172 lines
6.4 KiB
YAML
172 lines
6.4 KiB
YAML
---
|
|
### mgrote.restic
|
|
restic_folders_to_backup: "/ /etc/pve"
|
|
### mgrote.restic
|
|
#restic_exclude: |
|
|
# /hdd_data_raidz/**
|
|
# /rpool/**
|
|
### mgrote.user
|
|
users:
|
|
- username: root
|
|
password: "{{ lookup('keepass', 'root_linux_password_hash_proxmox', 'password') }}"
|
|
update_password: on_create
|
|
groups: ssh, sudo, root
|
|
state: present
|
|
allow_sudo: true
|
|
allow_passwordless_sudo: true
|
|
- username: mg
|
|
password: "{{ lookup('keepass', 'mg_linux_password_hash', 'password') }}"
|
|
update_password: on_create
|
|
groups: ssh, sudo
|
|
state: present
|
|
public_ssh_key: "{{ ssh_public_key_mg }}"
|
|
allow_sudo: true
|
|
allow_passwordless_sudo: true
|
|
- username: ansible-user
|
|
password: "{{ lookup('keepass', 'ansible_user_linux_password_hash', 'password') }}"
|
|
update_password: on_create
|
|
groups: ssh, sudo
|
|
state: present
|
|
public_ssh_key: ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCyqs0OE5RVqs6tIzyuGQWvq/OVDa/tfdSEqMIwcthFt+pwCCjpqtNc8L8FSXgphSwuNosFakqhMLDFD3pmII+t61NRExsoR3nGTDuCAQnTvTKXTEfhnunN3pwgXWVTI68j9pRzmSy+hMkSFbgN9EGMSXxGcNunY7ewS3ZkVe08SWFpiX9giYq6uiOiMHsZKdcP6s2QRXUhZlTx2cOc/9gJ5lD82EUXQRZzT6ww2xVrceIW9c3CZFmSmYWxvrR7dPcHrke90FPPd5WhU+Anz++6GsT6+OhZTk+uQnBHllFXn9NoFQIEUDO4zV+gFXITaAbTkLAcCwuKB2QcDZ6C2mhf ansible-generated on ansible-v2
|
|
allow_sudo: true
|
|
allow_passwordless_sudo: true
|
|
### mgrote.apt_manage_packages
|
|
apt_packages_extra:
|
|
- ifupdown2
|
|
- bmon
|
|
### geerlingguy.munin-node
|
|
munin_node_disabled_plugins:
|
|
- name: meminfo # zu hohe last
|
|
- name: hddtemp2 # ersetzt durch hddtemp_smartctl
|
|
- name: ntp # verursacht zu viele dns ptr request
|
|
- name: hddtempd # ersetzt durch hddtemp_smartctl
|
|
- name: ipmi_power # für pve2, leeres diagramm
|
|
- name: squid_cache
|
|
- name: squid_objectsize
|
|
- name: squid_requests
|
|
- name: squid_traffic
|
|
- name: nfsd4
|
|
- name: nfsd
|
|
- name: kvm_vm_count
|
|
- name: proxmox_lxc_count
|
|
- name: proxmox_vm_count
|
|
- name: zfs_usage_rpool # liest falsch ein
|
|
- name: zfs_usage_hdd_data_raidz # liest falsch ein
|
|
- name: zpool_fragmentation # ist in zfs* vorhanden
|
|
munin_node_plugins:
|
|
- name: timesync
|
|
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/timesync_status
|
|
- name: systemd_status
|
|
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/systemd/systemd_status
|
|
- name: lvm_
|
|
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/disk/lvm_
|
|
config: |
|
|
[lvm_*]
|
|
user root
|
|
- name: zfs_arcstats
|
|
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfs_arcstats
|
|
- name: zfsonlinux_stats_
|
|
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfsonlinux_stats_
|
|
- name: zpool_iostat
|
|
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zpool_iostat
|
|
- name: zfs_list
|
|
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfs_list
|
|
config: |
|
|
[zfs_list]
