Abbau munin
(#581)
Reviewed-on: #581 Co-authored-by: Michael Grote <michael.grote@posteo.de> Co-committed-by: Michael Grote <michael.grote@posteo.de>
This commit is contained in:
parent
5da209351a
commit
8e0e7bde21
14 changed files with 11 additions and 590 deletions
|
@ -1,41 +0,0 @@
|
|||
version: '3'
|
||||
services:
|
||||
munin:
|
||||
container_name: "munin-master-prod"
|
||||
image: registry.mgrote.net/munin-server:master
|
||||
restart: always
|
||||
environment:
|
||||
MAILCONTACT: michael.grote@posteo.de
|
||||
MAILSERVER: smtp.strato.de
|
||||
MAILPORT: 587
|
||||
MAILUSER: info@mgrote.net
|
||||
MAILPASSWORD: {{ lookup('keepass', 'postfix_absender_passwort', 'password') }}
|
||||
MAILFROM: info@mgrote.net
|
||||
MAILNAME: Munin-Prod
|
||||
MAILDOMAIN: mgrote.net
|
||||
TZ: Europe/Berlin
|
||||
CRONDELAY: 5
|
||||
NODES: |
|
||||
fileserver3.grote.lan:fileserver3.grote.lan
|
||||
ansible2.grote.lan:ansible2.grote.lan
|
||||
pve5.grote.lan:pve5.grote.lan
|
||||
dokuwiki2.grote.lan:dokuwiki2.grote.lan
|
||||
gitea.grote.lan:gitea.grote.lan
|
||||
docker10.grote.lan:docker10.grote.lan
|
||||
pbs.grote.lan:pbs.grote.lan
|
||||
# z.B.
|
||||
# computer-test.grote.lan.test:192.68.2.4
|
||||
# computer.grote.lan:computer.grote.lan
|
||||
volumes:
|
||||
- db:/var/lib/munin
|
||||
- logs:/var/log/munin
|
||||
- cache:/var/cache/munin
|
||||
ports:
|
||||
- 1234:80
|
||||
labels:
|
||||
com.centurylinklabs.watchtower.enable: true
|
||||
|
||||
volumes:
|
||||
db:
|
||||
logs:
|
||||
cache:
|
|
@ -46,45 +46,6 @@
|
|||
public_ssh_key: ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJcBwOjanQV6sFWaTetqpl20SVe3aRzGjKbsp7hKkDCE mg@irantu
|
||||
allow_sudo: true
|
||||
allow_passwordless_sudo: true
|
||||
### mgrote.munin-node
|
||||
munin_node_bind_host: "0.0.0.0"
|
||||
munin_node_bind_port: "4949"
|
||||
munin_node_allowed_cidrs: [192.168.2.0/24]
|
||||
munin_node_disabled_plugins:
|
||||
- name: meminfo # zu hohe last
|
||||
- name: hddtemp2 # ersetzt durch hddtemp_smartctl
|
||||
- name: ntp # verursacht zu viele dns ptr request
|
||||
- name: hddtempd # ersetzt durch hddtemp_smartctl
|
||||
- name: mt_system_crs309 # switch ausgebaut
|
||||
- name: squid_cache # proxmox
|
||||
- name: squid_objectsize # proxmox
|
||||
- name: squid_requests # proxmox
|
||||
- name: squid_traffic # proxmox
|
||||
- name: solarman_api_inverter
|
||||
- name: deye
|
||||
- name: timesync
|
||||
munin_node_plugins:
|
||||
- name: systemd_status
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
|
||||
- name: systemd_mem
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_mem
|
||||
config: |
|
||||
[systemd_mem]
|
||||
env.all_services true
|
||||
- name: lvm_
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/disk/lvm_
|
||||
config: |
|
||||
[lvm_*]
|
||||
user root
|
||||
- name: fail2ban
|
||||
src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
|
||||
config: |
|
||||
[fail2ban]
|
||||
env.client /usr/bin/fail2ban-client
|
||||
env.config_dir /etc/fail2ban
|
||||
user root
|
||||
- name: chrony
|
||||
src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/chrony/chrony
|
||||
|
||||
### mgrote.dotfiles
|
||||
dotfiles_repo_url: https://git.mgrote.net/mg/dotfiles
|
||||
|
@ -139,11 +100,6 @@
|
|||
protocol: tcp
|
||||
comment: 'ssh'
|
||||
from_ip: 0.0.0.0/0
|
||||
- rule: allow
|
||||
to_port: 4949
|
||||
protocol: tcp
|
||||
comment: 'munin'
|
||||
from_ip: 192.168.2.0/24
|
||||
ufw_default_incoming_policy: deny
|
||||
ufw_default_outgoing_policy: allow
|
||||
### mgrote.apt_manage_packages
|
||||
|
@ -186,6 +142,7 @@
|
|||
- open-vm-tools
|
||||
apt_packages_absent:
|
||||
- nano
|
||||
- snapd
|
||||
- ubuntu-advantage-tools
|
||||
apt_packages_internet:
|
||||
- http://docker10.grote.lan:3344/bash-helper-scripts-mgrote-latest.deb
|
||||
|
|
