32e34db160
Fix nomad authelia auth
...
Fixes long standing bug since switching over to auto generated secrets.
I forgot to update the bound audiences! This was somewhat mentioned in the
error, but I didn't understand it.
2024-12-20 11:20:44 -08:00
ae6fe918ef
Add external jellyfin service
2024-12-17 16:36:49 -08:00
8e3e782c41
Upgrade diun and simplify config
2024-11-21 11:12:38 -08:00
78dba74acf
Upgrade promtail
2024-11-21 11:11:57 -08:00
6854347d33
Split out core metrics
2024-10-08 10:09:17 -07:00
cdc03b9d93
Add action to reload grafana configs
2024-10-08 10:07:46 -07:00
9c2bce3fab
Clean up lego
2024-10-02 11:25:19 -07:00
c248edfc52
Spit out log message when retrying db connection on bootstrap
2024-10-02 11:24:58 -07:00
8866434590
Increase db bootstrap timeouts
...
Prevents service flapping while database is trying to recover
2024-08-30 11:30:02 -07:00
1c783dbdfe
Make sure blocky bootstrap never fails
...
We want to make sure the blocky task is always started, even if mysql isn't reached
2024-08-30 11:27:28 -07:00
f5a180f019
Add dummy stunnel server to blocky
...
Hopefully this keeps the stunnel instance from failing if mysql and redis
are both unavailable
2024-08-30 11:13:53 -07:00
98c547ebdf
Add authelia bypass for some favicons
2024-08-30 11:12:56 -07:00
2a58439ab5
Simplify passing blocky config to nomad
2024-08-30 11:09:59 -07:00
79648879ab
Use new oidc module for setting up oidc with Authelia
2024-08-29 14:07:49 -07:00
52b0ec3bb6
Add oidc client module
2024-08-29 13:56:41 -07:00
cf43d32d06
Remove n2 host
2024-08-29 13:51:18 -07:00
64b58230e6
Fix sonos list regex
2024-08-21 20:02:56 -07:00
95ca3f40d0
Use vars for external services
2024-08-21 20:02:18 -07:00
8e8dbc3e65
Clean up of iot block lists
2024-07-17 20:08:38 -07:00
77c7c6b36c
Disable authelia SMTP check to make aure it starts
2024-07-17 20:06:40 -07:00
3e8c03904d
Fix block list for smarttvs in blocky config
2024-06-26 13:29:16 -07:00
408f526239
Remove ipv6 from blocky
2024-06-26 13:28:58 -07:00
c478ba4278
Auto refresh blocky lists when template change
2024-06-26 13:28:45 -07:00
9ee660cb6d
Pin stunnel image to speed deployments
...
This will prevent redownload
2024-06-26 13:27:41 -07:00
2235a00f3b
Refactor blocky lists to a new nomad var space to make them easier to manage
2024-06-24 17:04:03 -07:00
1f8014e740
Fix smarttv block lists to get from a domain that works
...
Also hard codes regex lists because they were formatted for PiHole and
not Blocky.
2024-06-24 13:54:30 -07:00
bc620987b7
Move from Gitea to Nomad Vars for custom block and allow
...
DNS doesn't route to internal addresses for git.thefij.rocks because
list lookups use bootstrap DNS servers, which don't know about it.
2024-06-24 13:53:34 -07:00
7477cb7227
Upgrade blocky and init fast
2024-06-24 13:53:13 -07:00
81093cedfb
Increase memory for syslog jobs
...
Thry were getting OOM killed
2024-06-08 13:36:23 -07:00
7b41d29eb8
Add health checks and restarts to prometheus
2024-05-30 15:01:42 -07:00
90b7740343
Move Blocky and Exporters away from system to service jobs
...
This is because service jobs do not get rescheduled when allocs fail
2024-05-30 11:41:40 -07:00
85c626c96f
Use Nomad task socket from Traefik
2024-05-28 12:00:13 -07:00
205388f283
Update traefik to v3 using canary
2024-05-28 11:43:46 -07:00
c711c25737
Always use CF for dns when renewing lego certs
...
Makes it more resilient if my servers are down, but also cuts out a hop
because CF is the nameserver as well.
2024-04-27 19:33:10 -07:00
5edcb86e7e
Remove traefik grafana dashboard
...
Now in data backups rather than git.
2024-03-26 14:56:14 -07:00
3dcd4c44b3
Tune memory after reviewing grafana
2024-03-26 09:48:31 -07:00
d5c2a0d185
Use default diun for syslogng
2024-03-22 21:05:53 -07:00
6a3ae49d8e
Update terraform modules
2024-03-11 22:02:07 -07:00
8b90aa0d74
Add 1.1.1.1 dns back to blocky for better resiliance
2024-02-20 10:10:41 -08:00
5fb510202d
Fix indent for Authelia rules
2024-02-20 10:05:25 -08:00
f2f415aeac
Fix traefik metrics
2024-02-18 07:47:31 -08:00
198f96f3f7
Add back other traefik ports and metrics
2024-02-13 12:03:03 -08:00
6b5adbdf39
Remove 404 block list
2024-02-13 12:02:35 -08:00
77ef4b4167
Use quad9 encrypted dns
2024-02-13 12:02:14 -08:00
b35b8cecd5
Blocky: Remove mysql and redis configs from stunnel if server isn't found
2024-02-13 12:01:45 -08:00
b9dfeff6d8
Have blocky use router for upstream in nomad
2024-02-13 12:01:08 -08:00
35dfeb3093
Add service healthchecks
2024-01-23 12:08:47 -08:00
6fe1b200f2
Update loki
2024-01-23 12:06:25 -08:00
4fe3d46d5f
Add external service acls for authelia
2024-01-16 14:15:56 -08:00
cf8bde7920
Add external traefik routes to nomad vars
2024-01-16 14:15:18 -08:00