Skip to content
This repository has been archived by the owner on Jun 11, 2024. It is now read-only.

Latest commit

 

History

History

apps

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
blocky
blocky
 
 
bws-cache
bws-cache
 
 
gatus
gatus
 
 
node-exporter
node-exporter
 
 
traefik
traefik
 
 
README.md
README.md
 
 
Taskfile.yaml
Taskfile.yaml
 
 

README.md

apps

bind

https://www.isc.org/bind/

bind configuration

Important

Do not modify the key contents after it's creation, instead create a new key using tsig-keygen.

  1. Create the base rndc key and encrypt it with sops

    tsig-keygen -a hmac-sha256 rndc-key > ./apps/bind/data/config/rndc.sops.key
sops --encrypt --in-place ./apps/bind/data/config/rndc.sops.key

  2. [Optional] Create additional rndc keys for external-dns and encrypt them with sops

  3. Update ./apps/bind/data/config with your configuration

Optional configuration

  1. Create additional rndc keys for external-dns and encrypt them with sops

    tsig-keygen -a hmac-sha256 kubernetes-main-key > ./apps/bind/data/config/kubernetes-main.sops.key
sops --encrypt --in-place ./apps/bind/data/config/kubernetes-main.sops.key

blocky

https://github.com/0xERR0R/blocky

blocky configuration

Important

Blocky can take awhile to start depending on how many blocklists you have configured

  1. Update ./apps/blocky/data/config/config.yaml with your configuration and then start the stack

    task dns-start-primary

bws-cache

https://bitwarden.com/help/secrets-manager-cli/

Configuration

  1. Add your ORG_ID to ./apps/bws-cache/data/config/config.sops.env

  2. Start bws-cache

    task start-bws-cache

podman-exporter

https://github.com/containers/prometheus-podman-exporter

Configuration

  1. Enable the podman.socket service

    sudo systemctl enable --now podman.socket

  2. Start podman-exporter

    task start-podman-exporter