|
@ -46,58 +46,9 @@
|
|||
docker_users:
|
||||
- mg
|
||||
- docker-user
|
||||
### geerlingguy.pip
|
||||
pip_package: python3-pip
|
||||
pip_install_packages:
|
||||
- name: docker # für munin-plugin docker_
|
||||
|
||||
### mgrote.docker-compose-deploy
|
||||
docker_compose_base_dir: /home/docker-user
|
||||
### mgrote.munin-node
|
||||
munin_node_bind_host: "0.0.0.0"
|
||||
munin_node_bind_port: "4949"
|
||||
munin_node_allowed_cidrs: [192.168.2.0/24]
|
||||
munin_node_plugins:
|
||||
- name: systemd_status
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
|
||||
- name: systemd_mem
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_mem
|
||||
config: |
|
||||
[systemd_mem]
|
||||
env.all_services true
|
||||
- name: lvm_
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/disk/lvm_
|
||||
config: |
|
||||
[lvm_*]
|
||||
user root
|
||||
- name: fail2ban
|
||||
src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
|
||||
config: |
|
||||
[fail2ban]
|
||||
env.client /usr/bin/fail2ban-client
|
||||
env.config_dir /etc/fail2ban
|
||||
user root
|
||||
- name: docker_containers
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
|
||||
config: |
|
||||
[docker_*]
|
||||
user root
|
||||
env.DOCKER_HOST unix://run/docker.sock
|
||||
- name: docker_cpu
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
|
||||
- name: docker_memory
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
|
||||
- name: docker_network
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
|
||||
- name: docker_volumes
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
|
||||
- name: docker_volumesize
|
||||
src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/docker/docker_volumesize
|
||||
- name: chrony
|
||||
src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/chrony/chrony
|
||||
### mgrote.apt_manage_packages
|
||||
apt_packages_extra:
|
||||
- bc # für munin plugins
|
||||
- jq # für munin plugins
|
||||
|
||||
### mgrote.apt_manage_sources
|
||||
repos_override: # mit docker-repos
|
||||
|
|
|
@ -17,39 +17,3 @@
|
|||
comment: 'dokuwiki-webserver'
|
||||
from_ip: 0.0.0.0/0
|
||||
protocol: tcp
|
||||
- rule: allow
|
||||
to_port: 4949
|
||||
protocol: tcp
|
||||
comment: 'munin'
|
||||
from_ip: 192.168.2.144/24
|
||||
### mgrote.munin-node
|
||||
munin_node_plugins:
|
||||
- name: chrony
|
||||
src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/chrony/chrony
|
||||
- name: systemd_status
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
|
||||
- name: systemd_mem
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_mem
|
||||
config: |
|
||||
[systemd_mem]
|
||||
env.all_services true
|
||||
- name: lvm_
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/disk/lvm_
|
||||
config: |
|
||||
[lvm_*]
|
||||
user root
|
||||
- name: fail2ban
|
||||
src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
|
||||
config: |
|
||||
[fail2ban]
|
||||
env.client /usr/bin/fail2ban-client
|
||||
env.config_dir /etc/fail2ban
|
||||
user root
|
||||
- name: http_response
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/http/http_response
|
||||
config: |
|
||||
[http_response]
|
||||
env.sites http://dokuwiki2.grote.lan https://wiki.mgrote.net/
|
||||
env.max_time 20
|
||||
env.short_label true
|
||||
env.follow_redirect true
|
||||
|
|
|
@ -17,37 +17,6 @@
|
|||
to_port: 139
|
||||
comment: 'smb'
|
||||
from_ip: 0.0.0.0/0
|
||||
- rule: allow
|
||||
to_port: 4949
|
||||
protocol: tcp
|
||||
comment: 'munin'
|
||||
from_ip: 192.168.2.144/24
|
||||
### mgrote.munin-node
|
||||
munin_node_plugins:
|
||||
- name: chrony
|
||||
src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/chrony/chrony
|
||||
- name: systemd_status
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
|
||||
- name: systemd_mem
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_mem
