be462d1515
#61 Init exporter-sensors, exporter-nvidia
2022-08-11 09:51:51 -07:00
e1f0362a97
#57 Restrict Qbittorrent to 12G of memory
2022-08-10 09:07:21 -07:00
080a065ab2
Attempt fix typo
2022-08-10 09:03:47 -07:00
178335afc5
#36 Init blank project.env for all services on server
2022-08-09 15:15:11 -07:00
33b63a05d4
#36 Init and implement project.env for wireguard
2022-08-09 15:14:52 -07:00
f152d23a79
#36 Init host.env for server
2022-08-09 15:14:10 -07:00
bf509ac1ec
Disable promtail active jobs
2022-08-08 18:27:20 -07:00
6676792ae2
Init promtail
2022-08-08 15:41:03 -07:00
4e1653298c
Fix typo
2022-08-08 11:58:58 -07:00
79d931196b
#53 Remove unnecessary qbittorrent network
2022-08-08 11:58:02 -07:00
54a919d623
Increase scrape_timeout to 30s
2022-08-08 11:41:35 -07:00
6fe80adcff
Set very long scrape interval for exporter-qbittorrent
2022-08-08 11:33:59 -07:00
b696ceadbe
Switch exporter to direct-to-container connection with qbittorrent
2022-08-08 11:28:33 -07:00
e391dbcedd
Add qbittorrent network for exporter and service
2022-08-08 11:25:45 -07:00
7643645ffb
Increase time between scrapes for exporter-qbittorrent
2022-08-08 11:21:40 -07:00
e52d945215
Add https:// to host definition for qbt
2022-08-08 11:16:16 -07:00
c9c8a0fc43
Fix qbittorrent URL
2022-08-08 11:12:52 -07:00
61830585a2
Init exporter-qbittorrent
2022-08-08 11:11:16 -07:00
a1ec728a71
Disable traefik on docker exporter
2022-08-08 00:01:51 -07:00
20eb7115e3
#55 Update calibre-web mount point
2022-08-07 22:05:57 -07:00
29abcb248a
Fix tasmota scrape targets
2022-08-07 16:52:01 -07:00
24a5275720
chmod +x compose scripts
2022-08-07 14:53:08 -07:00
348e474854
Add scrape jobs for exporter-docker
2022-08-07 14:50:50 -07:00
9c4d6a677c
Init exporter_docker
2022-08-07 14:46:51 -07:00
b1a6e5be1d
Fix containers restarting after power loss
2022-08-07 13:16:42 -07:00
5247bee2d9
Re-add Pihole host monitoring
2022-08-06 16:49:55 -07:00
058093de37
Init server compose scripts
2022-08-06 11:04:37 -07:00
aa103af03a
Update NAS and Traefik with proper middlewares array syntax
2022-08-06 10:33:23 -07:00
e84819e913
#47 Fix middlewares syntax
2022-08-06 10:31:40 -07:00
78391c5b80
#42 Fix mis-organized middleware
2022-08-06 10:29:40 -07:00
785077dc57
#47 Move Pihole from server to Pi on .22
2022-08-06 10:26:47 -07:00
65d2133f67
Fix typo
2022-08-03 17:16:37 -07:00
69361d0eea
Switch to tested-fasted DNS upstream
2022-08-03 17:16:24 -07:00
705bc55744
Add more DNS servers to PiHole
2022-08-03 13:54:59 -07:00
2e938c32c6
Update prometheus for new router port
2022-08-02 23:27:12 -07:00
70229fd7bc
Update targets, tighten shorten history, reduce payload size
2022-08-01 21:20:42 -07:00
9fa52e8ac6
Add tracert 1.1.1.1 hops to monitoring
2022-08-01 19:35:17 -07:00
0b5a2076b1
Add exporter-ping scrape config
2022-08-01 19:14:49 -07:00
f4353f3921
Init config for exporter-ping
2022-08-01 19:11:59 -07:00
da92d987ff
Init monitoring_exporter-ping
2022-08-01 19:07:26 -07:00
7db59a461e
Fix default DNS resolver
2022-07-20 13:18:53 -07:00
dc33857de8
Enable lan-only for vpn
2022-07-20 12:57:38 -07:00
e93191fc70
Merge branch 'main' of ssh://gitlab.jafner.net:2229/Jafner/homelab
2022-07-20 12:57:15 -07:00
66a69c73ec
Disable broken authentik for wg-easy
2022-07-20 12:57:01 -07:00
8f53664f5b
Update upload.ini
2022-07-20 19:51:28 +00:00
823b61eec4
Update server/config/megan-portfolio/upload.ini, server/config/megan-portfolio/docker-compose.yml
2022-07-20 19:50:14 +00:00
e16c51555f
Update new port mapping
2022-07-17 11:04:04 -07:00
e742746d89
Fix missing network declaration
2022-07-17 11:00:01 -07:00
155b01dcac
Switch to monitoring Traefik via docker network
2022-07-17 10:58:44 -07:00
216bf5c45c
Switch to exporting metrics from pihole via hostname
2022-07-17 10:42:37 -07:00
d9159ca6c8
Add pihole to monitoring network
2022-07-17 10:41:36 -07:00
a13498b44a
#39 Update welcome blurb
2022-07-16 23:49:19 -07:00
c14171fbf3
#39 Add welcome blurb
2022-07-16 23:47:31 -07:00
16d7d5866d
#39 |
...
