homeserver/host_vars/docker-test.grote.lan.yml
mg 9b3e5a664b munin: 3.33 – You Can (Not) Redo. (#203)
Co-authored-by: Michael Grote <michael.grote@posteo.de>
Reviewed-on: mg/ansible#203
Co-authored-by: mg <mg@noreply.git.mgrote.net>
Co-committed-by: mg <mg@noreply.git.mgrote.net>
2021-09-24 10:11:54 +02:00

46 lines
1.6 KiB
YAML

---
### mgrote.docker-compose-deploy
docker_compose_base_dir: /home/mg/docker
docker_compose_projects:
- name: homer
dir_name: docker-homer
repository_url: git.mgrote.net/mg/docker-homer
state: present
git_branch: test
- name: watchtower
dir_name: docker-watchtower
repository_url: git.mgrote.net/mg/docker-watchtower
repository_user: mg
repository_user_password: "{{ lookup('keepass', 'gitea_mg_https_password', 'password') }}"
state: present
- name: munin-master
dir_name: docker-munin-master
repository_url: git.mgrote.net/mg/docker-munin-master
repository_user: mg
repository_user_password: "{{ lookup('keepass', 'gitea_mg_https_password', 'password') }}"
state: absent
- name: lazydocker
dir_name: docker-lazydocker
repository_url: git.mgrote.net/mg/docker-lazydocker
state: absent # danach löschen
- name: munin-master-test
dir_name: docker-munin-master-test
repository_url: git.mgrote.net/mg/docker-munin-master_test
state: present
### geerlingguy.munin-node
munin_node_allowed_cidrs: [0.0.0.0/0] # weil der munin-server aus einem anderen subnet zugreift
munin_node_allowed_ips: # weil der munin-server aus einem anderen subnet zugreift
- '^127\.0\.0\.1$'
- '^::1$'
- ^0\.0\.0\.0$
### oefenweb.ufw
ufw_rules: # ist extra weil bei munin kein subnet angegeben ist
- rule: allow
to_port: 22
protocol: tcp
comment: 'ssh'
from_ip: 192.168.2.0/24
- rule: allow
to_port: 4949
protocol: tcp
comment: 'munin'