This repository has been archived on 2023-04-26. You can view files and clone it, but cannot push or open issues or pull requests.
max/README.md

2 KiB

Homeservers

This repository contains Ansible scripts to setup our home servers. The common role executes some common OS tasks. The docker role installs Docker. The other roles are specifically for the various services we run.

Running services

All services below are running under Docker, except NSD because I couldn't figure out how to enable IPv6 for it.

Possible future services

  • matrix
  • peertube?
  • jitsi

TODO

  • Forward to https not working correctly yet.
  • Fix known hosts between max and lewis

NSD

ZSK Rollover

Could make automatic key rollovers with cron or some other tool.

Idempotency

Currently I always resign zones. But for idempotency I should probably only do it if the zone has changed or the keys have changed.

Firewall

A little more difficult because of docker networking but probably doable.

Backup server

Given that I am now backing up my data to another server using Borg, it makes sense to include that server into IaC as well. Should be pretty straight forward:

  • Install Borg and Borgmatic
  • Initialize the Borg repository if it doesn't exist yet.
  • Add the homeserver's public key to authorized keys.