- Remove NVGM
- Add empty jafner.dev category
2022-07-16 23:45:08 -07:00
00d6e5c7de
Merge branch 'main' of ssh://gitlab.jafner.net:2229/Jafner/homelab into #39
2022-07-16 23:39:06 -07:00
556603e70a
#39 |
...
- Make jafner.net and www.jafner.net point to homer
2022-07-16 23:38:03 -07:00
5129a0f747
Archive landing, portfolio, and nvgm wordpress instances
2022-07-16 23:34:07 -07:00
ec531d364b
Remove subtitle
2022-07-16 23:26:26 -07:00
4f77a14c17
#39 |
...
- Add socials links
- Delete public cloud section
- Move jafner.tools section to bottom
- Remove all admin-only services
2022-07-16 23:26:12 -07:00
f8d30eed45
Fix typo
2022-07-16 16:27:56 -07:00
f5cafa4e76
Fix typo
2022-07-16 16:18:44 -07:00
7b5ba9b090
Fix container name collision
2022-07-16 16:18:27 -07:00
b5366b7705
Fix typo
2022-07-16 16:17:27 -07:00
162517226e
Enable megan-portfolio wordpress
2022-07-16 16:16:55 -07:00
36ae68e371
Switch from fqdn
2022-07-16 16:11:36 -07:00
dc1384cdb8
Add explicit web endpoint
2022-07-16 16:11:03 -07:00
1cf176704a
Update creds
2022-07-16 16:07:27 -07:00
2b65327d78
Fix router collision
2022-07-16 15:59:05 -07:00
d0ba855987
Add second nginx instance
2022-07-16 15:57:32 -07:00
cc6ac683c5
Disable SSL on meganmcdonough.net
2022-07-16 15:45:10 -07:00
f41dd3e810
Appease vscode compose linter
2022-07-16 15:45:01 -07:00
19b3311ff2
Switch from wp to nginx for testing dns routing
2022-07-16 15:20:55 -07:00
8df640e050
Update ddclient config
2022-07-16 15:20:37 -07:00
620f936574
Add meganmcdonough.art to ddconf
2022-07-16 15:14:21 -07:00
bead8eb1f2
Create nginx test for test.jafner.dev
2022-07-16 00:46:39 -07:00
4e8b05d583
Enable use=web
2022-07-16 00:43:36 -07:00
d2ddf743c6
Merge branch 'main' of ssh://gitlab.jafner.net:2229/Jafner/homelab
2022-07-16 00:39:38 -07:00
5bce86f18e
Delete old ddns
2022-07-16 00:38:59 -07:00
509c89165c
Update ddns
2022-07-16 00:38:12 -07:00
a558a96f63
Init megan-portfolio
2022-07-16 00:21:10 -07:00
667f3df7b4
Refactor DDNS to support Google domains (via ddclient)
2022-07-16 00:18:54 -07:00
2b5995ecf1
Update Uptime Kuma and Pihole
2022-07-15 19:24:47 -07:00
b869e743ae
#38 Remove uptime kuma from prometheus scraper
2022-07-15 19:14:03 -07:00
45c52fda57
#38 Reorganize Archive and archive Uptime-kuma
2022-07-15 19:10:16 -07:00
71f4b72a01
Switch Traefik scrape target to LAN IP
2022-07-15 19:06:56 -07:00
d04f2252af
#37 Switch to LAN IP for scrape IP
2022-07-15 18:49:26 -07:00
1cc818d3fd
Update and clean up prometheus.yml
2022-07-15 18:27:29 -07:00
7c3db367a1
Reset Prometheus to 1000:1000
2022-07-15 18:16:54 -07:00
67f205e9c5
Prometheus use default user
2022-07-15 18:10:29 -07:00
98d34118d2
Standardize exporter container naming
