No description
This repository has been archived on 2023-04-26. You can view files and clone it, but cannot push or open issues or pull requests.
Find a file
2023-01-10 23:55:25 +01:00
inventory change some namings 2023-01-07 20:40:23 +01:00
playbooks add borg backup test 2023-01-10 23:55:25 +01:00
roles add borg backup test 2023-01-10 23:55:25 +01:00
ansible.cfg clean up ansible script 2022-11-30 22:34:14 +01:00
LICENSE Create LICENSE 2022-11-13 14:52:43 +01:00
Makefile add borg backup test 2023-01-10 23:55:25 +01:00
README.md fix container names 2023-01-09 23:58:40 +01:00

Homeservers

This repository contains Ansible scripts to setup our home servers. The common role executes some common OS tasks. The docker role installs Docker. The other roles are specifically for the various services we run.

Running services

All services below are running under Docker, except NSD because I couldn't figure out how to enable IPv6 for it.

Possible future services

  • matrix
  • peertube?
  • jitsi

TODO

NSD

ZSK Rollover

Could make automatic key rollovers with cron or some other tool.

Idempotency

Currently I always resign zones. But for idempotency I should probably only do it if the zone has changed or the keys have changed.

Borg Backup

Ideal situation is to backup all of (and only) /data. Issue with Mastodon: the cache is saved at /data as well. Should put this in a location that is not backed up.

After investigating, borg backup with borgmatic is excellent. Instead of cron, I will use systemd timers to schedule borgmatic. https://dev.to/bowmanjd/schedule-jobs-with-systemd-timers-a-cron-alternative-15l8

Firewall

A little more difficult because of docker networking but probably doable.