Commit Graph

174 Commits

Author SHA1 Message Date
f53c0c6eb5 bicep/synapse: Move database configuration out of secrets 2023-09-16 21:38:39 +02:00
816997b74f bicep/nginx: increase workers and enable modern compression
Should decrease latency
2023-09-13 11:01:09 +02:00
06322a26fc bicep/postgres: enable jit again, make more memory available 2023-09-13 05:22:23 +02:00
a58101bfbc Remove deprecated hosts and clean up 2023-09-13 05:03:57 +02:00
d3b363b028 bicep: Remove deprecated grub version option 2023-09-13 04:54:46 +02:00
4a6ea9be2d bicep/synapse: define registration secret properly 2023-09-13 04:53:56 +02:00
f92ebbee16 bicep/synapse: use postgres unix socket 2023-09-13 04:16:22 +02:00
201e3d306b bicep: Revert postgres socket stuff 2023-09-13 03:58:29 +02:00
437219bb68 bicep/postgres: Enable unix socket auth 2023-09-13 00:52:27 +02:00
d96c30bbd5 Fix calendar-bot timer 2023-09-12 18:23:20 +02:00
36b768b3b2 ( ͡° ͜ʖ ͡°) 2023-09-08 02:33:22 +02:00
9f36bd86a8 Update calendar bot details 2023-09-08 02:25:23 +02:00
1370ccddf8 Initialize host: shark 2023-09-08 02:11:02 +02:00
cfcd230678 Merge pull request 'Fix gitea on bekkalokk' (#7) from configure-gitea into main
Reviewed-on: #7
2023-09-07 18:54:24 +02:00
1afc8841a9
bekkalokk/nginx: remove commented virtualhost for mediawiki 2023-09-07 18:53:05 +02:00
b4b6b4971a
bekkalokk/gitea: misc changes
- change domain from git2 to git1
- enable internal SSH serer
- enable code search
- add custom logos
- update import-user-script to ignore GECOS fields
2023-09-07 18:53:05 +02:00
b52753987d
bicep: use mysql on bicep as production server 2023-09-07 18:40:13 +02:00
3beb76e411 Add pvv-calendar-bot to bicep 2023-08-27 02:36:01 +02:00
bfe94003c4 bicep/matrix/discord: enable legacy authorization because old mx-puppet-discord 😭 2023-08-18 00:54:06 +02:00
a5c83866ca bicep: setup ACME cert for postgres 2023-08-12 02:55:20 +02:00
34a16149f8 ildkule: add config for prometheus_mysqld_exporter
There's a PR waiting to add this module to nixpkgs,
so we should enable this once it gets merged.
2023-07-10 00:06:27 +02:00
998e66db65 bicep: enable mysql 2023-07-10 00:06:09 +02:00
699569249a ildkule: adjust matrix version annotations for nixos matrix module 2023-06-20 14:01:44 +02:00
e73b7d2cd1 ildule: fix upstream dashboard variables 2023-06-20 13:46:00 +02:00
ff30477e86 ildule: Update matrix dashboard from upstream 2023-06-20 13:20:42 +02:00
8f55ef3193 Bekkalokk: Configure Gitea, clean web services
Update bekkalokk secrets format

Update gitea keys and firewall rules

Create gitea-user-import script

Fix SSH host key verification

Gitea-import-users bug squashification

Fix Gitea-import SSH problems
2023-06-05 19:41:25 +02:00
d694724f5c bicep/synapse: Set event cache to 20K
This is double the cache from default
changed because we're seeing periodic cpu spikes
with this cache beeing the main one missing
2023-05-26 02:22:18 +02:00
68ce7acebb Revert "bicep: Emergency fix for matrix postgres auth"
This reverts commit fdbcd8c884.