|
||||
config: |
|
||||
[systemd_mem]
|
||||
env.all_services true
|
||||
- name: fail2ban
|
||||
src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
|
||||
config: |
|
||||
[fail2ban]
|
||||
env.client /usr/bin/fail2ban-client
|
||||
env.config_dir /etc/fail2ban
|
||||
user root
|
||||
- name: samba
|
||||
src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/samba
|
||||
config: |
|
||||
[samba]
|
||||
user root
|
||||
group root
|
||||
env.smbstatus /usr/bin/smbstatus
|
||||
env.ignoreipcshare 1
|
||||
|
||||
### mgrote.apt_manage_packages
|
||||
apt_packages_internet:
|
||||
|
|
|
@ -33,11 +33,7 @@
|
|||
protocol: tcp
|
||||
comment: 'gitea'
|
||||
from_ip: 0.0.0.0/0
|
||||
- rule: allow
|
||||
to_port: 4949
|
||||
protocol: tcp
|
||||
comment: 'munin'
|
||||
from_ip: 192.168.2.144/24
|
||||
|
||||
### l3d.gitea
|
||||
# config liegt in /etc/gitea/gitea.ini
|
||||
gitea_version: "1.20.3"
|
||||
|
@ -101,41 +97,3 @@
|
|||
|
||||
gitea_backup_on_upgrade: false
|
||||
gitea_backup_location: "{{ gitea_home }}/backups/"
|
||||
|
||||
### mgrote.munin-node
|
||||
munin_node_plugins:
|
||||
- name: chrony
|
||||
src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/chrony/chrony
|
||||
- name: systemd_status
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
|
||||
- name: systemd_mem
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_mem
|
||||
config: |
|
||||
[systemd_mem]
|
||||
env.all_services true
|
||||
- name: lvm_
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/disk/lvm_
|
||||
config: |
|
||||
[lvm_*]
|
||||
user root
|
||||
- name: fail2ban
|
||||
src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
|
||||
config: |
|
||||
[fail2ban]
|
||||
env.client /usr/bin/fail2ban-client
|
||||
env.config_dir /etc/fail2ban
|
||||
user root
|
||||
- name: http_response
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/http/http_response
|
||||
config: |
|
||||
[http_response]
|
||||
env.sites http://gitea.grote.lan:3000 https://git.mgrote.net
|
||||
env.max_time 20
|
||||
env.short_label true
|
||||
env.follow_redirect true
|
||||
- name: drone
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/cicd/drone
|
||||
config: |
|
||||
[drone]
|
||||
env.url http://docker10.grote.lan:81/api/user/repos?latest=true
|
||||
env.token {{ lookup('keepass', 'munin_plugin_drone_token', 'password') }}
|
||||
|
|
|
@ -30,53 +30,3 @@
|
|||
public_ssh_key: ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJcBwOjanQV6sFWaTetqpl20SVe3aRzGjKbsp7hKkDCE mg@irantu
|
||||
allow_sudo: true
|
||||
allow_passwordless_sudo: true
|
||||
|
||||
### mgrote.munin-node
|
||||
munin_node_plugins:
|
||||
- name: chrony
|
||||
src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/chrony/chrony
|
||||
- name: systemd_status
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
|
||||
- name: systemd_mem
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_mem
|
||||
config: |
|
||||
[systemd_mem]
|
||||
env.all_services true
|
||||
- name: fail2ban
|
||||
src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
|
||||
config: |
|
||||
[fail2ban]
|
||||
env.client /usr/bin/fail2ban-client
|
||||
env.config_dir /etc/fail2ban
|
||||
user root
|
||||
- name: zfs_arcstats
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfs_arcstats
|
||||
- name: zfsonlinux_stats_
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfsonlinux_stats_
|
||||
- name: zpool_iostat
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zpool_iostat
|
||||
- name: zfs_list
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfs_list
|
||||
config: |
|
||||
[zfs_list]
|
||||
env.ignore_datasets_pattern autodaily
|
||||
- name: zfs_count
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfs_pool_dataset_count
|
||||
- name: zpool_iostat
