Râu Cao
756382ec9f
Move block data files to CIFS share
...
This is the vast majority of disk space used on the host currently.
2022-10-26 15:49:03 +02:00
Râu Cao
458558fb26
Deploy different content on kosmos.org for now
2022-10-24 15:13:18 +02:00
Râu Cao
67f6e1b34a
Downgrade go-ipfs to 0.15
...
Fixes #435
2022-10-24 14:18:19 +02:00
Râu Cao
58e6e7de03
Remove ufw logs
...
Just added them to check the blocking for a while
2022-10-22 13:03:16 +02:00
Râu Cao
1afc3a5de5
Block outgoing traffic to local networks by default
...
Some software, e.g. go-ipfs, is rather aggressive in scanning local
networks for peers, which can trigger abuse reports and IP locks in the
data center.
2022-10-21 13:37:38 +02:00
Râu Cao
61710aa4a4
Set up systemd service and timer for backups
2022-10-21 10:50:04 +02:00
Râu Cao
95941c830f
Remove verbose stats outout from backup script
2022-10-21 10:49:30 +02:00
Râu Cao
a5b2eb5f97
Move borg credentials to a separate file
...
To be used from a service
2022-10-21 10:49:02 +02:00
Râu Cao
34a57fa298
Merge branch 'lnd_tor_changes' into feature/qemu_snapshots
2022-10-19 15:23:39 +02:00
Râu Cao
6d765f959d
Fix backup VM name for ldap-3
...
(and potentially other guests where the name differs from the libvirt
domain name)
2022-10-19 12:51:46 +02:00
Râu Cao
82f50b0caa
Only back up domain-specific XML per archive
2022-10-19 12:24:10 +02:00
Râu Cao
6c8f9055c1
Create directories for KVM host backup files
2022-10-19 12:23:54 +02:00
Râu Cao
2e2ebbcc02
Fix filenames for guest agent sockets
2022-10-19 12:23:17 +02:00
Râu Cao
a3844b7ef6
WIP Add KVM host backup recipe
...
Add a recipe that configures scripts for live backups of VM images via
libvirt and borg.
2022-10-19 12:08:05 +02:00
Râu Cao
6d50a32aca
Add FIXME note
2022-10-19 12:08:05 +02:00
Râu Cao
895d293899
Update RSKj version
2022-10-18 18:46:53 +02:00
Râu Cao
315cd247e5
Enable qemu-guest-agent after install
...
This is actually automatically done for the service from the apt
package, but I like specifying it explicitly as well.
2022-10-12 15:55:08 +02:00
Râu Cao
e73b8fb01f
Add guest agent device when creating VMs
...
This is necessary for qemu-guest-agent to actually work
2022-10-12 15:53:00 +02:00
Greg Karékinian
378fee85ec
Create a discourse cookbook that can be wrapped
...
It makes it possible to serve multiple Discord instances to different
hosts from a single nginx load balancer
Right now we run one for Kosmos and one for remoteStorage
2022-10-11 17:58:22 +02:00
Râu Cao
e90b265f7e
Remove superfluous license headers
2022-10-10 15:29:17 +02:00
Râu Cao
bec54e6ffb
Upgrade LND, bitcoind
...
LND needs an emergency hotfix, released in 0.15.2, due to a subtle
Taproot transaction parsing limitation in a library it depends on.
2022-10-10 13:46:12 +02:00
Râu Cao
ff907384d9
Upgrade Gitea to 1.17.2
2022-09-21 11:32:20 +02:00
Greg Karékinian
85abfd4e5e
Create the required groups and ACIs
2022-08-22 16:15:02 +02:00
Râu Cao
f17a420a64
Update VM base image
2022-08-22 13:40:07 +01:00
607466b1d2
Merge pull request 'Add KVM Guest role' ( #409 ) from feature/kvm_guest_role into master
...
Reviewed-on: #409
2022-08-22 11:46:43 +00:00
Râu Cao
65adc84e5b
Upgrade Gitea to 1.17.0
...
Also adds a new Nginx directive to allow larger uploads to the Docker
registry endpoints.
closes #422
2022-08-09 11:58:56 +02:00
Râu Cao
37b948cbe5
Remove custom cron job
...
refs #395
2022-08-08 12:57:30 +02:00
Râu Cao
08b7c7a5ac
Enable cron job to delete repo archives
...
closes #395
2022-08-08 12:51:26 +02:00
8d332e76f3
Upgrade Gitea to 1.16.9
2022-07-16 16:42:19 +02:00
562da400e3
Update root path for kosmos website
2022-07-11 13:31:31 +02:00
a1db277f2f
Merge branch 'master' into bugfix/vm_base_images
2022-06-11 09:20:09 +00:00
52d7fe52e5
Fix VM base images being overwritten
...
The base image is used as backing image for the VM images, so
overwriting it results in corrupt data after VM reboots.
2022-06-11 11:17:42 +02:00
a85415ef48
Fix MUC service/domains not being announced
...
Only subdomains of `hosts` are automatically announced, but other
domains have to be added manually via the `extra_domains` disco module
config.
fixes #413
2022-06-03 18:07:50 +02:00
48cdd62973
Upgrade ejabberd to 22.05
...
Tested/running on all cluster nodes. Due to changes in the upstream
package we were able to remove some complexity from the recipe. Deleting
code FTW!
closes #334
2022-05-31 16:27:07 +02:00
a1e2c21bcb
Fix abuse address info in XMPP service discovery
...
It wasn't replacing the @HOST@ placeholder with the actual vhost domain.
2022-05-31 11:32:55 +02:00
a93c5e5af6
Allow external HTTP requests to BTCPay
...
Limited to private network via firewall rule.
2022-05-24 15:10:24 +02:00
92d1bcd8c7
Add nginx proxy for akkounts/kredits API
...
closes #410
2022-05-24 15:03:51 +02:00
7a52f2bd89
Allow BTCPay API access over private network
2022-05-24 13:08:41 +02:00
a0b64a709d
Add KVM Guest role
...
Only installs qemu-guest-agent for now, for improving live VM backups.
2022-05-23 12:41:55 +02:00
48c3fef1a1
Remove TLS config for ejabberd LDAP
2022-05-11 16:27:21 +02:00
decd937d43
Remove superfluous license header
2022-05-11 16:27:21 +02:00
e89e0b3122
Fix letsencrypt bootstrap for ejabberd
2022-05-11 16:27:21 +02:00
b3f1a74cc2
Remove obsolete ejabberd backups
2022-05-11 16:27:21 +02:00
Greg Karékinian
a14cd9a74f
New config for LDAP in Discourse
2022-05-11 16:23:18 +02:00
Greg Karékinian
0d133de1b8
New config and credentials for LDAP connection in mediawiki
2022-05-11 16:23:17 +02:00
5c31531357
Merge pull request 'Configure STUN/TURN for ejabberd and nginx proxy' ( #407 ) from feature/ejabberd_stun_n_turn into new_ldap_server
...
Reviewed-on: #407
2022-05-11 14:21:14 +00:00
Greg Karékinian
5c00e2d28a
Add an attribute containing the LDAP server's address
2022-05-11 15:37:36 +02:00
c158f845f0
Configure STUN/TURN for ejabberd and nginx proxy
2022-05-11 15:27:49 +02:00
Greg Karékinian
c56870008e
Use the new LDAP services application accounts
2022-05-11 14:49:28 +02:00
Greg Karékinian
e53e55cb2d
Disable TLS for LDAP since we're using Zerotier networking
2022-05-11 14:49:00 +02:00
