Ian Fijolek
bde0b84d70
The open source version of Traefik doesn't natively support HA. Running multiple instances means that the TLS certificates will have to be managed outside of Traefik and distributed to running jobs via Vault and Nomad. This is doable, but I've decided to reduce the scope for now to simplify things and go to a single Ingress node so that Traefik cert management can be used.
50 lines
1.2 KiB
YAML
50 lines
1.2 KiB
YAML
---
|
|
all:
|
|
children:
|
|
servers:
|
|
hosts:
|
|
n1.thefij:
|
|
# consul_node_role: bootstrap
|
|
nomad_node_role: both
|
|
nomad_unique_host_volumes:
|
|
- name: mysql-data
|
|
path: /srv/volumes/mysql
|
|
owner: "root"
|
|
group: "bin"
|
|
mode: "0755"
|
|
read_only: false
|
|
n2.thefij:
|
|
nomad_node_role: both
|
|
nomad_unique_host_volumes:
|
|
- name: nextcloud-data
|
|
path: /srv/volumes/nextcloud
|
|
owner: "root"
|
|
group: "bin"
|
|
mode: "0755"
|
|
read_only: false
|
|
- name: gitea-data
|
|
path: /srv/volumes/gitea
|
|
owner: "root"
|
|
group: "bin"
|
|
mode: "0755"
|
|
read_only: false
|
|
- name: authentik-data
|
|
path: /srv/volumes/gitea
|
|
owner: "root"
|
|
group: "bin"
|
|
mode: "0755"
|
|
read_only: false
|
|
n3.thefij:
|
|
nomad_node_class: ingress
|
|
nomad_node_role: both
|
|
|
|
consul_instances:
|
|
children:
|
|
servers: {}
|
|
vault_instances:
|
|
children:
|
|
servers: {}
|
|
nomad_instances:
|
|
children:
|
|
servers: {}
|