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zpool_iostat
|
||||
- name: zpool_capacity
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zpool_capacity
|
||||
munin_node_disabled_plugins:
|
||||
- name: meminfo # zu hohe last
|
||||
- name: hddtemp2 # ersetzt durch hddtemp_smartctl
|
||||
- name: ntp # verursacht zu viele dns ptr request
|
||||
- name: hddtempd # ersetzt durch hddtemp_smartctl
|
||||
- name: mt_system_crs309 # switch ausgebaut
|
||||
- name: squid_cache # proxmox
|
||||
- name: squid_objectsize # proxmox
|
||||
- name: squid_requests # proxmox
|
||||
- name: squid_traffic # proxmox
|
||||
- name: solarman_api_inverter
|
||||
- name: deye
|
||||
- name: lvm_
|
||||
- name: timesync
|
||||
|
|
|
@ -35,78 +35,6 @@
|
|||
- open-vm-tools
|
||||
- systemd-boot
|
||||
|
||||
### mgrote.munin-node
|
||||
munin_node_plugins:
|
||||
- name: chrony
|
||||
src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/chrony/chrony
|
||||
- name: systemd_status
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
|
||||
- name: systemd_mem
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_mem
|
||||
config: |
|
||||
[systemd_mem]
|
||||
env.all_services true
|
||||
- name: fail2ban
|
||||
src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
|
||||
config: |
|
||||
[fail2ban]
|
||||
env.client /usr/bin/fail2ban-client
|
||||
env.config_dir /etc/fail2ban
|
||||
user root
|
||||
- name: zfs_arcstats
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfs_arcstats
|
||||
- name: zfsonlinux_stats_
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfsonlinux_stats_
|
||||
- name: zpool_iostat
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zpool_iostat
|
||||
- name: zfs_list
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfs_list
|
||||
config: |
|
||||
[zfs_list]
|
||||
env.ignore_datasets_pattern autodaily
|
||||
- name: zpool_capacity
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zpool_capacity
|
||||
- name: kvm_mem
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/libvirt/kvm_mem
|
||||
- name: kvm_net
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/libvirt/kvm_net
|
||||
- name: kvm_io
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/libvirt/kvm_io
|
||||
config: |
|
||||
[kvm_io]
|
||||
user root
|
||||
- name: kvm_cpu
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/libvirt/kvm_cpu
|
||||
- name: proxmox_count
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/proxmox/proxmox_vm_count
|
||||
config: |
|
||||
[proxmox_count]
|
||||
user root
|
||||
group root
|
||||
- name: zfs_count
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfs_pool_dataset_count
|
||||
- name: ksm_
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/system/kernel_same_page_merging
|
||||
munin_node_disabled_plugins:
|
||||
- name: meminfo # zu hohe last
|
||||
- name: hddtemp2 # ersetzt durch hddtemp_smartctl
|
||||
- name: ntp # verursacht zu viele dns ptr request
|
||||
- name: hddtempd # ersetzt durch hddtemp_smartctl
|
||||
- name: mt_system_crs309 # switch ausgebaut
|
||||
- name: squid_cache # proxmox
|
||||
- name: squid_objectsize # proxmox
|
||||
- name: squid_requests # proxmox
|
||||
- name: squid_traffic # proxmox
|
||||
- name: solarman_api_inverter
|
||||
- name: deye
|
||||
- name: lvm_
|
||||
- name: apcupsd_ww
|
||||
- name: slab
|
||||
- name: apcupsd_pwr
|
||||
- name: timesync
|
||||
- name: http_response
|
||||
- name: timesync
|
||||
|
||||
# Ansible Variablen
|
||||
### sudo
|
||||
sudo: false
|
||||
|
|
|
@ -27,8 +27,6 @@
|
|||
compose_files:
|
||||
- name: homer
|
||||
state: present
|
||||
- name: munin
|
||||
state: absent
|
||||
- name: drone
|
||||
state: present
|
||||
- name: nextcloud
|
||||
|
@ -64,11 +62,6 @@
|
|||
protocol: tcp
|
||||
comment: 'ssh'
|
||||
from_ip: 0.0.0.0/0
|
||||
- rule: allow
