ansible/inventory.yml

all:
  vars:
    ansible_python_interpreter: /usr/bin/python3

vps:
  hosts:
    front1.contabo.catgrl.org:
      ansible_host: 31.220.79.204
      zone: contabo
    # front1.faimaison.catgrl.org:
      # ansible_host:
  vars:
    dns_servers:
      # The order is important!
      - 10.90.10.100
      # - 10.90.30.100
      - 1.1.1.1

britaliope:
  hosts:
    gw.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.254
    rp.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.1
    web.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.2
    mail.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.3
    sso.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.4
    git.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.5
    pmg2.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.6
    vault.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.7
    webmail.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.8
    bookstack.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.9
      ansible_user: root
    dns.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.100
    dns-ext.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.101
    pg.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.102
    ldap.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.103
    ilb.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.104
    prom.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.105
    tests.britaliope.intra.catgrl.org:
      ansible_host: 10.90.10.249
  vars:
    # The order is important!
    dns_servers:
      - 10.90.10.100
      # - 10.90.30.100
      - 1.1.1.1
    local_ilb: ilb.britaliope.intra.catgrl.org
    local_ldap: ldap.britaliope.intra.catgrl.org
    local_alias: web.britaliope.intra.catgrl.org
    local_monitoring: prom.britaliope.intra.catgrl.org
    zone: britaliope

# metz:
#   hosts:
#     gw.metz.intra.catgrl.org:
#       ansible_host: 10.90.30.254
#     rp.metz.intra.catgrl.org:
#       ansible_host: 10.90.30.1
#     web.metz.intra.catgrl.org:
#       ansible_host: 10.90.30.2
#     mail.metz.intra.catgrl.org:
#       ansible_host: 10.90.30.3
#     sso.metz.intra.catgrl.org:
#       ansible_host: 10.90.30.4
#     git.metz.intra.catgrl.org:
#       ansible_host: 10.90.30.5
#     pmg3.metz.intra.catgrl.org:
#       ansible_host: 10.90.30.6
#     vault.metz.intra.catgrl.org:
#       ansible_host: 10.90.30.7
#     webmail.metz.intra.catgrl.org:
#       ansible_host: 10.90.30.8
#     dns.metz.intra.catgrl.org:
#       ansible_host: 10.90.30.100
#     dns-ext.metz.intra.catgrl.org:
#       ansible_host: 10.90.30.101
#     pg.metz.intra.catgrl.org:
#       ansible_host: 10.90.30.102
#     ldap.metz.intra.catgrl.org:
#       ansible_host: 10.90.30.103
#     ilb.metz.intra.catgrl.org:
#       ansible_host: 10.90.30.104
#     prom.metz.intra.catgrl.org:
#       ansible_host: 10.90.30.105
#   vars:
#     # The order is important!
#     dns_servers:
#       - 10.90.30.100
#       - 10.90.10.100
#       - 1.1.1.1
#     local_ilb: ilb.metz.intra.catgrl.org
#     local_ldap: ldap.metz.intra.catgrl.org
#     local_alias: web.metz.intra.catgrl.org
#     local_monitoring: prom.metz.intra.catgrl.org
#     zone: metz

wg:
  hosts:
    gw.britaliope.wg.intra.catgrl.org:
      ansible_host: 10.90.200.10
    # gw.metz.wg.intra.catgrl.org:
    #   ansible_host: 10.90.200.30
    front1.contabo.wg.intra.catgrl.org:
      ansible_host: 10.90.200.120
    backup.faercol.wg.intra.catgrl.org:
      ansible_host: 10.90.200.210

backup:
  hosts:
    backup.faercol.wg.intra.catgrl.org:
  vars:
    # The order is important!
    dns_servers:
      - 10.90.10.100
      - 10.90.30.100
      - 1.1.1.1
    zone: faercol


