2023-01-08 20:19:13 +00:00
|
|
|
# Homeservers
|
|
|
|
|
|
|
|
This repository contains Ansible scripts to setup our home servers.
|
|
|
|
The `common` role executes some common OS tasks.
|
|
|
|
The `docker` role installs Docker.
|
|
|
|
The other roles are specifically for the various services we run.
|
|
|
|
|
|
|
|
## Running services
|
|
|
|
|
2023-01-17 20:20:21 +00:00
|
|
|
All services below are running under Docker, except NSD and Borg.
|
2023-01-08 20:19:13 +00:00
|
|
|
|
|
|
|
- Authoritative DNS using [NSD](https://www.nlnetlabs.nl/projects/nsd/about/) (ns.pizzapim.nl)
|
|
|
|
- Reverse proxy using [Traefik](https://doc.traefik.io/traefik/)
|
|
|
|
- Git server using [Forgejo](https://forgejo.org/) ([git.pizzapim.nl](https://git.pizzapim.nl))
|
2023-01-26 07:20:38 +00:00
|
|
|
- Static website using [Jekyll](https://jekyllrb.com/) ([pizzapim.nl](https://pizzapim.nl))
|
2023-01-08 20:19:13 +00:00
|
|
|
- File sychronisation using [Syncthing](https://syncthing.net/)
|
|
|
|
- Microblogging server using [Mastodon](https://joinmastodon.org/) ([social.pizzapim.nl](https://social.pizzapim.nl))
|
|
|
|
- Calendar and contact synchronisation using [Radicale](https://radicale.org/v3.html) ([dav.pizzapim.nl](https://dav.pizzapim.nl))
|
|
|
|
- KMS server using [vlmcsd](https://github.com/Wind4/vlmcsd)
|
2023-01-17 20:19:35 +00:00
|
|
|
- Cloud file storage using [Seafile](https://www.seafile.com)
|
2023-01-11 00:04:13 +00:00
|
|
|
- Backups using [Borg](https://www.borgbackup.org/) and [Borgmatic](https://torsion.org/borgmatic/)
|
2023-01-18 23:14:10 +00:00
|
|
|
- RSS feed reader using [FreshRSS](https://miniflux.app/)
|
2023-01-08 20:19:13 +00:00
|
|
|
|
|
|
|
## Possible future services
|
|
|
|
|
|
|
|
- matrix
|
|
|
|
- peertube?
|
2023-01-19 21:41:43 +00:00
|
|
|
- Pixelfed?
|
2023-01-22 22:34:37 +00:00
|
|
|
- Prometheus
|
2023-01-26 07:20:38 +00:00
|
|
|
- Concourse CI?
|
2023-01-08 20:19:13 +00:00
|
|
|
|
2022-12-14 20:35:59 +00:00
|
|
|
## TODO
|
2023-01-06 21:49:07 +00:00
|
|
|
|
2023-01-26 07:20:38 +00:00
|
|
|
- Clear view of what services + which versions we are running. This way, we can track security updates better.
|
2023-01-31 08:51:50 +00:00
|
|
|
- Delegate pim.kunis.nl to my server
|
|
|
|
- Host tobb website?
|
|
|
|
- Move from Ubuntu to Debian
|
2023-01-11 19:49:05 +00:00
|
|
|
|
2023-01-07 20:51:28 +00:00
|
|
|
### NSD
|
2022-12-14 20:35:59 +00:00
|
|
|
|
2023-01-08 20:19:13 +00:00
|
|
|
#### ZSK Rollover
|
2022-12-14 20:35:59 +00:00
|
|
|
|
2023-01-08 20:19:13 +00:00
|
|
|
Could make automatic key rollovers with cron or some other tool.
|
|
|
|
|
|
|
|
#### Idempotency
|
2022-12-20 16:02:09 +00:00
|
|
|
|
2023-01-08 20:19:13 +00:00
|
|
|
Currently I always resign zones.
|
|
|
|
But for idempotency I should probably only do it if the zone has changed or the keys have changed.
|
2022-12-20 16:02:09 +00:00
|
|
|
|
2023-01-08 20:19:13 +00:00
|
|
|
### Firewall
|
2023-01-02 16:18:29 +00:00
|
|
|
|
2023-01-09 22:31:43 +00:00
|
|
|
A little more difficult because of docker networking but probably doable.
|