From 93da86c41ffb19170de4bf5eb4dc13237329383a Mon Sep 17 00:00:00 2001
From: L3D <l3d@c3woc.de>
Date: Fri, 24 Nov 2023 00:23:00 +0100
Subject: [PATCH] Create basic Monitoring

---
 host_vars/mail01.l3d.space/vars.yml           |   1 +
 host_vars/services.l3d.space/vars.yml         |   1 +
 host_vars/services.l3d.space/vault.yml        | 129 +++++++++---------
 host_vars/web01.l3d.space/vars.yml            |   1 +
 .../sites/node_exporter.mail01.l3d.space_tls  |  33 +++++
 .../node_exporter.services.l3d.space_tls      |  33 +++++
 6 files changed, 136 insertions(+), 62 deletions(-)
 create mode 100644 templates/files/nginx/sites/node_exporter.mail01.l3d.space_tls
 create mode 100644 templates/files/nginx/sites/node_exporter.services.l3d.space_tls

diff --git a/host_vars/mail01.l3d.space/vars.yml b/host_vars/mail01.l3d.space/vars.yml
index 4189e07..cf7be59 100644
--- a/host_vars/mail01.l3d.space/vars.yml
+++ b/host_vars/mail01.l3d.space/vars.yml
@@ -49,6 +49,7 @@ nginx_sites:
     webroot:
       user: 'mailwebuser'
   - name: "{{ mailserver_domain }}"
+  - name: 'node_exporter.mail01.l3d.space'
 
 # letsencrypt
 acme_notification_email: "{{ _acme_notification_email }}"
diff --git a/host_vars/services.l3d.space/vars.yml b/host_vars/services.l3d.space/vars.yml
index fc42a23..52ca61f 100644
--- a/host_vars/services.l3d.space/vars.yml
+++ b/host_vars/services.l3d.space/vars.yml
@@ -6,6 +6,7 @@ nginx_sites:
   - name: 'etebase.l3d.ch'
   - name: 'grafana.l3d.ch'
   - name: 'www.grafana.l3d.ch'
+  - name: 'node_exporter.services.l3d.space'
 
 acme_notification_email: "{{ _acme_notification_email }}"
 