2022-07-15 18:09:25 -07:00
49e41fe89e
Disable Traefik access logging
2022-07-15 12:11:11 -07:00
7dafac87cf
Disable the lan-only@file middleware for autopirate stack
2022-07-15 11:15:07 -07:00
650ba74622
Remove authentik@file middleware from services
2022-07-15 10:56:20 -07:00
cb69083c43
Remove authentik@file middleware from services
2022-07-15 10:56:02 -07:00
e9ce87c684
Merge branch 'main' of ssh://gitlab.jafner.net:2229/Jafner/homelab
2022-07-15 10:52:00 -07:00
5741b8c33e
Rename homepage_homer to homer_homer
2022-07-15 10:51:32 -07:00
29deb0af4b
Remove Authentik from autopirate stack
2022-07-15 10:50:59 -07:00
f5e1a9860e
Run loki as 1000:1000
2022-07-15 00:02:56 -07:00
e1a4b1edcf
Add access logging to Traefik
2022-07-14 23:46:34 -07:00
582df413f9
Add keep-file: true to loki driver
2022-07-14 15:22:44 -07:00
e0de2b4963
Remove root from loki
2022-07-14 14:28:38 -07:00
d199ebe1f7
Change path_prefix to loki-logs
2022-07-14 14:28:03 -07:00
a48762a0f7
Update Cloudflare DDNS key
2022-07-14 14:19:01 -07:00
fe2ce31c47
Switch to using common block to define chunks and rules directories
2022-07-14 14:14:21 -07:00
e28bbcc674
Uncomment common config
2022-07-14 14:10:49 -07:00
ac36fb2b3e
Explicitly elevate to root
2022-07-14 14:10:08 -07:00
fb81db3336
Disable volume map
2022-07-14 14:07:50 -07:00
851cb52aac
Try again
2022-07-14 13:59:43 -07:00
b0b4a65e36
Switch to local_storage_config with /loki-logs
2022-07-14 13:56:26 -07:00
b501fcf020
Remove loki storage binding
2022-07-14 13:47:56 -07:00
45fd10df15
Persist loki log storage
2022-07-14 13:44:43 -07:00
2060584229
Update pihole exporter config
2022-07-14 00:07:54 -07:00
c6498076f5
Set empty password
2022-07-14 00:02:58 -07:00
8c0067071b
Add pihole-specific env vars
2022-07-13 23:25:35 -07:00
af7ed80074
Automatically append /admin to requests to the route
2022-07-13 23:06:45 -07:00
e7f6581ced
Elevate pihole container runner
2022-07-13 22:58:08 -07:00
958dfbee15
Add missing image
2022-07-13 22:55:31 -07:00
74de951750
Init PiHole
2022-07-13 22:54:57 -07:00
af4e88f4c1
Fix typo
2022-07-13 22:52:52 -07:00
e004dde635
Fix typo
2022-07-13 19:52:06 -07:00
c270a43597
Reset Qbt, autopirate to stable
...
Use jdl as guinnea pig
2022-07-13 19:49:54 -07:00
d381db8053
Switch to authentik-auth@file service
2022-07-13 19:46:31 -07:00
c3ba396caa
Protect autopirate suite with lan-only until authentik is worked out
2022-07-13 19:06:02 -07:00
eebc4b088c
Correct missing rule
2022-07-13 19:03:08 -07:00
00885797b3
Add Authentik to all autopirate stack
2022-07-13 16:29:41 -07:00
446d617071
Remove lan-only middleware from Sonarr
2022-07-13 16:20:19 -07:00
088353315a
Accidentally added Radarr to authentik, not Sonarr.
