homelab-nomad/core/blocky/config.yml

143 lines
3.4 KiB
YAML
Raw Permalink Normal View History

2023-03-27 22:21:35 +00:00
ports:
dns: 53
http: 4000
2024-06-26 20:28:58 +00:00
# I must have ip v6 blocked or something
connectIPVersion: v4
bootstrapDns:
2023-03-27 22:21:35 +00:00
- upstream: 1.1.1.1
- upstream: 1.0.0.1
2024-02-13 20:02:14 +00:00
- upstream: 9.9.9.9
- upstream: 149.112.112.112
2023-11-30 22:00:27 +00:00
upstreams:
2024-06-24 20:53:13 +00:00
init:
strategy: fast
2023-11-30 22:00:27 +00:00
groups:
default:
2024-02-13 20:02:14 +00:00
- https://dns.quad9.net/dns-query
- tcp-tls:dns.quad9.net
- https://one.one.one.one/dns-query
- tcp-tls:one.one.one.one
2024-06-26 20:28:58 +00:00
# cloudflare:
# - 1.1.1.1
# - 1.0.0.1
# - 2606:4700:4700::1111
# - 2606:4700:4700::1001
# - https://one.one.one.one/dns-query
# - tcp-tls:one.one.one.one
# quad9:
# - 9.9.9.9
# - 149.112.112.112
# - 2620:fe::fe
# - 2620:fe::9
# - https://dns.quad9.net/dns-query
# - tcp-tls:dns.quad9.net
# quad9-secured:
# - 9.9.9.11
# - 149.112.112.11
# - 2620:fe::11
# - 2620:fe::fe:11
# - https://dns11.quad9.net/dns-query
# - tcp-tls:dns11.quad9.net
# quad9-unsecured:
# - 9.9.9.10
# - 149.112.112.10
# - 2620:fe::10
# - 2620:fe::fe:10
# - https://dns10.quad9.net/dns-query
# - tcp-tls:dns10.quad9.net
conditional:
fallbackUpstream: false
mapping:
home.arpa: 192.168.2.1
in-addr.arpa: 192.168.2.1
iot: 192.168.2.1
local: 192.168.2.1
thefij: 192.168.2.1
.: 192.168.2.1
hostsFile:
2023-11-30 22:00:27 +00:00
sources:
- {{ env "NOMAD_TASK_DIR" }}/nomad.hosts
hostsTTL: 30s
2023-11-30 22:00:27 +00:00
loading:
refreshPeriod: 30s
clientLookup:
upstream: 192.168.2.1
2022-02-28 20:07:34 +00:00
blocking:
blackLists:
ads:
- https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts
2022-03-22 03:12:47 +00:00
- http://sysctl.org/cameleon/hosts
- https://s3.amazonaws.com/lists.disconnect.me/simple_tracking.txt
- https://s3.amazonaws.com/lists.disconnect.me/simple_ad.txt
2024-02-13 20:02:35 +00:00
# - https://hosts-file.net/ad_servers.txt
2024-07-18 03:08:38 +00:00
iot:
- https://raw.githubusercontent.com/Perflyst/PiHoleBlocklist/master/SmartTV.txt
- {{ env "NOMAD_TASK_DIR" }}/smarttv-regex.txt
- {{ env "NOMAD_TASK_DIR" }}/wemo.txt
2024-07-18 03:08:38 +00:00
- {{ env "NOMAD_TASK_DIR" }}/sonos.txt
2022-12-22 23:13:31 +00:00
antisocial:
- |
facebook.com
instagram.com
reddit.com
twitter.com
youtube.com
custom:
- {{ env "NOMAD_TASK_DIR" }}/block
2022-12-22 23:13:31 +00:00
whiteLists:
custom:
- {{ env "NOMAD_TASK_DIR" }}/allow
2022-11-22 22:01:11 +00:00
2022-02-28 20:07:34 +00:00
clientGroupsBlock:
default:
- ads
- custom
2024-07-18 03:08:38 +00:00
192.168.3.1/24:
- ads
- iot
- custom
2022-02-28 20:07:34 +00:00
customDNS:
customTTL: 1h
mapping:
{{ with nomadVar "nomad/jobs/blocky" }}{{ .mappings.Value | indent 4 }}{{ end }}
# Catch all at top domain to traefik
{{ with nomadService "traefik" -}}
{{- $last := len . | subtract 1 -}}
{{- $services := . -}}
{{ with nomadVar "nomad/jobs" }}{{ .base_hostname }}{{ end }}: {{ range $i := loop $last -}}
{{- with index $services $i }}{{ .Address }},{{ end -}}
{{- end -}}
{{- with index . $last }}{{ .Address }}{{ end -}}
2023-03-27 22:21:35 +00:00
{{- end }}
2022-02-28 20:07:34 +00:00
prometheus:
enable: true
2023-12-11 04:37:43 +00:00
{{ range nomadService 1 (env "NOMAD_ALLOC_ID") "redis-blocky" -}}
redis:
address: 127.0.0.1:6379
# password: ""
# database: 0
connectionAttempts: 10
connectionCooldown: 3s
2022-11-12 00:21:17 +00:00
{{ end -}}
{{ range nomadService 1 (env "NOMAD_ALLOC_ID") "mysql-tls" -}}
{{ with nomadVar "nomad/jobs/blocky" -}}
2022-11-12 00:21:17 +00:00
queryLog:
type: mysql
target: {{ .db_user }}:{{ .db_pass }}@tcp(127.0.0.1:3306)/{{ .db_name }}?charset=utf8mb4&parseTime=True&loc=Local
2022-11-12 00:21:17 +00:00
logRetentionDays: 14
{{ end -}}
{{ end -}}