.grote.lan:5000 https://miniflux.mgrote.net/ http://docker10.grote.lan:3001 http://docker10.grote.lan:8081
-        env.max_time 20
-        env.short_label true
-        env.follow_redirect true
-    - name: mt_system_hex
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/router/mikrotik_system
-      config: |
-        [mt_system_hex]
-        user root
-        env.ssh_user munin
-        env.ssh_password {{ lookup('keepass', 'munin_user_hex', 'password') }}
-        env.ssh_host 192.168.3.144
-    - name: mt_system_crs305
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/router/mikrotik_system
-      config: |
-        [mt_system_crs305]
-        user root
-        env.ssh_user munin
-        env.ssh_password {{ lookup('keepass', 'munin_user_crs305', 'password') }}
-        env.ssh_host 192.168.2.225
-    - name: mt_system_rb5009
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/router/mikrotik_system
-      config: |
-        [mt_system_rb5009]
-        user root
-        env.ssh_user munin
-        env.ssh_password {{ lookup('keepass', 'munin_user_rb5009', 'password') }}
-        env.ssh_host 192.168.2.1
-    - name: unifi
-      src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/unifi
-      config: |
-        [unifi*]
-        # User name to login to unifi controller API.  Default is "ubnt".  Ideally, this should
-        # point to a read-only account.
-        env.user munin
-        # Password to login to unifi controller API. Default is "ubnt"
-        env.pass {{ lookup('keepass', 'munin_user_unifi', 'password') }}
-        # URL of the API, with port if needed.  No trailing slash.
-        env.api_url https://docker10.grote.lan:8443
-        # Verify SSL certificate name against host.
-        # Note: if using a default cloudkey certificate, this will fail unless you manually add it
-        # to the local keystore.
-        # Default is "yes"
-        env.ssl_verify_host no
-        # Verify Peer's SSL vertiicate.
-        # Note: if using a default cloudkey certificate, this will fail
-        # Default is "yes"
-        env.ssl_verify_peer no
-        # The human readable name of the unifi site - used for graph titles
-        env.name Unifi
-        # By default, Use standard munin well know categories -
-        env.force_category unifi
-        #---
-        # Show device CPU utilization
-        env.enable_device_cpu yes
-        # Show device memory usage
-        env.enable_device_mem yes
-        # Show device load average (switches and APs only)
-        env.enable_device_load yes
-        # Show device uptime
-        env.enable_device_uptime yes
-        # Show number of clients connected to each device
-        env.enable_clients_device yes
-        # Show detailed graphs for each device (per device graphs)
-        env.enable_detail_clients_device yes
-        # Show number of clients connected to each network type
-        env.enable_clients_type yes
-        # Show detailed graphs for each client type (per type graphs)
-        env.enable_detail_clients_type yes
-        # Show unauthorized / authorized client list
-        # if you are not using the guest portal, this is useless
-        env.show_authorized_clients_type yes
-        # Show transfer statistics on switch ports; wirft Fehler wenn aktiv
-        env.enable_xfer_port no
-        # Show detailed graphs per switch port; wirft Fehler wenn aktiv
-        env.enable_detail_xfer_port no
-        # Hide ports that have no link (When set to no, unplugged ports will transfer 0, not be undefined); wirft Fehler wenn aktiv
-        env.hide_empty_xfer_port no
-        # Show transfer statistics per device; wirft Fehler wenn aktiv
-        env.enable_xfer_device no
-        # Show detailed graphs for each device; wirft Fehler wenn aktiv
-        env.enable_detail_xfer_device yes
-        # Show transfer statistics per named network; wirft Fehler wenn aktiv
-        env.enable_xfer_network no
-        # Show detailed graphs for each named network; wirft Fehler wenn aktiv
-        env.enable_detail_xfer_network no
-        # Show transfer statistics per radio; wirft Fehler wenn aktiv
-        env.enable_xfer_radio no
-        # Show detailed graphs for each radio; wirft Fehler wenn aktiv
-        env.enable_detail_xfer_radio no
-    - name: fritzbox_uptime.py
-      src: https://git.mgrote.net/mg/mirror-frododvr-fritzbox-munin/raw/branch/master/fritzbox_uptime.py
-    - name: fritzbox_traffic.py
-      src: https://git.mgrote.net/mg/mirror-frododvr-fritzbox-munin/raw/branch/master/fritzbox_traffic.py
-    - name: fritzbox_power.py
-      src: https://git.mgrote.net/mg/mirror-frododvr-fritzbox-munin/raw/branch/master/fritzbox_power_consumption.py
-    - name: fritzbox_memory.py
-      src: https://git.mgrote.net/mg/mirror-frododvr-fritzbox-munin/raw/branch/master/fritzbox_memory_usage.py
-    - name: fritzbox_helper.py
-      src: https://git.mgrote.net/mg/mirror-frododvr-fritzbox-munin/raw/branch/master/fritzbox_helper.py
-    - name: fritzbox_cpu.py
-      src: https://git.mgrote.net/mg/mirror-frododvr-fritzbox-munin/raw/branch/master/fritzbox_cpu_usage.py
-    - name: fritzbox_temp.py
-      src: https://git.mgrote.net/mg/mirror-frododvr-fritzbox-munin/raw/branch/master/fritzbox_cpu_temperature.py
-    - name: fritzbox_conn_uptime.py
-      src: https://git.mgrote.net/mg/mirror-frododvr-fritzbox-munin/raw/branch/master/fritzbox_connection_uptime.py
-      config: |
-        [fritzbox_*]
-        env.fritzbox_ip 192.168.5.1
-        env.fritzbox_username munin
-        env.fritzbox_password {{ lookup('keepass', 'munin_user_fritzbox', 'password') }}
-        env.traffic_remove_max true # if you do not want the possible max values
-    - name: nextcloud_nextcloud.mgrote.net
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/nextcloud/nextcloud_
-      config: |
-        [nextcloud_nextcloud.mgrote.net]
-        env.username munin
-        env.password {{ lookup('keepass', 'munin_user_nextcloud', 'password') }}
-        env.api_path /ocs/v2.php/apps/serverinfo/api/v1/info
-        env.scheme https
-    - name: dnsresponse_192.168.2.1
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/network/dns/dnsresponse_
-    - name: dnsresponse_192.168.2.43
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/network/dns/dnsresponse_
-    - name: dnsresponse_127.0.0.1
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/network/dns/dnsresponse_
-      config: |
-        [dnsresponse_*]
-        env.site www.heise.de
-        env.times 20
-    - name: gitea_commit_time_diff
-      src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/git/gitea_commit_time_diff
-      config: |
-        [gitea_commit_time_diff]
-        env.url git.mgrote.net
-        env.repo routeros-configs
-        env.user mg
-        env.git_ref HEAD
-        env.warning 1000
-        env.critical 2880
-        env.token {{ lookup('keepass', 'gitea_commit_time_diff_oxidized_token', 'password') }}
-    - name: docker_volumesize
-      src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/docker/docker_volumesize