...
Fix that
2022-07-13 16:18:27 -07:00
33f7fcb2bb
Add Sonarr to Authentik
2022-07-13 16:16:31 -07:00
181dfa89c6
Update SSO documentation
2022-07-13 16:16:20 -07:00
07e506a1dd
Fix typo
2022-07-13 13:53:13 -07:00
241d798f9e
#31 Update basic webapp template with new logging instrumentation
2022-07-13 13:40:48 -07:00
54124da9d1
#31 Add Loki logging for all "main" apps
...
Also converted a few old composes from 4-space indentation to 2-space
Ignores supporting containers like postgres, redis, etc.
2022-07-13 13:35:56 -07:00
0e657d231f
Remove redundant labels
2022-07-13 13:12:30 -07:00
a68fd68f41
Rename loki-labels to just labels
2022-07-13 13:11:34 -07:00
97015ca9b5
Add loki-labels as string
2022-07-13 13:11:04 -07:00
ea307ce4af
Add loki-timeout as string
2022-07-13 13:10:49 -07:00
8a852bc438
Switch loki-retries to string
2022-07-13 13:10:29 -07:00
a61796c7c8
Add loki-retries
2022-07-13 13:10:13 -07:00
5ea87a5d1f
Switch loki-batch-size to string
2022-07-13 13:09:52 -07:00
d7a18cec66
Add loki-batch-size
2022-07-13 13:09:31 -07:00
6109a20277
Isolate loki-url
2022-07-13 13:09:09 -07:00
0e2b6bf3d9
Confirm logging block is responsible for errors
2022-07-13 13:08:42 -07:00
9c2d96b253
Fix typo
2022-07-13 13:08:02 -07:00
77bde24457
Fix typo
2022-07-13 13:07:22 -07:00
7c836b4849
Fix typo
2022-07-13 13:06:22 -07:00
072286d261
Test wg-easy loki logging
2022-07-13 13:00:28 -07:00
9ed2c76fc8
Add log_tags link
2022-07-13 12:51:57 -07:00
3cc35fa4d8
Add docker logging docs
2022-07-13 12:50:39 -07:00
af1e3a3571
Update Loki docs
2022-07-13 12:14:38 -07:00
df054da499
Disable auto-start for all containers. (Set all restart: "no")
2022-07-13 10:47:27 -07:00
600b28b859
Add to Authentik documentation
2022-07-13 00:27:02 -07:00
98f97bb316
Implement second gitlab runner
2022-07-12 17:02:18 -07:00
4b2fc18d8e
Switch to master branch
2022-07-12 16:47:44 -07:00
a2f0496399
Switch to nodb branch
2022-07-12 15:47:26 -07:00
24041a4476
Archive xbackbone
2022-07-12 10:30:56 -07:00
4c94bed815
See previous commit
2022-07-12 01:22:16 -07:00
24cb55cba9
Re-enable persistent volume
2022-07-12 01:20:22 -07:00
89ab3610f2
Switch dev to new image
2022-07-12 01:19:14 -07:00
05d0af4d42
services -> service
2022-07-12 01:04:31 -07:00
664322d274
Fix field services to service
2022-07-12 01:02:46 -07:00
1dcb89211c
Init auth to qbt
2022-07-12 01:01:15 -07:00
4b458ebc5c
Disable config persistence
2022-07-12 00:03:44 -07:00
0b518aa983
Test security headers
2022-07-11 21:44:37 -07:00
a7c8ebd55d
Add X-Scheme: https to security headers
2022-07-11 21:44:01 -07:00
e909f1bfe4
Try again
2022-07-11 14:07:10 -07:00
9ad6a71ad6
Switch to customResponseHeaders
2022-07-11 14:03:34 -07:00
0b9c2537e2
Switch to customerRequestHeaders
2022-07-11 14:02:19 -07:00
2c6478611a
Fix dev not being on network
2022-07-11 14:01:31 -07:00
1555fdf261
Restore securityheaders
...
