dustin
/
configpolicy
1
1
Fork 0
Code Issues Releases Activity
795 Commits
14 Branches
0 Tags
7.3 MiB
Commit Graph

9 Commits (nut-monitor)

Author SHA1 Message Date
Dustin db6d13013a websites: Add chmod777.sh 
*chmod777.sh* is a simple static website, generated by Hugo.  It is
built and published from a Jenkins pipeline, which runs automatically
when new commits are pushed to Gitea.

The HTTPS certificate for this site is signed by Let's Encrypt and
managed by `lego` in the `certs` submodule.
 2020-03-09 20:29:52 -05:00
Dustin 2b49c5a02e roles/dch-proxy: Configure proxy for Nextcloud 
This commit adds front-end and back-end configuration for HAProxy to
proxy HTTP/HTTPS for
*nextcloud.pyrocufflink.net*/*nextcloud.pyrocufflink.blue* to
*cloud0.pyrocufflink.blue*.
 2020-03-09 20:24:28 -05:00
Dustin c676aa2a0b roles/dch-proxy: Add haproxy config for Bitwarden 
This commit adds an HAProxy backend for Bitwarden, and adds ACL rules to
the frontend to proxy traffic to *bitwarden.pyrocufflink.blue* or
*bitwarden.pyrocufflink.net* to it.
 2019-09-19 19:27:30 -05:00
Dustin f4fad034dc roles/dch-proxy: Proxy pyrocufflink.net 2019-01-04 20:52:23 -06:00
Dustin 9bf2a911c6 roles/dch-proxy: Switch default backend to web0.p.b 
The public-facing websites are now hosted by *web0.pyrocufflink.blue*
and *myala.pyrocufflink.jazz* has been decommissioned.
 2018-07-29 09:41:10 -05:00
Dustin c3f1f5750d roles/dch-proxy: Add OpenVPN backend 
The `openvpn` haproxy backend allows forwarding TLS traffic for
*vpn.securepassage.com* to the OpenVPN-over-TLS service on the gateway.
 2018-07-01 15:17:14 -05:00
Dustin 9d54411d52 roles/dch-proxy: Add backend for Jenkins 
This commit configures HAProxy to proxy *jenkins.pyrocufflink.net* and
*jenkins.pyrocufflink.blue* to the Jenkins master.
 2018-06-23 14:42:45 -05:00
Dustin fd172ddf7c roles/dch-proxy: Redirect git.p.n to Gitea 
The name *git.pyrocufflink.net* now proxies to Gitea instead of CGit.
 2018-06-13 22:23:27 -05:00
Dustin c5fe4a66aa roles/dch-proxy: Deploy reverse HTTP/HTTPS proxy 
The *dch-proxy* role sets up HAProxy to provide a revers proxy for all
public-facing web services on the Pyrocufflink network. It uses the TLS
Server Name Indication (SNI) extension to determine the proper backend
server based on the name requested by the client.

For now, only Gitea is configured; the name *git.pyrocufflink.blue* is
proxied to *git0.pyrocufflink.blue*. All other names are proxied to
Myala.
 2018-06-12 22:31:15 -05:00