diff --git a/host_vars/services.l3d.space/vault.yml b/host_vars/services.l3d.space/vault.yml
index d204d84..3c1cbfb 100644
--- a/host_vars/services.l3d.space/vault.yml
+++ b/host_vars/services.l3d.space/vault.yml
@@ -1,63 +1,68 @@
 $ANSIBLE_VAULT;1.1;AES256
-61333938643866393131363136393132663339663939343135393531636637656239626130643563
-3261313961393462316534383032353266646630383534660a623331383431393136663133373138
-66303830373630393630316666643239303238643961633339323235343531613365653836343834
-6539306234643035350a396534653431663966333035623939376132366665346462306362363837
-66303461356236636634653663616465663238643330633838393935643036366533346137303935
-36393863343537613964316161613331353039633332333230613434643232316135623331383864
-37366432363034643539646465653537656431383032323038376363613664353031346230396331
-30373234373734363864306132303265333432396431323165323661336437353066643138346431
-31633466366133643166356662383935616661386265616136613332393830653731333832633630
-37633535616130666239343061396434366436346431373932613735333665383731303765303432
-61633035316437316566626432613937336131383164346666393730393330373634636165303932
-66663666303938373234646661356433633363336561333066626663313434613731326335333563
-33616563303739376161306638623666653334396666306439303830393938393163643737643338
-32663731636330626232316538353033623263396530303534326266393138613831623739356662
-65353638383938383163333932366563636636663962353433373665636134396435336436363630
-62346561336166313434636235373862613961363961316536633334303138303439643733383465
-66303337373866646531366562373933323031326131323464396335626639306164393462333734
-33623161303836663362346166323765336635653463306637613934623830393366623963313238
-34626463636132396438326332336565666464653230643663303831376564303266366135343761
-61643337373831626631393631643634333239303265666665633662353138336164363163626538
-35333461316636653962303531623264646262663839303665663262376639366463663963613439
-37316431646438333638643262353461663764646635656235323631653633326537346336663235
-61356364356566373938376639393362386131376262356565323731323536353661626662613466
-62663332303135373639643139373934623763646266393663616562383734376666346538616337
-35616134393162356662646536393835396138363634376330656262623138323061356139646361
-66363931613238326530373537346439363133363233303365663933336533303632326336306164
-39636163636335316263643837663936663763646464333532336135333661623636646239666636
-39336231383938333263343039323566343239363836393639373733353635326461306135363861
-31656163363164373262653836653030316330363566616237316261346334653334393664643335
-37633039383832383139343663323238326437396336363433626261333536326533393830393335
-63363230356235643232313130643734306365343761393533643134656631353234303230323136
-35643333383164333164333162656338623530346665643464663561646664613061363334323761
-62376562323535613366356361366461643965623265353866366365366430646332326530646538
-38343831353138633335363561303034333234336239323039383534396165376335396432316636
-35383139373063653130373062346338363039376438383165643737373864316265323464366137
-30323237613439366539386635353230343065343765643136633863666137343161316465363830
-37326563303837333633663933626265626230383434333730366533323838666537356632626136
-32663936303538616362366632383735313265323165613761336565653863306165383066626536
-36346139636434346237363338656237343939323263613064623361623166353737613238626661
-39376363626333656165336435313762396539363733353431633366363938313934303737323066
-35653335633665306233653334383763623837386466313762303335626262316563633034336338
-32626536323439643238356461323233653366376337376633666239323833363864353630623762
-63303732346436666133313831356137306562346636386664306334616362626463663462613334
-39663831313762333163313332633331336433616265616564393039633538613232366661333031
-61626335306561626663346133383063376165623638626166316633643266636435353634313762
-35653434653733386233643366323464653566623537303232306262656234383231653536396337
-36653336386337646163373965363066626166663062333633353631356432316430373163666139
-30626431653463666330656262303831313766343832313035616563333561643166393163343864
-38303062363938303338366432313732663030666337326261653761316433336233663663323764
-35663136643339363964383630646666643435306130626363643137396333343631383333613338
-31333136663364353561633834313335323038316338383830656235653930313564656432623830
-66656639656636303261643333663230376637626264636662363665313432313465333135663739
-32653537346233656535383364366236316133653234336630303835656436376663653833633235
-31626131326337626139373838326535366630383539393661386165313738643535346633346233
-61373530363431396563333361656130353834616234396631616133623265333239356565363664
-33333735356332613265393435306434663536336636353436333537643234333963663664333636
-34393534353835343634346434303139626265626336316430333033336334636236623435323764
-37333034613732343066353533623331386236643864313066373738386463313631633262383763
-34343237336131386433373633626465616465333838633532643933343565333938366139326232
-64306536373637613063306532313561333064623631333834373839393635326336323934626361
-30383562343231656337316636623237383338333039306561376564636436393664656331643334
-3136623335646634336436306264356432366239366131666237
+61353638363639336239346431656231666132323335373464313465353265343661366532363165
+3563396663646334663138393362633832386263643831360a333266383535303138643537663034
+39356134336139613938376231346536343035626434666430353830633033393236353766626361