Single-variable testSchemeHeaders
2022-07-11 13:15:57 -07:00
4c941d35a6
Remove test headers
2022-07-11 12:36:43 -07:00
35fddb4879
Delete testSchemeHeaders, instead update securityHeaders
2022-07-11 12:36:26 -07:00
45a461849c
Add custom request headers
2022-07-11 11:25:14 -07:00
1ef7a1f9be
Fix for:
...
time="2022-07-11T18:01:05Z" level=error msg="Unable to obtain ACME certificate for domains \"loki-monitoring\": unable to generate a certificate for the domains [loki-monitoring]: acme: error: 400 :: POST :: https://acme-v02.api.letsencrypt.org/acme/new-order :: urn:ietf:params:acme:error:rejectedIdentifier :: Error creating new order :: Cannot issue for \"loki-monitoring\": Domain name needs at least one dot" ACME CA="https://acme-v02.api.letsencrypt.org/directory " routerName=prometheus@docker rule="Host(`loki-monitoring`)" providerName=lets-encrypt.acme
2022-07-11 11:02:21 -07:00
f3268d41de
Add testSchemeHeaders for passing X-Scheme: https
2022-07-11 11:00:37 -07:00
0a40c254a4
Switch to correct-er image
2022-07-11 10:51:28 -07:00
9a01809c79
Switch to correct image
2022-07-11 10:50:11 -07:00
848cbfa5ef
Update calibre-web dev to new image
2022-07-10 23:04:17 -07:00
9c4bc96342
Disable authentik middleware for dev.calibre-web
2022-07-10 16:36:31 -07:00
94c898ae6e
Add authentik to prometheus
2022-07-10 16:04:10 -07:00
bed490e6c2
Fix overlapping router name
2022-07-10 16:01:15 -07:00
33a8045f3a
Increase max file size to 40GB
2022-07-09 23:43:57 -07:00
61f9c9d54f
Set explicit file size
2022-07-09 23:40:56 -07:00
0730545d41
Update plex token
2022-07-09 01:09:48 -07:00
b0cd68e05b
Remove dead prometheus jobs
2022-07-09 01:05:37 -07:00
f9bce31c2a
Fix typo
2022-07-09 00:46:28 -07:00
5fc635cbb5
Traefik cleanup and switch to yaml
2022-07-09 00:44:40 -07:00
53e06baaad
Add Authentik to Traefik
2022-07-09 00:09:56 -07:00
f6ebc9f03f
Add Omniauth config for Authentik
2022-07-09 00:01:18 -07:00
50c96641c6
Update docs
2022-07-09 00:00:22 -07:00
9b87035d2f
Enable automatic oauth
2022-07-08 23:37:07 -07:00
7061652edd
Remove role mapping
2022-07-08 23:33:41 -07:00
93356aabe5
Init grafana OAuth2 with Authentik
...
Per Authentik: https://goauthentik.io/integrations/services/grafana/
And Grafana: https://grafana.com/docs/grafana/latest/setup-grafana/configure-security/configure-authentication/generic-oauth/
2022-07-08 23:31:04 -07:00
65a4590108
Init partial OAuth provisioning docs
2022-07-08 23:30:26 -07:00
b0fbe10ab0
Fix navidrome container name
2022-07-08 23:03:33 -07:00
ec40c3f7d4
Add Authentik simple services:
...
- jdownloader2
- librespeed
- navidrome
- stashapp
- uptime-kuma
- wg-easy
2022-07-08 22:57:08 -07:00
04a5a280ee
Delete testing nginx stack
2022-07-08 22:55:39 -07:00
7b86a276b5
Add Authentik to simple service: homer
2022-07-08 22:23:26 -07:00
d34419ac92
Add Authentik to simple service: send
2022-07-08 22:21:51 -07:00
81ba152c80
Documentation update
2022-07-08 12:48:34 -07:00
0171f2b6af
Refactor volume management
2022-07-08 12:47:43 -07:00
a1e21f674e
Fix path
2022-07-08 11:12:20 -07:00
7cffa6513a
Fix indentation
2022-07-08 11:11:46 -07:00
ee6ff79b8d
Update docs
2022-07-08 11:10:33 -07:00
a4b9200a37
Remove dangling promtail-config
2022-07-08 10:48:57 -07:00
ab31af5e33
Remove superfluous promtail
2022-07-08 10:48:36 -07:00
cd3be3c088
Remove entry_parser
2022-07-08 01:32:31 -07:00
9ffd267145
Fix indentation
2022-07-08 01:31:00 -07:00
1e0a1fee1c
Disable other jobs
2022-07-08 01:28:15 -07:00
5496ea400c
Implement ruanbekker's job
2022-07-08 01:27:27 -07:00
83b84fd0cd
Add docker_sd job
2022-07-08 01:18:17 -07:00
6eaf80cb44
Switch back to TechnoTim's log scraping method
2022-07-08 01:09:35 -07:00
1dfdbde52b
Run loki as default user
2022-07-08 01:01:24 -07:00
d1df32e63c
Run promtail as default user
2022-07-08 00:56:51 -07:00
c4278e32d5
Fix typo
2022-07-08 00:56:21 -07:00
2e947e075c
Disable :ro due to permissions errors
2022-07-08 00:55:53 -07:00
549927b387
- Switch back to 1000:1000
...