This was not it
2023-05-23 05:12:46 +02:00
fdbcd8c884 bicep: Emergency fix for matrix postgres auth
I think
2023-05-23 04:59:34 +02:00
815063744b bicep/postgres: Remove jit setting
The nixos build of postgres doesn't support it anyways
2023-05-23 04:57:18 +02:00
dfd827ee74 Clean up jokum removal 2023-05-23 04:29:45 +02:00
9ccfb6cbed Merge branch 'bekkalokk-metrics' 2023-05-21 04:04:29 +02:00
1335ab1d4b Add metrics exporters to bekkalokk 2023-05-21 04:03:14 +02:00
69be23712f Merge branch 'bicep-metrics' of Drift/pvv-nixos-config into main 2023-05-21 03:47:53 +02:00
ce58f91e16 Add metrics exporters to bicep 2023-05-21 03:47:02 +02:00
8ccf9e9298 Update keys and re-enable web services 2023-05-21 02:29:14 +02:00
8b70d84f41 bekkalokk: hardware-config for baremetal 2023-05-21 00:06:25 +02:00
cd0c8c8198
bekkalokk: continue work on mediawiki service 2023-05-19 03:03:47 +02:00
c11a804097
bicep: set up mysql/mariadb 2023-05-18 15:40:13 +02:00
4ff5da28c4 bicep: nginx listen on bicep ip 2023-05-08 03:38:59 +02:00
ee73a964be move matrix to bicep 2023-05-08 03:38:59 +02:00
dcbe6871da
bekkalokk: setup keycloak 2023-05-07 00:34:42 +02:00
0e75e0a5b9
bicep: add backup service 2023-05-06 19:07:10 +02:00
f77a5e946f bicep: mount /data 2023-04-08 05:23:01 +02:00
bac67ee123 bicep: don't wait for all interfaces and especially not jokums 2023-04-07 04:53:36 +02:00
Daniel Olsen
38e3202c9e Move more of jokum
slightly less stupid this time
2023-03-26 14:44:58 +02:00
7620fb3dee move jokum to nixos bicep 2023-03-26 06:36:04 +02:00
dfe8b8b44c
bicep: added postgres settings 2023-03-26 01:50:00 +01:00
169f774e81
bicep dead, but maybe soon bicep alive 2023-03-26 01:09:44 +01:00
2568800794 Add andresbu to node-exporter targets 2023-03-12 00:41:36 +01:00
d9c19385fa synapse: cache more event_auth 2023-03-08 03:18:57 +01:00
70f4777696 fix synapse dashboard 2023-03-04 05:11:40 +01:00
db69d28b42 Revert "metrics: Fix Synapse dashboard"
This reverts commit beb8df8fc7.
2023-03-04 03:14:54 +01:00
8f23d7ba06 jokum: don't use host resolv.conf 2023-03-04 03:04:32 +01:00
3252a3b5d1 turn on jokum 2023-03-04 02:03:37 +01:00
8e819b5546 fix ip for bekkalokk 2023-03-04 00:57:28 +01:00
6cf831a347 switch to networkd 2023-03-04 00:44:30 +01:00
af955c88f8 jokum: move to systemd-nspawn container on bicep 2023-02-26 19:23:00 +01:00
eed3c9b05f matrix: Point mjolnir directly at synapse so it can use the admin api 2023-02-13 03:42:52 +01:00
7a9759ef71 matrix: Add mjolnir as a moderation bot 2023-02-13 02:34:11 +01:00
4684cd239a matrix: enable shared secret registration 2023-02-13 00:58:15 +01:00
c0c0dea069 tune worker distribution post fosdem and turning off prescence 2023-02-06 02:11:07 +01:00
9c18a87866 element: disable presence if disabled in synapse 2023-02-02 18:51:47 +01:00
73aa42a5f5 synapse: Disable presence
For now at least until we move to a stronger
machine.

