166 lines
2.7 KiB
YAML
166 lines
2.7 KiB
YAML
---
|
|
- hosts: all
|
|
become: true
|
|
roles:
|
|
- common
|
|
- role: network
|
|
tags:
|
|
- network
|
|
- netplan
|
|
- util
|
|
- sudo
|
|
- hostsfile
|
|
- certs
|
|
- role: rsyslog
|
|
tags:
|
|
- rsyslog
|
|
- syslog
|
|
- logging
|
|
- users
|
|
- dns
|
|
- role: firewall
|
|
tags:
|
|
- firewall
|
|
- iptables
|
|
- openssh
|
|
- role: wireguard
|
|
tags:
|
|
- wireguard
|
|
- vpn
|
|
- chrony
|
|
- unattended-upgrades
|
|
- postfix
|
|
- restic
|
|
- role: node_exporter
|
|
tags:
|
|
- prometheus
|
|
- monitoring
|
|
- role: blackbox_exporter
|
|
tags:
|
|
- prometheus
|
|
- monitoring
|
|
- role: mtail
|
|
tags:
|
|
- prometheus
|
|
- monitoring
|
|
- supervisor
|
|
# - vector
|
|
- role: promtail
|
|
tags:
|
|
- promtail
|
|
- loki
|
|
- logging
|
|
- role: cloudflared
|
|
tags:
|
|
- cloudflared
|
|
- zerotrust
|
|
- access
|
|
- vpn
|
|
- hosts: minecraft_servers
|
|
become: true
|
|
roles:
|
|
- minecraft
|
|
- hosts: jump_servers
|
|
become: true
|
|
roles:
|
|
- go
|
|
- dl
|
|
- hosts: git_servers
|
|
become: true
|
|
roles:
|
|
- role: certbot
|
|
tags:
|
|
- tls
|
|
- role: nginx
|
|
tags:
|
|
- nginx
|
|
- role: gitea
|
|
tags:
|
|
- gitea
|
|
- git
|
|
- hosts: stats_servers
|
|
become: true
|
|
roles:
|
|
- role: certbot
|
|
tags:
|
|
- tls
|
|
- role: nginx
|
|
tags:
|
|
- nginx
|
|
- role: grafana
|
|
tags:
|
|
- grafana
|
|
- monitoring
|
|
- o11y
|
|
- hosts: monitor_servers
|
|
become: true
|
|
roles:
|
|
- certbot
|
|
- role: nginx
|
|
tags:
|
|
- nginx
|
|
- role: prometheus
|
|
tags:
|
|
- prometheus
|
|
- monitoring
|
|
- role: alertmanager
|
|
tags:
|
|
- prometheus
|
|
- monitoring
|
|
- role: blackbox_exporter
|
|
tags:
|
|
- prometheus
|
|
- monitoring
|
|
- role: pushgateway
|
|
tags:
|
|
- prometheus
|
|
- monitoring
|
|
- role: karma
|
|
tags:
|
|
- prometheus
|
|
- monitoring
|
|
- role: kthxbye
|
|
tags:
|
|
- prometheus
|
|
- monitoring
|
|
- role: thanos
|
|
tags:
|
|
- prometheus
|
|
- thanos
|
|
- monitoring
|
|
- role: loki
|
|
tags:
|
|
- loki
|
|
- logging
|
|
- role: logcli
|
|
tags:
|
|
- logcli
|
|
- loki
|
|
- logging
|
|
- role: smokeping_prober
|
|
tags:
|
|
- prometheus
|
|
- monitoring
|
|
- smokeping
|
|
- role: mimir
|
|
tags:
|
|
- prometheus
|
|
- mimir
|
|
- monitoring
|
|
- role: snmp_exporter
|
|
tags:
|
|
- prometheus
|
|
- snmp_exporter
|
|
- monitoring
|
|
- role: lego
|
|
tags:
|
|
- acme
|
|
- certificates
|
|
- lego
|
|
- letsencrypt
|
|
- pki
|
|
- tls
|
|
|
|
|
|
# vim:ft=yaml.ansible:
|