diff options
Diffstat (limited to 'group_vars')
| -rw-r--r-- | group_vars/all.yml | 18 | ||||
| -rw-r--r-- | group_vars/mon.yml | 4 | ||||
| -rw-r--r-- | group_vars/nginx_proxy.yml | 2 | ||||
| -rw-r--r-- | group_vars/outbound.yml | 4 |
4 files changed, 25 insertions, 3 deletions
diff --git a/group_vars/all.yml b/group_vars/all.yml index 3648712..a285422 100644 --- a/group_vars/all.yml +++ b/group_vars/all.yml @@ -25,11 +25,16 @@ rfc1918_cgnat_networks: domain: "liz.coffee" idm_domain: "idm.{{ domain }}" headscale_host: "vpn.{{ domain }}" +headscale_nodes_domain: "in.{{ domain }}" mail_domain: "mail.{{ domain }}" oci_domain: "oci.{{ domain }}" passwd_domain: "passwd.{{ domain }}" # -- </shared_services> -- +# -- <docker> -- +docker_gid: 995 +# -- </docker> -- + # -- <notifcation_email> -- info_mail_user: "info" info_mail: "{{ info_mail_user }}@{{ domain }}" @@ -61,13 +66,25 @@ mesh: gateway: "10.128.0.44" domain: "lucina.cloud" forward_dns: true + split_vpn_dns_to: "10.128.0.44" private_records: [] liz: gateway: "{{ loadbalancer_ip }}" domain: "{{ domain }}" forward_dns: false + split_vpn_dns_to: "{{ loadbalancer_ip }}" private_records: - type: "A" + name: "piplup.{{ domain }}" + ip: "10.128.0.101" + - type: "A" + name: "togepi.{{ domain }}" + ip: "10.128.0.102" + - type: "A" + name: "roton.{{ domain }}" + ip: "10.128.0.103" + + - type: "A" name: "oci.{{ domain }}" ip: "{{ loadbalancer_ip }}" - type: "A" @@ -122,3 +139,4 @@ mesh: name: "roton.pocket.{{ domain }}" ip: "10.128.0.103" # -- </mesh> -- + diff --git a/group_vars/mon.yml b/group_vars/mon.yml new file mode 100644 index 0000000..51566f2 --- /dev/null +++ b/group_vars/mon.yml @@ -0,0 +1,4 @@ +--- + +mon_domain: mon.liz.coffee +mon_base: "{{ swarm_base }}/mon" diff --git a/group_vars/nginx_proxy.yml b/group_vars/nginx_proxy.yml index bd5a27a..5fb2a17 100644 --- a/group_vars/nginx_proxy.yml +++ b/group_vars/nginx_proxy.yml @@ -1,4 +1,4 @@ --- -certs_email: elizabeth@simponic.xyz +certs_email: "me@{{ domain }}" nginx_proxy_base: "/etc/docker/compose/nginx-proxy" diff --git a/group_vars/outbound.yml b/group_vars/outbound.yml index 759872f..e9d7e94 100644 --- a/group_vars/outbound.yml +++ b/group_vars/outbound.yml @@ -1,7 +1,7 @@ --- headscale_url: 'https://{{ headscale_host }}' -headscale_base_domain: '{{ headscale_host }}' +headscale_base_domain: '{{ headscale_nodes_domain }}' headscale_base: '/etc/docker/compose/headscale' headscale_port: '8080' headscale_listen_addr: '0.0.0.0:{{ headscale_port }}' @@ -18,7 +18,7 @@ generate_auth_key: '{{ homelab_build }}' auth_key_expiration: '2y' auth_key_user: 'pocketmonsters' -oauth_user_suffix: '@idm.{{ domain }}' +oauth_user_suffix: '{{ idm_domain }}' # being in this list just means you'll have access to your own devices. # the vpn_users oauth claim decides whether or not you're authorized to actually |