# metz-hw:
#   hosts:
#     nya.metz.intra.catgrl.org:
#       ansible_host: 10.90.0.1
#     abanatae.metz.catgrl.org:
#       ansible_host: 193.48.225.90
#   vars:
#     # The order is important!
#     dns_servers:
#       - 10.90.10.100
#       - 10.90.30.100
#       - 1.1.1.1
#     zone: metz

lxc:
  children:
    britaliope:
    # metz:
    backup:
  vars:
    # ansible_ssh_common_args: '-J front1.contabo.catgrl.org'
    ansible_ssh_common_args: '-J 31.220.79.204'

managed:
  children:
    vps:
    lxc:
    backup:
    # metz-hw:

ilb:
  hosts:
    ilb.britaliope.intra.catgrl.org:
    # ilb.metz.intra.catgrl.org:

docker:
  hosts:
    ldap.britaliope.intra.catgrl.org:
    # ldap.metz.intra.catgrl.org:
    git.britaliope.intra.catgrl.org:
    # git.metz.intra.catgrl.org:
    vault.britaliope.intra.catgrl.org:
    # vault.metz.intra.catgrl.org:
    bookstack.britaliope.intra.catgrl.org:

wireguard:
  hosts:
    front1.contabo.catgrl.org:
    gw.britaliope.intra.catgrl.org:
    # gw.metz.intra.catgrl.org:
    backup.faercol.wg.intra.catgrl.org:

dns:
  hosts:
    dns.britaliope.intra.catgrl.org:
      is_master: True
    # dns.metz.intra.catgrl.org:
    #   is_master: False

dns_ext:
  hosts:
    dns-ext.britaliope.intra.catgrl.org:
      is_master: True
    # dns-ext.metz.intra.catgrl.org:
    #   is_master: False

rp:
  hosts:
    rp.britaliope.intra.catgrl.org:
    # rp.metz.intra.catgrl.org:

website:
  hosts:
    web.britaliope.intra.catgrl.org:
    # web.metz.intra.catgrl.org:

acme:
  children:
    rp:
      hosts:
        rp.britaliope.intra.catgrl.org:
        # rp.metz.intra.catgrl.org:
      vars:
        acme:
          - acme_domain: catgrl.org
            acme_alias: []
            renewal_hook: systemctl restart nginx
          - acme_domain: auth.catgrl.org
            acme_alias:
              - manager.catgrl.org
              - lldap.catgrl.org
              - alias.catgrl.org
              - graph.catgrl.org
            renewal_hook: systemctl restart nginx
          - acme_domain: vault.catgrl.org
            acme_alias: []
            renewal_hook: systemctl restart nginx
          - acme_domain: autoconfig.catgrl.org
            acme_alias: []
            renewal_hook: systemctl restart nginx
          - acme_domain: git.catgrl.org
            acme_alias: []
            renewal_hook: systemctl restart nginx
          - acme_domain: webmail.catgrl.org
            acme_alias: []
            renewal_hook: systemctl restart nginx
          - acme_domain: bookstack.catgrl.org
            acme_alias: []
            renewal_hook: systemctl restart nginx
    mail:
      hosts:
        mail.britaliope.intra.catgrl.org:
        # mail.metz.intra.catgrl.org:
      vars:
        acme:
          - acme_domain: imap.catgrl.org
            acme_alias:
              - pop.catgrl.org
              - smtp.catgrl.org
            renewal_hook: systemctl restart dovecot

postgres:
  hosts:
    pg.britaliope.intra.catgrl.org:
      is_master: True
    # pg.metz.intra.catgrl.org:
    #   is_master: False

ldap:
  hosts:
    ldap.britaliope.intra.catgrl.org:
    # ldap.metz.intra.catgrl.org:

sso:
  hosts:
    sso.britaliope.intra.catgrl.org:
    # sso.metz.intra.catgrl.org:

forgejo:
  hosts:
    git.britaliope.intra.catgrl.org:
    # git.metz.intra.catgrl.org:

backend-mail:
  hosts:
    mail.britaliope.intra.catgrl.org:
      is_master: True
    # mail.metz.intra.catgrl.org:
    #   is_master: False

pmg:
  hosts:
    pmg2.britaliope.intra.catgrl.org:
      is_master: True
    # pmg3.metz.intra.catgrl.org:
    #   is_master: False

vault:
  hosts:
    vault.britaliope.intra.catgrl.org:
    # vault.metz.intra.catgrl.org:

webmail:
  hosts:
    webmail.britaliope.intra.catgrl.org:
    # webmail.metz.intra.catgrl.org:

monitoring:
  hosts:
    prom.britaliope.intra.catgrl.org:
    # prom.metz.intra.catgrl.org:

bookstack:
  hosts:
    bookstack.britaliope.intra.catgrl.org: