viktor/infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
No description
1534 commits 2 branches 0 tags 2.3 GiB
Find a file
Viktor Barzin 0c18a86a7b
[ci skip] Fix all active Prometheus alerts 
- meshcentral: rename port from "https" to "http" — MeshCentral serves
  plain HTTP when REVERSE_PROXY=true, but Traefik inferred HTTPS from the
  port name, causing 100% 5xx errors
- osm-routing/otp: scale to 0 — TfL GTFS data expired, OTP crash-loops
  trying to build graph with no valid transit trips
- wireguard: add prometheus.io/port=9586 annotation — without it,
  Prometheus tried scraping all container ports (51820 UDP, 80)
- travel-blog: remove stale prometheus.io annotations and dead port 9113
  — nginx-exporter sidecar was commented out but annotations remained
- dawarich: remove prometheus.io annotations — exporter env vars are
  commented out so nothing listens on port 9394
- monitoring: raise CPU temp threshold 60°C→75°C (E5-2699 v4 Tcase is
  79°C), lower registry cache threshold 50%→25%, add minimum traffic
  floor (>0.1 req/s) to 4xx/5xx rate alerts to prevent false positives
  on low-traffic services
2026-02-11 22:40:56 +00:00
.claude [ci skip] Add skill: traefik-rewrite-body-compression 2026-02-11 21:42:07 +00:00
.git-crypt Add 1 git-crypt collaborator [ci skip] 2025-10-24 18:00:00 +00:00
cli update @ record as well 2024-12-02 21:51:05 +00:00
diagram add link to diagramms lib [ci skip] 2024-01-07 02:38:27 +00:00
modules [ci skip] Fix all active Prometheus alerts 2026-02-11 22:40:56 +00:00
playbooks add pve exporter playbook + pve exporter in k8s [ci skip] 2025-12-26 16:23:17 +00:00
scripts upgrade to k8s 1.34.2 [ci skip] 2025-12-18 12:37:14 +00:00
secrets add the nfs dirs 2026-02-08 02:29:48 +00:00
.drone.yml touch empty private key to enable tfa in drone 2025-11-29 12:06:10 +00:00
.gitattributes add git-crypt terraform 2021-02-14 18:17:40 +00:00
.gitignore add claude files to gitignore [ci skip] 2026-01-18 13:40:31 +00:00
.terraform.lock.hcl [ci skip] Deploy health dashboard service 2026-02-08 01:54:24 +00:00
corefils.yaml disable coredns logs as we dont need them in prod[ci skip] 2025-01-25 17:22:38 +00:00
LICENSE.txt Drone CI Update TLS Certificates Commit 2025-10-12 00:13:18 +00:00
main.tf [ci skip] Deploy health dashboard service 2026-02-08 01:54:24 +00:00
migrate_tfstate.txt initial 2021-02-08 20:02:17 +00:00
README.md add git-crypt setup instructions [ci skip] 2025-10-24 18:09:57 +00:00
terraform.tfstate [ci skip] Fix CrowdSec to monitor Traefik and add Slack notifications 2026-02-11 22:25:03 +00:00
terraform.tfvars [ci skip] Deploy Gramps Web genealogy service 2026-02-08 02:30:18 +00:00
terraform_1.10.3_linux_amd64.zip Drone CI Update TLS Certificates Commit 2025-10-12 00:13:18 +00:00
versions.tf upgrade proxmox provider and some other tf [ci skip] 2025-12-18 11:41:33 +00:00

README.md

Build Status

This repo contains my infra-as-code sources.

My infrastructure is built using Terraform, Kubernetes and CI/CD is done using Drone CI.

Read more by visiting my website: https://viktorbarzin.me

git-crypt setup

To decrypt the secrets, you need to setup git-crypt.

  1. Install git-crypt.
  2. Setup gpg keys on the machine
  3. git-crypt unlock

This will unlock the secrets and will lock them on commit