host_vars/pbs.grote.lan.yml

@@ -157,6 +157,3 @@
       recursive: 'no'
       snapshots: true
       template: '3tage'
-
-  ### mgrote.munin-node
-  munin_node_allowed_cidrs: [192.168.3.0/24]

playbooks/2_all.yml

@@ -11,7 +11,6 @@
   - import_playbook: base/ufw.yml
   - import_playbook: base/ssh.yml
   - import_playbook: base/f2b.yml
-  - import_playbook: base/monitoring.yml
   - import_playbook: base/remove_snapd.yml
   - import_playbook: base/unattended_upgrades.yml
   - import_playbook: base/update_packages.yml

playbooks/base/monitoring.yml

@@ -1,11 +0,0 @@
----
-  - hosts: all
-    roles:
-      - { role: mgrote.munin-node,
-        become: true,
-        tags: "munin",
-        when: "not 'laptop' in group_names" }
-
-  ### Die Host müssen auch beim Docker-Container: "munin-master eingetragen" werden.
-  ### wird nur auf physischen Rechnern ausgeführt.
-  ### Wenn ein Plugin nicht geht: munin-node-configure --shell --families=contrib,auto | sh -x

playbooks/on-off/remove_munin_node.yml

@@ -12,8 +12,16 @@
         name:
           - munin-node
         state: absent
+
     - name: remove folder
       become: yes
       ansible.builtin.file:
         path: /etc/munin
         state: absent
+
+    - name: ensure user is absent
+      become: true
+      ansible.builtin.user:
+        name: munin
+        state: absent
+        remove: true