+6664373534306132300a343131363230633637366232393561333063623763386134346438326132
+31313432353664623933363333326630633539616235326230656634653732623231343636306463
+61326139666639316633626164326532346137363838396566636536376334376635303434346465
+39613730373631396663363530623532373631626335613633383938613161313961373238663366
+65316634376431623761313164643561646431303238376563313630643132653666313430366163
+63656334303431633063303334323064393037663334396265343362663566636564316362656435
+63643965306161366331646235393836626439373932386164323863393461326236323562626266
+34653132323037346339383437326638666639343537363937363939366339383336653331663832
+33613061623762346237303866643535633661626665653336333061663531343363633230643130
+61613133313766336630643538343736663433373539323331353034376437336563626461386366
+30336438343066393666333165343062613830333936356361643736656532313966653263306237
+30303363633230306235383938313731333032313362643836316564316562316661376366316539
+63333135643364393231363631653939656136633638656331633034613135303733346263393833
+64353639383631643432306337663536633638636130316466336562363939333961666564613764
+30343131636334646235653230356536306534333666316534626433646431643936383465306231
+36623134656633616437666137323036346539636235613034383262386536333034353730363163
+35323861643737356239653933353635663830663236326532616634336663626234666438396539
+34316536633061323561373337383466373438316264643166623635353132346365323636376630
+63623361336330646131626136323235663033653763653138306431623530633431356662343738
+66653664363638366233313236623565363338636631656437373439376166323032636266366434
+32353261636330663265373766653062323037343736333032343339626665383131313832383965
+38323936383230373036623539346263393333656236376333373936303439333238383936323764
+37323237656665323565323931643762323730646630306531333936616465643335356539313837
+66666435316638353333643335393765343164633265646234386663306464333336306566303136
+62356166316638333864383539393065383964343763363362663066326163383139623765363533
+34623466373434663864386535633535626135653962373531316530376436363335336331333131
+63303734633465306530313734613538636464663562373061356338363537363932323263313335
+61653536383963666365653261316234643633343937336637373731313635396438373366626235
+37396465343461396663336130356430383866366635356631373230346237613835303461383766
+65356361346439303335353165356366643735323066353333623538396437653764653236366138
+35656439363637343263393436343337316634396339613761333764666535333034303839316434
+31623232356361393633626434343165343933663133376535346330653636363566366130346661
+64656565353066366261383632626132653837326566663732616232643532666164323032393439
+37646163363166613436306133306331653766326263646131343133666263626161383936356130
+66393839616362333239313539346465616565643038333632633432653063376666383539313430
+32333663336230613665613335646330663533376164363830393564333563306432393331643666
+38326136353431656136333833643163623437336436386661366166376130663766623961643439
+39393562656361306138666339343566343563363065336433626162366534356262323830656362
+64643530613038613966393963323533333836376631646139643930633631663837373133613865
+30643961336439636262643262353536646265323134306538626566303539346563363738306533
+61663166663832353133366130303133623733373864616366323330623962613635643335343933
+61303533336638353538656162343166336632653633373632363137393939373439653863633930
+61376164633666396332303265313361346430666233656239336664323862663938646261313239
+39666233313431313636646638313265633061326638336237383064633332346330346639376264
+65613637663163633031663365633631333533353533633739303034636637643431626631366564
+33356164623862363261346638613038613036333538303062386463646164366334306139636537
+34353163393666613835373763346332663135356132653362353132646165646434373661636163
+38653538376634636430313336383330666534386565646537333030303138663762653932626631
+63343231643231386635336632653336373362333939396232626566336135623161363438663136
+66383030376635666337326531353836393535656237313538636432363432386161353734356134
+34363166306266616338326162356130326462363037343733373439386262633639363130653534
+64323239643262303261663131356433393036353536653736613939356666663838383461356337
+61663365653335316162333764323335626363353366386565363561323362306439326139636665
+37663739613738353835643865666564366639326533663236646234333834393464366632383337
+63316530393235373637363564376166373633666236613930646461336665303338326663386337
+64363065646165303639626236333735343063386539363964326264353364343839306639643537
+33636461323034613466343730393363356230383730663962623230666664366164306464353030
+32326163346662623863666538343365353965653632343437373636393966323439333837653062
+33333164316265643432353936363563363733336431336639323839393365373766303538656362
+35653165383838356563643064336262646435323533376536316232623961613163303566343535
+30646165356235363339376133653138323030666239646535383734316161636531386130636664
+66373831616364663130366336316339616565666364623633396433653036336631393332396534
+30346533303262373038336639656263333339346361343166333234313532316531316637376637
+323433373463333162333161663735653535
diff --git a/host_vars/web01.l3d.space/vars.yml b/host_vars/web01.l3d.space/vars.yml
index 7c69d4b..c163ae9 100644
--- a/host_vars/web01.l3d.space/vars.yml
+++ b/host_vars/web01.l3d.space/vars.yml
@@ -193,6 +193,7 @@ nginx_sites:
     webroot:
       user: 'klima'
   - name: 'www.klima-streik.de'
+  - name: 'node_exporter.web01.l3d.space'
 
 acme_notification_email: "{{ _acme_notification_email }}"
 
diff --git a/templates/files/nginx/sites/node_exporter.mail01.l3d.space_tls b/templates/files/nginx/sites/node_exporter.mail01.l3d.space_tls
new file mode 100644
index 0000000..78bb597
--- /dev/null
+++ b/templates/files/nginx/sites/node_exporter.mail01.l3d.space_tls
@@ -0,0 +1,33 @@
+server {
+  listen 443 ssl http2;
+  listen [::]:443 ssl http2;
+
+  server_name node_exporter.mail01.l3d.space;
+
+  include snippets/tls_parameters_{{ site.name }}.snippet.conf;
+  include snippets/tls_certificate_{{ site.name }}.snippet.conf;
+  include snippets/logging_{{ site.name }}.snippet.conf;
+
+
+  location / {
+    charset utf-8;
+    proxy_pass http://localhost:9100;
+    client_max_body_size 256M;
+    proxy_read_timeout 3600;
+    proxy_set_header Host $host;
+    proxy_set_header X-Real-IP $remote_addr;
+    allow 127.0.0.1;  #  allow requests from localhost
+    allow ::1;  #  allow requests from localhost
+    allow {{ prometheus_v4 }};  # allow prometheus IPv4
+    allow {{ prometheus_v6 }};  # allow prometheus IPv6
+    deny all;   # deny all other hosts
+  }
+  location /nginx_status {
+    stub_status;
+    allow 127.0.0.1;  # allow requests from localhost
+    allow ::1;  # allow requests from localhost
+    allow {{ prometheus_v4 }};  # allow prometheus IPv4
+    allow {{ prometheus_v6 }};  # allow prometheus IPv6
+    deny all;   # deny all other hosts
+ }
+}
diff --git a/templates/files/nginx/sites/node_exporter.services.l3d.space_tls b/templates/files/nginx/sites/node_exporter.services.l3d.space_tls
new file mode 100644
index 0000000..6c04546
--- /dev/null
+++ b/templates/files/nginx/sites/node_exporter.services.l3d.space_tls
@@ -0,0 +1,33 @@
+server {
+  listen 443 ssl http2;
+  listen [::]:443 ssl http2;
+
+  server_name node_exporter.services.l3d.space;
+
+  include snippets/tls_parameters_{{ site.name }}.snippet.conf;
+  include snippets/tls_certificate_{{ site.name }}.snippet.conf;
+  include snippets/logging_{{ site.name }}.snippet.conf;
+
+
+  location / {
+    charset utf-8;
+    proxy_pass http://localhost:9100;
+    client_max_body_size 256M;
+    proxy_read_timeout 3600;
+    proxy_set_header Host $host;
+    proxy_set_header X-Real-IP $remote_addr;
+    allow 127.0.0.1;  #  allow requests from localhost
+    allow ::1;  #  allow requests from localhost
+    allow {{ prometheus_v4 }};  # allow prometheus IPv4
+    allow {{ prometheus_v6 }};  # allow prometheus IPv6
+    deny all;   # deny all other hosts
+  }
+  location /nginx_status {
+    stub_status;
+    allow 127.0.0.1;  # allow requests from localhost
+    allow ::1;  # allow requests from localhost
+    allow {{ prometheus_v4 }};  # allow prometheus IPv4
+    allow {{ prometheus_v6 }};  # allow prometheus IPv6
+    deny all;   # deny all other hosts
+ }
+}