Trang chủ Khám phá Trợ giúp
Đăng nhập
LBP
/
ChristianLempa_Boilerplates
mirror of https://github.com/ChristianLempa/boilerplates.git
4
0
Fork 0
Các tập tin Các vấn đề 0 Wiki
Browse Source

Merge branch 'main' into passbolt

Christian Lempa 3 năm trước cách đây
mục cha
a0da58aa7c 743e4248c0
commit
fe0f9d1b8c
17 tập tin đã thay đổi với 65 bổ sung171 xóa
Split View Hiển thị tình trạng sai khác
  1. 5 5
      README.md
  2. 0 3
      ansible/README.md
  3. 1 21
      ansible/provisoning/ubuntu/install-docker.yaml
  4. 0 21
      docker-compose/README.md
  5. 0 0
      docker-compose/cadvisor/README.md
  6. 21 0
      docker-compose/cadvisor/docker-compose.yml
  7. 15 0
      docker-compose/heimdall/heimdall.yaml
  8. 0 77
      docker-compose/nextcloud/nextcloud-npm.yaml
  9. 13 22
      docker-compose/nextcloud/nextcloud.yaml
  10. 0 0
      docker-compose/nodeexporter/docker-compose.yml
  11. 0 0
      docker-compose/nvidiadgcm/README.md
  12. 0 0
      docker-compose/nvidiadgcm/docker-compose.yml
  13. 0 0
      docker-compose/nvidiasmi/README.md
  14. 0 0
      docker-compose/nvidiasmi/docker-compose.yml
  15. 10 1
      docker-compose/prometheus/README.md
  16. 0 21
      docker-compose/prometheus/exporters/cadvisor/docker-compose.yml
  17. 0 0
      terraform/README.md

+ 5 - 5
README.md
Xem Tập Tin 

@@ -2,7 +2,7 @@
 
 
 Hi, there! 👋
 
 
-I’m Christian, a 35 years old tech enthusiast from Germany, and I love to inspire and educate people in IT.
 
+I’m Christian, a 35-year-old tech enthusiast from Germany, and I love to inspire and educate people in IT.
 
 
 This Repository **Boilerplates** is my personal template collection. Here you'll find templates, and configurations for various tools, and technologies. 
 
@@ -16,10 +16,10 @@ If you’d like to contribute to this project, reach out to me on social media o
 
 
 ## Other Resources
 
 
-- [Videos](https://github.com/xcad2k/videos) - Documentation and project files for all my video tutorials on YouTube
 
-- [Dotfiles](https://github.com/xcad2k/dotfiles) - My personal configuration files on Linux and Windows
 
-- [Boilerplates](https://github.com/xcad2k/boilerplates) - Templates for various projects like Docker, K8S, Ansible, etc
 
-- [Cheat-Sheets](https://github.com/xcad2k/cheat-sheets) - Command Reference for various tools and technologies
 
+- [Videos](https://github.com/christianlempa/videos) - Documentation and project files for all my video tutorials on YouTube
 
+- [Dotfiles](https://github.com/christianlempa/dotfiles) - My personal configuration files on Linux and Windows
 
+- [Boilerplates](https://github.com/christianlempa/boilerplates) - Templates for various projects like Docker, K8S, Ansible, etc
 
+- [Cheat-Sheets](https://github.com/christianlempa/cheat-sheets) - Command Reference for various tools and technologies
 
 
 ## Support me

+ 0 - 3
ansible/README.md
Xem Tập Tin 

@@ -1,3 +0,0 @@
 
-# Ansible Boilerplates
 
-
 
-These are my ansible boilerplates to configure, provision and maintain servers and clients. Most of them are written and tested on Ubuntu Servers (with a few exceptions).

+ 1 - 21
ansible/provisoning/ubuntu/install-docker.yaml
Xem Tập Tin 

@@ -10,27 +10,7 @@
 
   - name: install prerequisites
 
     apt:
 
       name:
 
-        - apt-transport-https
 
-        - ca-certificates 
-        - curl 
-        - gnupg-agent
 
-        - software-properties-common
 
-      update_cache: yes
 
-
 
-  - name: add apt-key
 
-    apt_key:
 
-      url: https://download.docker.com/linux/ubuntu/gpg
 
-
 
-  - name: add docker repo
 
-    apt_repository:
 
-      repo: deb https://download.docker.com/linux/ubuntu focal stable
 
-
 
-  - name: install docker 
-    apt:
 
-      name: 
-        - docker-ce
 
-        - docker-ce-cli
 
-        - containerd.io
 
+        - docker.io
 
       update_cache: yes
 
 
   - name: add user permissions

+ 0 - 21
docker-compose/README.md
Xem Tập Tin 

@@ -1,21 +0,0 @@
 
-# Docker-Compose Boilerplates and Templates
 
-
 
-## Index
 
-
 
-- **Authelia** - 
-- **Duplicati** - 
-- **Grafana** - 
-- **Homer** - 
-- **Influxdb** - 
-- **Jellyfin** - 
-- **Nextcloud** - 
-- **Nginxproxymanager** - 
-- **Pihole** - 
-- **Plex** - 
-- **Portainer** - 
-- **Prometheus** - 
-- **SWAG** - 
-- **Teleport** -
 
-- **Traefik** - 
-- **Watchtower** - 
-- **Whoami** -

+ 0 - 0
packer/README.md → docker-compose/cadvisor/README.md
Xem Tập Tin


+ 21 - 0
docker-compose/cadvisor/docker-compose.yml
Xem Tập Tin 

@@ -0,0 +1,21 @@
 
+---

+version: '3'

+

+services:

+  cadvisor:

+    # TODO: latest tag is not updated, check latest release https://github.com/google/cadvisor/releases 

+    image: gcr.io/cadvisor/cadvisor:v0.45.0     

+    container_name: cadvisor

+    ports:

+      - "8080:8080"

+    network_mode: host

+    volumes:

+      - /:/rootfs:ro

+      - /var/run:/var/run:ro

+      - /sys:/sys:ro

+      - /var/lib/docker/:/var/lib/docker:ro

+      - /dev/disk/:/dev/disk:ro

+    devices:

+      - /dev/kmsg

+    restart: unless-stopped

+    privileged: true

+ 15 - 0
docker-compose/heimdall/heimdall.yaml
Xem Tập Tin 

@@ -0,0 +1,15 @@
 
+---
 
+version: "2.1"
 
+services:
 
+  heimdall:
 
+    image: lscr.io/linuxserver/heimdall:latest
 
+    container_name: heimdall
 
+    environment:
 
+      - PUID=1000
 
+      - PGID=1000
 
+    volumes:
 
+      - ./heimdall/config:/config
 
+    ports:
 
+      - 80:80
 
+      - 443:443
 
+    restart: unless-stopped

+ 0 - 77
docker-compose/nextcloud/nextcloud-npm.yaml
Xem Tập Tin 

@@ -1,77 +0,0 @@
 
-version: '3'
 
-
 
-volumes:
 
-  nextcloud-data:
 
-  nextcloud-db:
 
-  npm-data:
 
-  npm-ssl:
 
-  npm-db:
 
-
 
-networks:
 
-  frontend:
 
-    # add this if the network is already existing!
 
-    # external: true
 
-  backend:
 
-
 
-services:
 
-
 
-  nextcloud-app:
 
-    image: nextcloud
 
-    restart: always
 
-    volumes:
 
-      - nextcloud-data:/var/www/html
 
-    environment:
 
-      - MYSQL_PASSWORD=replace-with-secure-password
 
-      - MYSQL_DATABASE=nextcloud
 
-      - MYSQL_USER=nextcloud
 
-      - MYSQL_HOST=nextcloud-db
 
-    networks:
 
-      - frontend
 
-      - backend
 
-
 
-  nextcloud-db:
 
-    image: mariadb
 
-    restart: always
 
-    command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW
 
-    volumes:
 
-      - nextcloud-db:/var/lib/mysql
 
-    environment:
 
-      - MYSQL_ROOT_PASSWORD=replace-with-secure-password
 
-      - MYSQL_PASSWORD=replace-with-secure-password
 
-      - MYSQL_DATABASE=nextcloud
 
-      - MYSQL_USER=nextcloud
 
-    networks:
 
-      - backend
 
-
 
-  npm-app:
 
-    image: jc21/nginx-proxy-manager:latest
 
-    restart: always
 
-    ports:
 
-      - "80:80"
 
-      - "81:81"
 
-      - "443:443"
 
-    environment:
 
-      - DB_MYSQL_HOST=npm-db
 
-      - DB_MYSQL_PORT=3306
 
-      - DB_MYSQL_USER=npm
 
-      - DB_MYSQL_PASSWORD=replace-with-secure-password
 
-      - DB_MYSQL_NAME=npm
 
-    volumes:
 
-      - npm-data:/data
 
-      - npm-ssl:/etc/letsencrypt
 
-    networks:
 
-      - frontend
 
-      - backend
 
-
 
-  npm-db:
 
-    image: jc21/mariadb-aria:latest
 
-    restart: always
 
-    environment:
 
-      - MYSQL_ROOT_PASSWORD=replace-with-secure-password
 
-      - MYSQL_DATABASE=npm
 
-      - MYSQL_USER=npm
 
-      - MYSQL_PASSWORD=replace-with-secure-password
 
-    volumes:
 
-      - npm-db:/var/lib/mysql
 
-    networks:
 
-      - backend

+ 13 - 22
docker-compose/nextcloud/nextcloud.yaml
Xem Tập Tin 

@@ -4,38 +4,29 @@ volumes:
 
   nextcloud-data:
 
   nextcloud-db:
 
 
-networks:
 
-  frontend:
 
-    # add this if the network is already existing!
 
-    # external: true
 
-  backend:
 
-
 
 services:
 
 
   nextcloud-app:
 
-    image: nextcloud
 
-    restart: always
 
+    image: nextcloud:latest
 
+    restart: unless-stopped
 
     volumes:
 
       - nextcloud-data:/var/www/html
 
     environment:
 
-      - MYSQL_PASSWORD=replace-with-secure-password
 
-      - MYSQL_DATABASE=nextcloud
 
-      - MYSQL_USER=nextcloud
 
+      - MYSQL_PASSWORD=$MYSQL_PASSWORD
 
+      - MYSQL_DATABASE=$MYSQL_DATABASE
 
+      - MYSQL_USER=$MYSQL_USER
 
       - MYSQL_HOST=nextcloud-db
 
-    networks:
 
-      - frontend
 
-      - backend
 
+    ports:
 
+      - 80:80
 
 
   nextcloud-db:
 
-    image: mariadb
 
-    restart: always
 
+    image: mariadb:latest
 
+    restart: unless-stopped
 
     command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW
 
     volumes:
 
       - nextcloud-db:/var/lib/mysql
 
     environment:
 
-      - MYSQL_ROOT_PASSWORD=replace-with-secure-password
 
-      - MYSQL_PASSWORD=replace-with-secure-password
 
-      - MYSQL_DATABASE=nextcloud
 
-      - MYSQL_USER=nextcloud
 
-    networks:
 
-      - backend
 
+      - MYSQL_RANDOM_ROOT_PASSWORD=true
 
+      - MYSQL_PASSWORD=$MYSQL_PASSWORD
 
+      - MYSQL_DATABASE=$MYSQL_DATABASE
 
+      - MYSQL_USER=$MYSQL_USER

+ 0 - 0
docker-compose/prometheus/exporters/node_exporter/docker-compose.yml → docker-compose/nodeexporter/docker-compose.yml
Xem Tập Tin


+ 0 - 0
docker-compose/prometheus/exporters/Nvidia DGCM exporter/README.md → docker-compose/nvidiadgcm/README.md
Xem Tập Tin


+ 0 - 0
docker-compose/prometheus/exporters/Nvidia DGCM exporter/docker-compose.yml → docker-compose/nvidiadgcm/docker-compose.yml
Xem Tập Tin


+ 0 - 0
docker-compose/prometheus/exporters/Nvidia_smi_exporter/README.md → docker-compose/nvidiasmi/README.md
Xem Tập Tin


+ 0 - 0
docker-compose/prometheus/exporters/Nvidia_smi_exporter/docker-compose.yml → docker-compose/nvidiasmi/docker-compose.yml
Xem Tập Tin


+ 10 - 1
docker-compose/prometheus/README.md
Xem Tập Tin 

@@ -11,6 +11,15 @@ Configure your settings in the `/etc/prometheus/prometheus.yml` file.
 
 
 *For more info visit:* [Official Prometheus Installation Documentation](https://prometheus.io/docs/prometheus/latest/installation/)
 
 
+# Exporters
 
+
 
+TODO: WIP
 
+
 
+- cadvisor
 
+- nodeexporter
 
+- nvidiadgcm
 
+- nvidiasmi
 
+
 
 # Best-Practices & Post-Installation
 
 
 ## Disable HTTP
 
@@ -19,7 +28,7 @@ It's not secure to expose Prometheus via the HTTP protocol.
 
 
 ### Use a Reverse Proxy
 
 
-- [] Use a Reverse Proxy to securely expose administrative services.
 
+- [ ] Use a Reverse Proxy to securely expose administrative services.
 
 
 # Additional Referfences

+ 0 - 21
docker-compose/prometheus/exporters/cadvisor/docker-compose.yml
Xem Tập Tin 

@@ -1,21 +0,0 @@
 
----

-version: '3'

-

-services:

-  cadvisor:

-    image: gcr.io/cadvisor/cadvisor:v0.45.0 # latest tag is not updated...

-                                            # https://github.com/google/cadvisor/issues/3066    

-                                            # To manual check versions: https://github.com/google/cadvisor/releases      

-    container_name: cadvisor

-    # ports:

-    #   - "8080:8080"

-    network_mode: host

-    volumes:

-      - /:/rootfs:ro

-      - /var/run:/var/run:ro

-      - /sys:/sys:ro

-      - /var/lib/docker/:/var/lib/docker:ro

-      - /dev/disk/:/dev/disk:ro

-    devices:

-      - /dev/kmsg

-    restart: unless-stopped

+ 0 - 0
terraform/README.md
Xem Tập Tin