|
||||
to_port: 4949
|
||||
protocol: tcp
|
||||
comment: 'munin'
|
||||
from_ip: 0.0.0.0/0
|
||||
# docker network inspect $(docker network ls -q)|grep -E "IPv(4|6)A" | grep -v \"\" | sort -h
|
||||
- rule: allow
|
||||
from_ip: 192.168.0.0/16
|
||||
|
@ -76,204 +69,3 @@
|
|||
- rule: allow
|
||||
from_ip: 172.0.0.0/8
|
||||
comment: 'docker networks'
|
||||
|
||||
### geerlingguy.pip
|
||||
pip_package: python3-pip
|
||||
pip_install_packages:
|
||||
- name: docker # für munin-plugin docker_
|
||||
- name: fritzconnection # für munin fritzbox*
|
||||
- name: lxml # für munin fritzbox*
|
||||
- name: requests # für munin fritzbox*
|
||||
|
||||
### mgrote.apt_manage_packages
|
||||
apt_packages_extra:
|
||||
- libnet-dns-perl # für munin: dnsresponse_*
|
||||
- libwww-curl-perl # für munin-plugin: unifi
|
||||
- libjson-perl # für munin-plugin: unifi
|
||||
- sshpass # fur munin mt_system_*
|
||||
|
||||
### mgrote.munin-node
|
||||
munin_node_allowed_cidrs: [0.0.0.0/0] # weil der munin-server aus einem anderen subnet zugreift
|
||||
munin_node_plugins:
|
||||
- name: chrony
|
||||
src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/chrony/chrony
|
||||
- name: systemd_status
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
|
||||
- name: systemd_mem
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_mem
|
||||
config: |
|
||||
[systemd_mem]
|
||||
env.all_services true
|
||||
- name: lvm_
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/disk/lvm_
|
||||
config: |
|
||||
[lvm_*]
|
||||
user root
|
||||
- name: fail2ban
|
||||
src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
|
||||
config: |
|
||||
[fail2ban]
|
||||
env.client /usr/bin/fail2ban-client
|
||||
env.config_dir /etc/fail2ban
|
||||
user root
|
||||
- name: docker_containers
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
|
||||
config: |
|
||||
[docker_*]
|
||||
user root
|
||||
env.DOCKER_HOST unix://run/docker.sock
|
||||
- name: docker_cpu
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
|
||||
- name: docker_memory
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
|
||||
- name: docker_network
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
|
||||
- name: docker_volumes
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/docker/docker_
|
||||
- name: http_response
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/http/http_response
|
||||
config: |
|
||||
[http_response]
|
||||
env.sites http://docker10.grote.lan:333 http://docker10.grote.lan:1234 https://nextcloud.mgrote.net http://docker10.grote.lan:3344 http://docker10.grote.lan:5000 https://miniflux.mgrote.net/ http://docker10.grote.lan:3001 http://docker10.grote.lan:8081
|
||||
env.max_time 20
|
||||
env.short_label true
|
||||
env.follow_redirect true
|
||||
- name: mt_system_hex
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/router/mikrotik_system
|
||||
config: |
|
||||
[mt_system_hex]
|
||||
user root
|
||||
env.ssh_user munin
|
||||
env.ssh_password {{ lookup('keepass', 'munin_user_hex', 'password') }}
|
||||
env.ssh_host 192.168.3.144
|
||||
- name: mt_system_crs305
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/router/mikrotik_system
|
||||
config: |
|
||||
[mt_system_crs305]
|
||||
user root
|
||||
env.ssh_user munin
|
||||
env.ssh_password {{ lookup('keepass', 'munin_user_crs305', 'password') }}
|
||||
env.ssh_host 192.168.2.225
|
||||
- name: mt_system_rb5009
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/router/mikrotik_system
|
||||
config: |
|
||||
[mt_system_rb5009]
|
||||
user root
|
||||
env.ssh_user munin
|
||||
env.ssh_password {{ lookup('keepass', 'munin_user_rb5009', 'password') }}
|
||||
env.ssh_host 192.168.2.1
|
||||
- name: unifi
|
||||
src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/unifi
|
||||
config: |
|
||||
[unifi*]
