Adding new phlog entry. - jay.scot - my gopherhole source | |
git clone git://jay.scot/jay.scot.git | |
Log | |
Files | |
Refs | |
--- | |
commit cb272a0e6ba1f69ba0a8cc4c438f77941d5d4d7a | |
parent ef69411968fdc716dc4613647ff3417bb7dee237 | |
Author: Jay Scott <[email protected]> | |
Date: Sun, 29 Jan 2023 10:37:26 +0000 | |
Adding new phlog entry. | |
Diffstat: | |
M index.gph | 11 +++-------- | |
A phlog/012.txt | 62 +++++++++++++++++++++++++++++… | |
2 files changed, 65 insertions(+), 8 deletions(-) | |
--- | |
diff --git a/index.gph b/index.gph | |
@@ -10,6 +10,7 @@ | |
PHLOG | |
+[0|2023-01-29 ... Automating my infra deployment and configuration|phlog/012.t… | |
[0|2023-01-14 ... Reducing my footprint, using a mini-pc|phlog/011.txt|server|… | |
[0|2022-09-28 ... Convert mbox to maildir using fdm|phlog/010.txt|server|port] | |
[0|2022-09-13 ... A true cheap dumbphone,impossible?|phlog/009.txt|server|port] | |
@@ -25,17 +26,11 @@ PHLOG | |
PROJECTS | |
-[1|GIT ... all my git repos|git/|server|port] | |
-[1|HPUK ... organised collection of 1990s-2000 UK hack/phreak scene files|file… | |
+[1|GIT ... all my git repos|git/|server|port] | |
META | |
[0|EMAIL|meta/email.txt|server|port] | |
[0|GPG|meta/jay.scot.asc|server|port] | |
- | |
- | |
-OFFLINE | |
- | |
-PHLOG ... curl -O gopher://jay.scot/0/phlog/[001-011].txt | |
-FILES ... curl -O gopher://jay.scot/0/files/hpuk.tar.gz (651MB) | |
+[1|FILES|files/|server|port] | |
diff --git a/phlog/012.txt b/phlog/012.txt | |
@@ -0,0 +1,62 @@ | |
+[jay.scot] | |
+[012] | |
+ | |
+ | |
+--[ Automating my infra deployment and configuration | |
+ | |
+ | |
+Another item on the TODO list was completed yesterday, moving all my | |
+hand rolled infrastructure to Terraform and Ansible. I provisioned it | |
+all and moved the DNS over to the new setup last night. I forgot to | |
+update the DNS TTL and it was really high - DOH! Once the DNS has fully | |
+propagated, I can shut down the old servers. | |
+ | |
+ | |
+TERRAFORM | |
+--------- | |
+ | |
+I host all my server at Hetzner Cloud and luckily there is a provider | |
+for Terraform. I managed to knock up scripts that provisions the | |
+following for me in Hetzner: | |
+ | |
+ | |
+ add my public ssh key to account and attach to servers. | |
+ create full customizable firewall per server. | |
+ create X amount of servers, fully customizable. | |
+ create reverse dns names for each server. | |
+ bootstrap with cloud-init, creates and Ansible user with my key. | |
+ | |
+ | |
+I was going to use cloud-init to configure the servers at boot but, that | |
+would have been nightmare material. Overall, I am happy with the | |
+Terraform scripts and won't have the need to refactor or change them | |
+much. | |
+ | |
+ | |
+ANSIBLE | |
+------- | |
+ | |
+I really can't be bother with Ansible these days if truth be told, have | |
+been using it for around 8 years now. So this part of the configuration | |
+was kinda rushed, I will need to revisit the code at some point. I never | |
+used molecule etc. and it will only work for Debian based systems. | |
+Anyway, this is what the Ansible playbooks do for me. | |
+ | |
+ | |
+ common tasks - users, add packages, lock down ssh. | |
+ geomyidae - build from source, setup with systemd. | |
+ stagit-gopher - build from source, script to run via cron. | |
+ git - setup hosting with daemon running. | |
+ efingerd - install and add custom configuration. | |
+ | |
+ | |
+I have thrown everything up on git if anyone wants the Terraform or | |
+Ansible scripts. You can get them via a git clone or view them over | |
+gopher with the following links. | |
+ | |
+ | |
+0. git clone git://jay.scot/infra.git | |
+1. gopher://jay.scot/1/git/infra/ | |
+ | |
+ | |
+.EOF |