- Mount docker socket read-only
- Use docker service discovery
2022-07-08 00:54:24 -07:00
852edc1ace
Test with 0:0
2022-07-08 00:35:34 -07:00
d646d61ee0
Fix typo
2022-07-08 00:32:53 -07:00
11c34a70e7
make container volume map explicitly read-only
2022-07-08 00:30:44 -07:00
0d1c273a16
Map /var/lib/docker/containers to promtail
2022-07-08 00:21:58 -07:00
45af08b682
Fix promtail config indentation
2022-07-07 23:32:56 -07:00
0e90367495
Fix job indentation
2022-07-07 23:30:13 -07:00
dbc04d9a74
Switch from machine logs to docker logs
2022-07-07 23:25:09 -07:00
7c0d6e1354
Fix typo
2022-07-07 23:20:02 -07:00
81c2eafdf1
Clarify new daemon.json
2022-07-07 23:16:52 -07:00
0d503e917c
Init loki & promtail
2022-07-07 23:12:57 -07:00
5641035a6a
Add dev calibre-web container for oauth image
2022-07-07 21:07:02 -07:00
dc14b2bbfa
Explicitly configure service for gitlab router
2022-07-07 12:48:18 -07:00
687dd783a8
Update gitlab config per https://gitlab.com/gitlab-org/omnibus-gitlab/-/issues/5560
2022-07-07 12:43:18 -07:00
65e89ce32b
Update gitlab config and docs
2022-07-07 12:31:22 -07:00
c68ecbc26f
Update Homer
2022-07-07 09:30:20 -07:00
518213c0bd
Disable TLS for SSL
2022-07-06 19:46:43 -07:00
af12cba701
Remove adminer
2022-07-06 18:28:51 -07:00
03bb25a4eb
Add authentik to calibre-rpg
2022-07-06 18:25:58 -07:00
d744ceeb69
Undo and switch to using authentik-server
2022-07-06 18:14:37 -07:00
c7a8ebe175
Set authentik hostname
2022-07-06 18:12:38 -07:00
67adc6ce83
Fix typo
2022-07-06 18:04:28 -07:00
bec7d5b6d5
Fix typo
2022-07-06 18:03:36 -07:00
8ccdb21bcd
Flesh out nginx stack
2022-07-06 18:02:51 -07:00
f2e754da1d
Disable authentik on calibre-web
2022-07-06 17:57:20 -07:00
597bfe6b14
Init test nginx
2022-07-06 17:56:52 -07:00
f79ab99b37
Fix missing property
2022-07-06 17:50:03 -07:00
6f93917d16
Switch middleware name from security-headers to securityheaders
2022-07-06 17:46:52 -07:00
e7bd691717
Fix typos
2022-07-06 17:40:41 -07:00
816b2d80cb
Add new security headers to calibre-web-rpg and Authentik
2022-07-06 17:36:51 -07:00
9d2006067f
Cleanup
2022-07-06 17:35:12 -07:00
01dca31730
Switch Traefik dynamic config files from toml to yaml
2022-07-06 17:34:52 -07:00
b7826004b7
Make explicit authentik@file middleware
2022-07-06 15:11:32 -07:00
106db702dd
Enable authentik middleware for calibre-web-rpg
2022-07-06 15:09:54 -07:00
cf977e104b
Move authentik middleware definition to authentik.yaml traefik dynamic config
2022-07-06 15:08:19 -07:00