|
|
env.ignore_datasets_pattern autodaily
|
|
- name: zpool_capacity
|
|
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zpool_capacity
|
|
- name: kvm_mem
|
|
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/libvirt/kvm_mem
|
|
- name: kvm_net
|
|
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/libvirt/kvm_net
|
|
- name: kvm_io
|
|
src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/kvm_io
|
|
config: |
|
|
[kvm_io]
|
|
user root
|
|
- name: kvm_cpu
|
|
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/libvirt/kvm_cpu
|
|
- name: proxmox_count
|
|
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/proxmox/proxmox_vm_count
|
|
config: |
|
|
[proxmox_count]
|
|
user root
|
|
group root
|
|
- name: zfs_count
|
|
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/zfs/zfs_pool_dataset_count
|
|
- name: ksm_
|
|
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/system/kernel_same_page_merging
|
|
- name: fail2ban
|
|
src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/fail2ban
|
|
config: |
|
|
[fail2ban]
|
|
env.client /usr/bin/fail2ban-client
|
|
env.config_dir /etc/fail2ban
|
|
user root
|
|
- name: apcupsd_ww
|
|
src: https://git.mgrote.net/mg/mirror-munin-contrib/raw/branch/master/plugins/power/apcupsd_ww
|
|
- name: apcupsd_pwr
|
|
src: https://git.mgrote.net/mg/munin-plugins/raw/branch/master/extern/apcupsd_pwr
|
|
config: |
|
|
[apcupsd_pwr]
|
|
env.ups_model APC-BX950U-GR
|
|
|
|
### mgrote.zfs_sanoid
|
|
sanoid_templates:
|
|
- name: '31tage'
|
|
keep_hourly: '24' # Aufheben (Stunde)
|
|
keep_daily: '31' # Aufheben (Tage)
|
|
keep_monthly: '3' # Aufheben (Monate)
|
|
keep_yearly: '0' # Aufheben (Jahre)
|
|
frequently: '16' # Aufheben (Minuten)
|
|
frequent_period: '15' # Intervall (alle 5 Minuten)
|
|
autosnap: 'yes' # Automatisches erstellen von Snapshots
|
|
autoprune: 'yes'
|
|
- name: '14tage'
|
|
keep_hourly: '24'
|
|
keep_daily: '14'
|
|
keep_monthly: '0'
|
|
keep_yearly: '0'
|
|
frequently: '16'
|
|
frequent_period: '15'
|
|
autosnap: 'yes'
|
|
autoprune: 'yes'
|
|
- name: '3tage'
|
|
keep_hourly: '24'
|
|
keep_daily: '3'
|
|
keep_monthly: '0'
|
|
keep_yearly: '0'
|
|
frequently: '16'
|
|
frequent_period: '15'
|
|
autosnap: 'yes'
|
|
autoprune: 'yes'
|
|
- name: '3monate'
|
|
keep_hourly: '24'
|
|
keep_daily: '3'
|
|
keep_monthly: '3'
|
|
keep_yearly: '0'
|
|
frequently: '16'
|
|
frequent_period: '15'
|
|
autosnap: 'yes'
|
|
autoprune: 'yes'
|
|
|
|
|
|
|
|
### mgrote.apt_manage_sources
|
|
manage_sources_apt_proxy: ""
|
|
# Ansible Variablen
|
|
### sudo
|
|
sudo: false
|
|
|
|
### mgrote.apcupsd
|
|
apcupsd_master_onbatterydelay: 10
|
|
apcupsd_master_batterylevel_for_shutdown: 50
|
|
apcupsd_master_minutes_for_shutdown: 10
|
|
apcupsd_master_nologon_when_active: "disable"
|
|
|
|
apcupsd_nis_master: true
|
|
apcupsd_nis_master_hostname: pve2.grote.lan
|
|
apcupsd_nis_master_listen_ip: 0.0.0.0
|
|
apcupsd_nis_master_listen_port: 3551
|
|
apcupsd_ups_name: APC-BX950U-GR
|