Skip to content

personal ansible-tower like tool using github actions

Notifications You must be signed in to change notification settings

rssnyder/isengard

Repository files navigation

👁️ isengard 👁️

personal ansible-tower like tool using github actions

mostly ran locally these days off my pi4 running code server

Run playbook

Run nightly

Terraform

ACTIONS

this is a living repo, master is not assumed stable

powered by github's generosity and machines i find in local dumpsters

infra

starting to run newer services in kubernetes, because i've grown tired of plain docker with compose

network diagram

  • applications are (usually) launched as a deployment
  • when a service is added metallb provisions the service an ip address on my local network
    • optionally the service is added to the tailnet and/or given a local dns entry (usually <service>.r.ss)
  • if external public access is needed an ingress record is created with a <service>.k8s.rileysnyder.dev domain
    • routed from a caddy reverse proxy acting as the entrypoint to my local network.
  • longhorn for storage
  • nodes are random machines that i dont have another use for at any given time, swapped out often
  • manifests are under infra/k8s applied either with kubectl, k3s manifests directory, or harness (both regular deployments and gitops), because i need to try everything

secrets

using ansible vault with a password in a local file

encrypt

ansible-vault encrypt_string --vault-password-file .vault_password 'bar' --name 'foo'

cidr

cidr notes
home 192.168.2.0/24
tailscale 100.64.0.0/10
lab cluster 10.42.0.0/16
lab svc 10.43.0.0/16
oc cluster 10.42.0.0/16 need to migrate to 10.44.0.0/16
oc svc 10.43.0.0/16 need to migrate to 10.45.0.0/16
ocdr cluster 10.46.0.0/16
ocdr svc 10.47.0.0/16
oc2 cluster 10.48.0.0/16
oc2 svc 10.49.0.0/16

About

personal ansible-tower like tool using github actions

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published