|
||||
# User name to login to unifi controller API. Default is "ubnt". Ideally, this should
|
||||
# point to a read-only account.
|
||||
env.user munin
|
||||
# Password to login to unifi controller API. Default is "ubnt"
|
||||
env.pass {{ lookup('keepass', 'munin_user_unifi', 'password') }}
|
||||
# URL of the API, with port if needed. No trailing slash.
|
||||
env.api_url https://docker10.grote.lan:8443
|
||||
# Verify SSL certificate name against host.
|
||||
# Note: if using a default cloudkey certificate, this will fail unless you manually add it
|
||||
# to the local keystore.
|
||||
# Default is "yes"
|
||||
env.ssl_verify_host no
|
||||
# Verify Peer's SSL vertiicate.
|
||||
# Note: if using a default cloudkey certificate, this will fail
|
||||
# Default is "yes"
|
||||
env.ssl_verify_peer no
|
||||
# The human readable name of the unifi site - used for graph titles
|
||||
env.name Unifi
|
||||
# By default, Use standard munin well know categories -
|
||||
env.force_category unifi
|
||||
#---
|
||||
# Show device CPU utilization
|
||||
env.enable_device_cpu yes
|
||||
# Show device memory usage
|
||||
env.enable_device_mem yes
|
||||
# Show device load average (switches and APs only)
|
||||
env.enable_device_load yes
|
||||
# Show device uptime
|
||||
env.enable_device_uptime yes
|
||||
# Show number of clients connected to each device
|
||||
env.enable_clients_device yes
|
||||
# Show detailed graphs for each device (per device graphs)
|
||||
env.enable_detail_clients_device yes
|
||||
# Show number of clients connected to each network type
|
||||
env.enable_clients_type yes
|
||||
# Show detailed graphs for each client type (per type graphs)
|
||||
env.enable_detail_clients_type yes
|
||||
# Show unauthorized / authorized client list
|
||||
# if you are not using the guest portal, this is useless
|
||||
env.show_authorized_clients_type yes
|
||||
# Show transfer statistics on switch ports; wirft Fehler wenn aktiv
|
||||
env.enable_xfer_port no
|
||||
# Show detailed graphs per switch port; wirft Fehler wenn aktiv
|
||||
env.enable_detail_xfer_port no
|
||||
# Hide ports that have no link (When set to no, unplugged ports will transfer 0, not be undefined); wirft Fehler wenn aktiv
|
||||
env.hide_empty_xfer_port no
|
||||
# Show transfer statistics per device; wirft Fehler wenn aktiv
|
||||
env.enable_xfer_device no
|
||||
# Show detailed graphs for each device; wirft Fehler wenn aktiv
|
||||
env.enable_detail_xfer_device yes
|
||||
# Show transfer statistics per named network; wirft Fehler wenn aktiv
|
||||
env.enable_xfer_network no
|
||||
# Show detailed graphs for each named network; wirft Fehler wenn aktiv
|
||||
env.enable_detail_xfer_network no
|
||||
# Show transfer statistics per radio; wirft Fehler wenn aktiv
|
||||
env.enable_xfer_radio no
|
||||
# Show detailed graphs for each radio; wirft Fehler wenn aktiv
|
||||
env.enable_detail_xfer_radio no
|
||||
- name: fritzbox_uptime.py
|
||||
src: https://git.mgrote.net/mg/mirror-frododvr-fritzbox-munin/raw/branch/master/fritzbox_uptime.py
|
||||
- name: fritzbox_traffic.py
|
||||
src: https://git.mgrote.net/mg/mirror-frododvr-fritzbox-munin/raw/branch/master/fritzbox_traffic.py
|
||||
- name: fritzbox_power.py
|
||||
src: https://git.mgrote.net/mg/mirror-frododvr-fritzbox-munin/raw/branch/master/fritzbox_power_consumption.py
|
||||
- name: fritzbox_memory.py
|
||||
src: https://git.mgrote.net/mg/mirror-frododvr-fritzbox-munin/raw/branch/master/fritzbox_memory_usage.py
|
||||
- name: fritzbox_helper.py
|
||||
