dogeystamp/homeserver-iac
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
73 Commits 1 Branch 0 Tags 199 KiB
main
Commit Graph

10 Commits

Author SHA1 Message Date
dogeystamp
864c1bdfd3
haproxy, firewall, containers: force connections through bastion vpn 
docker is now listening on localhost, with a haproxy on the services
server to forward the ports outwards. this is because docker tends to
disregard UFW's rules, but haproxy should be better in that regard.

meanwhile, the firewall rules have been configured properly to only
allow the bastion IP in over the wireguard connection, for proper
authentication.
 2024-06-19 23:02:08 -04:00
dogeystamp
0c8d18dcce
wireguard: use vpn for bastion-fleet comms 
supposedly fleet will be more secure this way
 2024-06-16 21:32:52 -04:00
dogeystamp
03177a1ee7
roles/wireguard: implemented 2024-06-16 15:05:12 -04:00
dogeystamp
533082b8d4
paperless-ngx: add service 2023-12-09 21:36:36 -05:00
dogeystamp
ad2f9719c2
roles/system/tasks/essential: set timezone 2023-11-11 14:45:32 -05:00
dogeystamp
ce93e7ee96
clarify docs 2023-09-10 21:00:15 -04:00
dogeystamp
301beab91d
README: updated 2023-09-10 20:56:38 -04:00
dogeystamp
1e4cae244f
fix minor issues 2023-08-26 22:02:29 -04:00
dogeystamp
1ddb72e734
roles/haproxy: added 2023-08-23 18:22:50 -04:00
dogeystamp
523cfec521
moved hosts to yml format 2023-08-23 17:31:22 -04:00