diff --git a/host_vars/pve5-test.grote.lan.yml b/host_vars/pve5-test.grote.lan.yml new file mode 100644 index 00000000..e155cb8c --- /dev/null +++ b/host_vars/pve5-test.grote.lan.yml @@ -0,0 +1,223 @@ +--- + # rpool ist unverschlüsselt als Boot-Medium + # der Speicherort fur die VMs ist verschlüsselt + # zfs create -o encryption=aes-256-gcm -o keyformat=passphrase rpool/vm + # entschlüsseln nach Boot mit: sudo zfs mount -a -l + ## HDD_DATA_RAIDZ + ### sudo zpool create -o ashift=12 -o feature@encryption=enabled -O encryption=on -O keylocation=prompt -O keyformat=passphrase hdd_data_raidz mirror /dev/disk/by-id/scsi-0QEMU_QEMU_HARDDISK_drive-scsi3 /dev/disk/by-id/scsi-0QEMU_QEMU_HARDDISK_drive-scsi2 + + # mgrote.zfs_manage_datasets + ### mgrote.zfs_extra + # Variablen für mgrote.zfs_health/trim/scrub/zed/arc_mem/ sind zusammengefasst unter zfs_extra_* + zfs_datasets: # DatenPools werden hier nicht verwaltet + # rpool - System-Datasets + - dataset: rpool + state: present + compression: zstd + sync: disabled + xattr: sa + dnodesize: auto + atime: on + snapdir: hidden + reservation: 1G + refreservation: 1G + - dataset: rpool/ROOT + state: present + refreservation: 1G + - dataset: rpool/ROOT/pve-1 + state: present + refreservation: 1G + + # rpool - VMs + - dataset: rpool/vm + state: present + - dataset: rpool/vm/zvol + state: present + - dataset: rpool/vm/lxc + state: present + # hdd_data_raidz + - dataset: hdd_data_raidz + state: present + compression: zstd + sync: disabled + xattr: sa + dnodesize: auto + atime: on + snapdir: hidden + reservation: 1G + - dataset: hdd_data_raidz/papa_backup + state: present + - dataset: hdd_data_raidz/pve_backup + state: present + recordsize: 1M + - dataset: hdd_data_raidz/videos + state: present + recordsize: 1M + - dataset: hdd_data_raidz/music + state: present + recordsize: 1M + - dataset: hdd_data_raidz/tmp + state: present + - dataset: hdd_data_raidz/archiv + state: present + - dataset: hdd_data_raidz/bilder + state: present + recordsize: 1M + - dataset: hdd_data_raidz/hm + state: present + - dataset: hdd_data_raidz/scans + state: present + - dataset: hdd_data_raidz/restic + state: present + - dataset: hdd_data_raidz/backup + state: present + - dataset: hdd_data_raidz/buecher + state: present + - dataset: hdd_data_raidz/programme + state: present + - dataset: hdd_data_raidz/vm + state: present + + zfs_extra_arc_max_size: "1073741824" # 1GB in Bytes + zfs_extra_zfs_pools: + - name: "rpool" + systemd_timer_schedule: "*-01,04,07,10-01 23:00" # jeden ersten eines jeden Quartals + - name: "hdd_data_raidz" + systemd_timer_schedule: "*-01,04,07,10-01 23:00" + + ### mgrote.zfs_sanoid + sanoid_datasets: + - path: 'hdd_data_raidz/videos' + template: '3tage' + recursive: 'yes' + snapshots: true + - path: 'hdd_data_raidz/music' + template: '14tage' + recursive: 'yes' + snapshots: true + - path: 'hdd_data_raidz/papa_backup' + template: '14tage' + recursive: 'yes' + snapshots: true + - path: 'hdd_data_raidz/tmp' + template: '3tage' + recursive: 'yes' + snapshots: true + - path: 'hdd_data_raidz/pve_backup' + template: '3tage' + recursive: 'yes' + snapshots: true + - path: 'hdd_data_raidz/archiv' + template: '14tage' + recursive: 'yes' + snapshots: true + - path: hdd_data_raidz/bilder + recursive: 'no' + snapshots: true + template: '14tage' + - path: hdd_data_raidz/hm + recursive: 'no' + snapshots: true + template: '14tage' + - path: hdd_data_raidz/scans + recursive: 