src: https://git.mgrote.net/mg/mirror-frododvr-fritzbox-munin/raw/branch/master/fritzbox_helper.py
|
||||
- name: fritzbox_cpu.py
|
||||
src: https://git.mgrote.net/mg/mirror-frododvr-fritzbox-munin/raw/branch/master/fritzbox_cpu_usage.py
|
||||
- name: fritzbox_temp.py
|
||||
src: https://git.mgrote.net/mg/mirror-frododvr-fritzbox-munin/raw/branch/master/fritzbox_cpu_temperature.py
|
||||
- name: fritzbox_conn_uptime.py
|
||||
src: https://git.mgrote.net/mg/mirror-frododvr-fritzbox-munin/raw/branch/master/fritzbox_connection_uptime.py
|
||||
config: |
|
||||
[fritzbox_*]
|
||||
env.fritzbox_ip 192.168.5.1
|
||||
env.fritzbox_username munin
|
||||
env.fritzbox_password {{ lookup('keepass', 'munin_user_fritzbox', 'password') }}
|
||||
env.traffic_remove_max true # if you do not want the possible max values
|
||||
- name: nextcloud_nextcloud.mgrote.net
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/nextcloud/nextcloud_
|
||||
config: |
|
||||
[nextcloud_nextcloud.mgrote.net]
|
||||
env.username munin
|
||||
env.password {{ lookup('keepass', 'munin_user_nextcloud', 'password') }}
|
||||
env.api_path /ocs/v2.php/apps/serverinfo/api/v1/info
|
||||
env.scheme https
|
||||
- name: dnsresponse_192.168.2.1
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/network/dns/dnsresponse_
|
||||
- name: dnsresponse_192.168.2.43
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/network/dns/dnsresponse_
|
||||
- name: dnsresponse_127.0.0.1
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/network/dns/dnsresponse_
|
||||
config: |
|
||||
[dnsresponse_*]
|
||||
env.site www.heise.de
|
||||
env.times 20
|
||||
- name: gitea_commit_time_diff
|
||||
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/git/gitea_commit_time_diff
|
||||
config: |
|
||||
[gitea_commit_time_diff]
|
||||
env.url git.mgrote.net
|
||||
env.repo routeros-configs
|
||||
env.user mg
|
||||
env.git_ref HEAD
|
||||
env.warning 1000
|
||||
env.critical 2880
|
||||
env.token {{ lookup('keepass', 'gitea_commit_time_diff_oxidized_token', 'password') }}
|
||||
- name: docker_volumesize
|
||||
src: https://git.mgrote.net/Mirror/munin-contrib/raw/branch/master/plugins/docker/docker_volumesize
|
||||
|
|
|
@ -157,6 +157,3 @@
|
|||
recursive: 'no'
|
||||
snapshots: true
|
||||
template: '3tage'
|
||||
|
||||
### mgrote.munin-node
|
||||
munin_node_allowed_cidrs: [192.168.3.0/24]
|
||||
|
|
BIN
keepass_db.kdbx
BIN
keepass_db.kdbx
Binary file not shown.
|
@ -11,7 +11,6 @@
|
|||
- import_playbook: base/ufw.yml
|
||||
- import_playbook: base/ssh.yml
|
||||
- import_playbook: base/f2b.yml
|
||||
- import_playbook: base/monitoring.yml
|
||||
- import_playbook: base/remove_snapd.yml
|
||||
- import_playbook: base/unattended_upgrades.yml
|
||||
- import_playbook: base/update_packages.yml
|
||||
|
|
|
@ -1,11 +0,0 @@
|
|||
---
|
||||
- hosts: all
|
||||
roles:
|
||||
- { role: mgrote.munin-node,
|
||||
become: true,
|
||||
tags: "munin",
|
||||
when: "not 'laptop' in group_names" }
|
||||
|
||||
### Die Host müssen auch beim Docker-Container: "munin-master eingetragen" werden.
|
||||
### wird nur auf physischen Rechnern ausgeführt.
|
||||
### Wenn ein Plugin nicht geht: munin-node-configure --shell --families=contrib,auto | sh -x
|
|
@ -12,8 +12,16 @@
|
|||
name:
|
||||
- munin-node
|
||||
state: absent
|
||||
|
||||
- name: remove folder
|
||||
become: yes
|
||||
ansible.builtin.file:
|
||||
path: /etc/munin
|
||||
state: absent
|
||||
|
||||
- name: ensure user is absent
|
||||
become: true
|
||||
ansible.builtin.user:
|
||||
name: munin
|
||||
state: absent
|
||||
remove: true
|
||||
|
|
Loading…
Reference in a new issue