turtlebasket
/
michaelnet
mirror of https://github.com/turtlebasket/michaelnet
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

merge cuddlefish changes

master
michael 2023-06-19 11:33:40 -07:00
parent 9d9471685b 76fda3f1d5
commit ccf5c85e2e
8 changed files with 131 additions and 74 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
.gitignore vendored
View File

@ -1,6 +1,9 @@
# Docker volume mounts # Docker volume mounts
*/*-data/ */*-data/
# envfiles
.env
# backups # backups
*.tar *.tar

32
README.md
View File

@ -1,22 +1,36 @@
# Michael's Homelab # Michael's Homelab
## Hosts ## Hosts & Services
### Cuddlefish ### Cuddlefish
![CentOS](https://img.shields.io/badge/centos%207-002260?style=for-the-badge&logo=centos&logoColor=F0F0F0) ![CentOS](https://img.shields.io/badge/centos%207-002260?style=for-the-badge&logo=centos&logoColor=F0F0F0)
Services: - `git.michaellisano.com`
| Service | Internal Ports | External Ports | URL |
| :------ | :------------- | :------------- | :--- |
| Gitea | `3000` | `80` | `git.michaellisano.com` |
### Rocktiplex ### Rocktiplex
![Rocky Linux](https://img.shields.io/badge/-Rocky%20Linux%209-%2310B981?style=for-the-badge&logo=rockylinux&logoColor=white) ![Rocky Linux](https://img.shields.io/badge/-Rocky%20Linux%209-%2310B981?style=for-the-badge&logo=rockylinux&logoColor=white)
| Service | Internal Ports | External Ports | URL | - `analytics.michaellisano.com`
| :--------------- | :------------- | :------------- | :--- |
| Fathom Analytics | `8080` | `80` | `analytics.michaellisano.com` | ## Dockerized Cloudflared Notes
If a docker-compose file looks like this:
```yaml
services:
gitea-server:
image: gitea/gitea:1.19.3
...
gitea-cloudflared:
image: cloudflare/cloudflared
...
```
Then in this case the name of the target service is `gitea-server`, and (per Docker's networking shenanigans), should be specified **directly by service name,** e.g.
```
https://git.michaellisano.com -> http://gitea-server:3000
```

0
cuddlefish/docker-compose.old.yaml → cuddlefish/archive/docker-compose.2022.yaml
View File

67
cuddlefish/archive/nginx.2022.conf Normal file
View File

@ -0,0 +1,67 @@
#/etc/nginx/nginx.conf
events {}
http {
server {
listen 80;
server_name git.turtlebasket.ml;
client_max_body_size 50m;
location / {
proxy_pass http://127.0.0.1:3000;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}
}
server {
listen 80;
server_name analytics.turtlebasket.ml;
location / {
proxy_pass http://127.0.0.1:8080;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}
}
server {
listen 80;
server_name md.turtlebasket.ml;
location / {
proxy_pass http://192.168.1.25:3000;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}
}
server {
listen 80;
server_name money.turtlebasket.ml;
location / {
proxy_pass http://192.168.1.25:8080;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}
}
server {
listen 80;
server_name iot.turtlebasket.ml;
location / {
proxy_pass http://192.168.1.25:8123;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
# Critical for websockets, which Home Assistant uses
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
}
}
}

11
cuddlefish/backup
View File

@ -1,8 +1,11 @@
#!/bin/bash #!/bin/bash
# CONTAINER_ID=b581d6283772 # NOTE: DEPENDING ON PERMISSIONING, YOU MAY NEED TO RUN THIS SCRIPT USING SUDO
CONTAINER_ID=gitea
docker commit -p $CONTAINER_ID gitea-checkpoint-latest source .env
docker save -o gitea-checkpoint-$(date | tr '[:upper:]' '[:lower:]' | tr ' ' '_').tar checkpoint-latest
DATESTRING=$(date +"%Y-%m-%d_%H%M%S" | tr '[:upper:]' '[:lower:]' | tr ' ' '_')
ARCHIVE="gitea-data-${DATESTRING}.tar.gz"
tar -czvf $ARCHIVE gitea-data/
scp -i $BACKUP_KEYPATH -P $BACKUP_SSH_PORT $ARCHIVE $BACKUP_HOST:~/backups/
rm $ARCHIVE && echo Removed $ARCHIVE.

15
cuddlefish/docker-compose.yaml
View File

@ -5,8 +5,9 @@ networks:
external: false external: false
services: services:
server:
image: gitea/gitea:latest gitea-server:
image: gitea/gitea:1.19.3
container_name: gitea container_name: gitea
environment: environment:
USER_UID: 1000 USER_UID: 1000
@ -22,3 +23,13 @@ services:
- "3000:3000" - "3000:3000"
- "222:22" - "222:22"
gitea-cloudflared:
container_name: cloudflared-gitea
image: cloudflare/cloudflared
restart: unless-stopped
command: tunnel run --url http://server:3000
environment:
- TUNNEL_TOKEN=${GITEA_TUNNEL_TOKEN}
networks:
- gitea

7
cuddlefish/example.env Normal file
View File

@ -0,0 +1,7 @@
BACKUP_HOST=bob@1.2.3.4
BACKUP_KEYPATH=~/.ssh/id_backup
BACKUP_SSH_PORT=22
SSH_TUNNEL_TOKEN=...
GITEA_TUNNEL_TOKEN=...

70
cuddlefish/nginx.conf
View File

@ -1,67 +1,19 @@
#/etc/nginx/nginx.conf #/etc/nginx/stream.conf
events {} load_module /usr/lib64/nginx/modules/ngx_stream_module.so;
http {
server {
listen 80;
server_name git.turtlebasket.ml;
client_max_body_size 50m;
location / { stream {
proxy_pass http://127.0.0.1:3000; map $ssl_preread_server_name $target_host {
proxy_set_header Host $host; cuddlefish.ssh.michael.com 127.0.0.1:22;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; rocktiplex.ssh.michaellisano.com 192.168.1.19:22;
default 127.0.0.1:22;
} }
}
server { server {
listen 80; listen 2200;
server_name analytics.turtlebasket.ml; proxy_pass $backend;
ssl_preread on
location / {
proxy_pass http://127.0.0.1:8080;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
} }
}
server {
listen 80;
server_name md.turtlebasket.ml;
location / {
proxy_pass http://192.168.1.25:3000;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}
}
server {
listen 80;
server_name money.turtlebasket.ml;
location / {
proxy_pass http://192.168.1.25:8080;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}
}
server {
listen 80;
server_name iot.turtlebasket.ml;
location / {
proxy_pass http://192.168.1.25:8123;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
# Critical for websockets, which Home Assistant uses
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
}
}
} }