Most large servers don't have this enabled.
2023-02-02 18:39:08 +01:00
eade192132 synapse: bump federation receiver count to 3 2023-02-02 00:35:26 +01:00
beb8df8fc7 metrics: Fix Synapse dashboard
Some of the panels were set to the wrong
datasource

Additionally since we don't do MAU limits,
I moved the relevant MAU panel to Overview
2023-02-01 22:54:54 +01:00
1a424c79fe synapse: track monthly active users 2023-02-01 19:42:49 +01:00
796155481f
Add host bekkalokk
`bekkalokk` is a new machine, meant to host web services and eventually
miscellaneous services.
2023-01-29 01:51:35 +01:00
efc8eb7ffc
ildkule: add postgres exporter for knakelibrak 2023-01-26 02:16:52 +01:00
84b57bb4db Provision go dashboard for gogs 2023-01-23 14:48:26 +01:00
b4e74a3959 Add node and gogs metrics collection to prometheus 2023-01-23 13:12:46 +01:00
a78f120a65
explicitly state nginx listen addresses 2023-01-22 17:46:48 +01:00
3880190577
ildkule: add postgres dashboard to grafana 2023-01-22 02:28:19 +01:00
171fea39bc
ildkule: switch grafana db from sqlite to postgres 2023-01-22 02:18:21 +01:00
2bc5d7d91e
ildkule: set up postgres metrics exporter 2023-01-22 00:47:22 +01:00
a7408b8800
ildkule: restructure prometheus config 2023-01-21 20:08:36 +01:00
ad75cb0c88
Restructure values file to separate hosts from services 2023-01-21 19:54:20 +01:00
94fc936251 ildkule: use ip addressess from values.nix 2023-01-21 11:45:05 +01:00
ecfde9f56a Update ildkule IPv6-address 2023-01-20 11:40:42 +01:00
1a0880086a metrics: use matrix-lib to simplify generation of prometheus scrape config 2023-01-20 08:24:02 +01:00
efed13c810 Revert "metrics: stop parsing prometheus labels from url"
This reverts commit 1524b6b10c.

Prometheus doesn't allow scraping from uris only socketAddresses
The relabeling is to change the internal labels to trick it to read
from a url
2023-01-20 05:04:16 +01:00
1524b6b10c
metrics: stop parsing prometheus labels from url 2023-01-20 01:15:45 +01:00
90e924c083 synapse: also generate metric config for the master node 2023-01-18 04:04:42 +01:00
c8d26e3c81
synapse: generate metric endpoints automatically 2023-01-18 02:55:05 +01:00
1330c9575f metrics/dashboards/synapse: update default timeframe 2023-01-17 18:57:32 +01:00
4a82d22a56 Merge branch 'jokum_logs' of Drift/pvv-nixos-config into main 2023-01-17 18:50:41 +01:00
64d0253aa0 I dont think the nginx config verifier has caught a single configuration error ever 2023-01-17 18:47:08 +01:00
1ea40456a5 add ipv6 to allowed ip addresses for metrics exporters 2023-01-17 18:23:42 +01:00
524bbdb78b ildkule/dashboard/synapse: Make zooming out on the cpu graph aggregate max cpu instead of avg 2023-01-17 17:37:44 +01:00
5b798b2f1d jokum: enable metric exporters 2023-01-17 17:28:47 +01:00
96b6dee404 Add firewalling to metric exporters 2023-01-17 17:28:11 +01:00
e4cb215d39 Simplify networking configs
Introduces values.nix, a place to store information relevant across systems
2023-01-17 17:28:11 +01:00
e679c7d27a Add bicep and hildring to monitoring 2023-01-17 13:47:48 +01:00
084313e01d Add ildkule to prometheus targets 2023-01-14 22:45:01 +01:00
40c67c6153 Removed motd extras 2022-12-20 23:15:52 +01:00
f6cc25cdaf Add synapse monitoring with prometheus 2022-12-20 23:11:46 +01:00
a45a08db57 Cleanup ildkule configs 2022-12-20 23:11:46 +01:00
fcdce57a3d SSL and loki network config 2022-12-20 18:11:32 +01:00
c0b5932432 Improve grafana config, enable boltdb-shipper 2022-12-20 18:11:32 +01:00
ed46e9af61 Add a default dashboard 2022-12-20 18:11:32 +01:00