# Host spezifische Variablen
motd_lines:
- "Warpzone Vorstand"
- "Öffentliche IPs: {{ansible_ens18.ipv4.address}} / {{ansible_ens18.ipv6[0].address}}"
debian_sources:
- "deb http://ftp2.de.debian.org/debian/ bookworm main contrib non-free"
- "deb http://ftp.debian.org/debian bookworm-updates main contrib non-free"
- "deb http://security.debian.org/ bookworm-security main contrib non-free"
- "deb https://download.docker.com/linux/debian bookworm stable"
debian_keys_id:
debian_keys_url:
- "https://download.docker.com/linux/debian/gpg"
# Primäre IP Adressen des Hosts
ext_ip4: 195.201.179.60
ext_ip6: 2a01:4f8:231:8a1:195:201:179:60
int_ip4: 10.42.2.1
# Art des Hosts: physical, vm, docker
host_type: "vm"
# SSL aktivieren
webserver_ssl: true
# Liste der gehosteten Domänen
webserver_domains:
- "verwaltung.warpzone.ms"
- "verwaltung-git.warpzone.ms"
- "verwaltung-jameica.warpzone.ms"
#OpenVPN Konfigurationen
openvpn_server:
- "server-zone"
openvpn_clients:
- "client-webs"
administratorenteam:
- "void"
- "jabertwo"
vorstandteam:
- "void"
- "larsm"
- "jabertwo"
- "3d"
# Docker konfigurationen
docker:
# Interne Docker-Netzwerke
internal_networks:
- web
# Monitoring aktivieren
alert:
load:
warn: 5
crit: 10
containers:
- { name: "dockerstats_app_1" }
- { name: "gitea_app_1" }
- { name: "gitea_db_1" }
- { name: "jameica-vnc_ldap_auth_1" }
- { name: "jameica-vnc_nginx_1" }
- { name: "jameica-vnc_vnc_1" }
- { name: "mysql_app_1" }
- { name: "nextcloud_app_1" }
- { name: "nextcloud_mysql_1" }
- { name: "nextcloud_redis_1" }
- { name: "nextcloud_webcron_1" }
- { name: "traefik_app_1" }
disks:
- { mountpoint: "/", warn: "5 GB", crit: "1 GB" }
- { mountpoint: "/srv", warn: "5 GB", crit: "1 GB" }
# Definition von Borgbackup Repositories
borgbackup_repos:
# warpsrvint:
# # URL des Repos
# repo: "ssh://warpzone@192.168.0.201:22/data/warpzone/verwaltung"
# # Repo-spezifische Optionen zum Aufruf von Borgbackup
# # z.B. bei Sicherungen zu rsync.net ist --remote-path=borg1 erforderlich
# options: ""
# # Compression Options, z,b. "zlib,5, "zstd,5"
# compression: "zlib,5"
# # Prune Optionen
# prune: "--keep-within=2d --keep-daily=7 --keep-weekly=4 --keep-monthly=6"
# # Backup Schedule
# weekday: "*"
# hour: "10"
# minute: "30"
# # Zusätzliche Verzeichnisse, die nur in diesem Backup gesichtert werden sollen
# # directories:
# # Monitoring
# alert: true
# warning_age: 26
# critical_age: 50
# warning_count: 10
# critical_count: 5
borgbase:
# URL des Repos
repo: "w36y2q6h@w36y2q6h.repo.borgbase.com:repo"
# Repo-spezifische Optionen zum Aufruf von Borgbackup
# z.B. bei Sicherungen zu rsync.net ist --remote-path=borg1 erforderlich
options: ""
# Compression Options, z,b. "zlib,5, "zstd,5"
compression: "zlib,5"
# Prune Optionen
prune: "--keep-within=2d --keep-daily=7 --keep-weekly=4 --keep-monthly=6"
# Backup Schedule
weekday: "*"
hour: "8"
minute: "40"
# Zusätzliche Verzeichnisse, die nur in diesem Backup gesichtert werden sollen
# directories:
# Monitoring
alert: true
warning_age: 26
critical_age: 50
warning_count: 10
critical_count: 5
# Definition der Verzeichnisse, die in allen Borgbackup Repos gesichert werden sollen
borgbackup_directories:
- "/etc/"
- "/srv/"