'no' + snapshots: true + template: '3tage' + - path: hdd_data_raidz/backup + recursive: 'no' + snapshots: true + template: '31tage' + - path: hdd_data_raidz/restic + recursive: 'no' + snapshots: true + template: '3tage' + - path: hdd_data_raidz/programme + recursive: 'no' + snapshots: true + template: '14tage' + - path: hdd_data_raidz/buecher + recursive: 'no' + snapshots: true + template: '14tage' + - path: hdd_data_raidz/vm + recursive: 'no' + snapshots: true + template: 'pve3tage' + - path: rpool + recursive: 'no' + snapshots: true + template: 'pve3tage' + - path: rpool/ROOT + recursive: 'no' + snapshots: true + template: 'pve3tage' + - path: rpool/ROOT/pve-1 + recursive: 'no' + snapshots: true + template: '3tage' + + ### mgrote.cv4pve-autosnap + cv4pve_api_user: root@pam!cv4pve-autosnap + cv4pve_api_token: "{{ lookup('keepass', 'cv4pve_api_token_pve2', 'password') }}" + cv4pve_vmid: all + cv4pve_keep_snapshots: 5 + cv4pve_dl_link: "https://github.com/Corsinvest/cv4pve-autosnap/releases/download/v1.10.0/cv4pve-autosnap-linux-x64.zip" + + ### mgrote.proxmox_bind_mounts + pve_bind_mounts: + - vmid: 100 + mp_nr: 0 + mp_path_host: /hdd_data_raidz/videos + mp_path_guest: /shares_videos + - vmid: 100 + mp_nr: 2 + mp_path_host: /hdd_data_raidz/pve_backup + mp_path_guest: /shares_pve_backup + - vmid: 100 + mp_nr: 3 + mp_path_host: /hdd_data_raidz/papa_backup + mp_path_guest: /shares_papa_backup + - vmid: 100 + mp_nr: 4 + mp_path_host: /hdd_data_raidz/music + mp_path_guest: /shares_music + - vmid: 100 + mp_nr: 5 + mp_path_host: /hdd_data_raidz/tmp + mp_path_guest: /shares_tmp + - vmid: 100 + mp_nr: 6 + mp_path_host: /hdd_data_raidz/archiv + mp_path_guest: /shares_archiv + - vmid: 100 + mp_nr: 7 + mp_path_host: /hdd_data_raidz/bilder + mp_path_guest: /shares_bilder + - vmid: 100 + mp_nr: 8 + mp_path_host: /hdd_data_raidz/hm + mp_path_guest: /shares_hm + - vmid: 100 + mp_nr: 9 + mp_path_host: /hdd_data_raidz/scans + mp_path_guest: /shares_scans + - vmid: 100 + mp_nr: 10 + mp_path_host: /hdd_data_raidz/restic + mp_path_guest: /shares_restic + - vmid: 100 + mp_nr: 12 + mp_path_host: /hdd_data_raidz/backup + mp_path_guest: /shares_backup + - vmid: 100 + mp_nr: 14 + mp_path_host: /hdd_data_raidz/buecher + mp_path_guest: /shares_buecher + - vmid: 100 + mp_nr: 15 + mp_path_host: /hdd_data_raidz/programme + mp_path_guest: /shares_programme + - vmid: 100 + mp_nr: 16 + mp_path_host: /hdd_data_raidz/vm + mp_path_guest: /shares_vm diff --git a/host_vars/pve5.grote.lan.yml b/host_vars/pve5.grote.lan.yml index 630ce65e..15b3cdb7 100644 --- a/host_vars/pve5.grote.lan.yml +++ b/host_vars/pve5.grote.lan.yml @@ -3,7 +3,8 @@ # der Speicherort fur die VMs ist verschlüsselt # zfs create -o encryption=aes-256-gcm -o keyformat=passphrase rpool/vm # entschlüsseln nach Boot mit: sudo zfs mount -a -l - + ## HDD_DATA_RAIDZ + ### sudo zpool create -o ashift=12 -o feature@encryption=enabled -O encryption=on -O keylocation=prompt -O keyformat=passphrase hdd_data_raidz mirror /dev/disk/by-id/ata-TOSHIBA_MG09ACA18TE_Z1B0A27KFJDH /dev/disk/by-id/ata-TOSHIBA_MG09ACA18TE_Z1B0A28LFJDH # mgrote.zfs_manage_datasets ### mgrote.zfs_extra diff --git a/inventory b/inventory index 1ed5024e..d62b7c4a 100644 --- a/inventory +++ b/inventory @@ -22,6 +22,7 @@ all: hosts: pve2.grote.lan: pve5.grote.lan: + pve5-test.grote.lan: children: proxmoxprod: hosts: @@ -52,3 +53,4 @@ all: hosts: vm-test-2004.grote.lan: vm-test-2204.grote.lan: + pve5-test.grote.lan: