diff --git a/Ansible/renew-certs.yaml b/Ansible/renew-certs.yaml
index 4b5c6bbb36c77c95f7ea62eec4d872bc87f80575..02cac5eb1c340afd23bd4017ca97504fa0bf0ce4 100644
--- a/Ansible/renew-certs.yaml
+++ b/Ansible/renew-certs.yaml
@@ -37,8 +37,6 @@
- autoconfig.nehes.co
- autoconfig.nehe.sr
- autoconfig.shore.co.il
- - elasticsearch.shore.co.il
- - kibana.shore.co.il
- myip.shore.co.il
- nehes.co
- nehe.sr
@@ -70,7 +68,6 @@
- ns1.shore.co.il
- notify.shore.co.il
- matrix.shore.co.il
- - sogo.shore.co.il
- vouch.shore.co.il
- zpush.shore.co.il
handlers:
diff --git a/Ansible/roles/router/files/filebeat.yml b/Ansible/roles/router/files/filebeat.yml
deleted file mode 100644
index fe2bf08cc9538568bdeb6fcbd6a58c2bdcc6f02a..0000000000000000000000000000000000000000
--- a/Ansible/roles/router/files/filebeat.yml
+++ /dev/null
@@ -1,27 +0,0 @@
----
-output.elasticsearch:
- hosts:
- - https://elasticsearch.shore.co.il:443
-
-logging:
- level: warning
- json: true
- to_syslog: true
- metrics.enabled: false
-
-processors:
- - add_host_metadata: ~
-
-filebeat:
- inputs:
- - type: log
- enabled: true
- paths:
- - /var/log/*.log
- - /var/log/authlog
- - /var/log/daemon
-
- config.modules:
- path: ${path.config}/modules.d/*.yml
- reload:
- enabled: false
diff --git a/Ansible/roles/router/files/metricbeat.yml b/Ansible/roles/router/files/metricbeat.yml
deleted file mode 100644
index 3d9c73e273d879835b0521ab7047cfc9710ebf48..0000000000000000000000000000000000000000
--- a/Ansible/roles/router/files/metricbeat.yml
+++ /dev/null
@@ -1,33 +0,0 @@
----
-output.elasticsearch:
- hosts:
- - https://elasticsearch.shore.co.il:443
-
-logging:
- level: warning
- json: true
- to_syslog: true
- metrics.enabled: false
-
-# processors:
-# - add_host_metadata: ~
-
-metricbeat.config.modules:
- path: ${path.config}/modules.d/*.yml
- reload.enabled: false
-
-metricbeat.modules:
- - module: system
- metricsets:
- - cpu
- - load
- - memory
- # - network
- # - process
- # - process_summary
- - uptime
- - socket_summary
- # - diskio
- - filesystem
- - fsstat
- # - service
diff --git a/Ansible/roles/router/files/nsd/shore.co.il b/Ansible/roles/router/files/nsd/shore.co.il
index 14e6fda873ff1ef70d23479a3f6ce477d747334a..2a7fa83290cd498852fdedec2aa7f00787c652b3 100644
--- a/Ansible/roles/router/files/nsd/shore.co.il
+++ b/Ansible/roles/router/files/nsd/shore.co.il
@@ -2,7 +2,7 @@
$TTL 1h
$ORIGIN shore.co.il.
@ IN SOA ns1 hostmaster (
- 2023121501 ; Serial
+ 2024012601 ; Serial
4h ; Refresh
1h ; Retry
4w ; Expire
@@ -56,11 +56,9 @@ _caldavs._tcp IN SRV 0 1 443 nextcloud
auth IN CNAME ns1
autoconfig IN CNAME ns4
code IN CNAME ns1
-elasticsearch IN CNAME ns4
git IN CNAME ns1
imap IN CNAME smtp
jellyfin IN CNAME ns1
-kibana IN CNAME ns4
kodi IN CNAME ns1
lam IN CNAME ns1
library IN CNAME ns1
@@ -70,7 +68,6 @@ myip IN CNAME ns4
nextcloud IN CNAME ns1
notify IN CNAME ns1
registry IN CNAME ns4
-sogo IN CNAME ns1
transmission IN CNAME ns1
vouch IN CNAME ns1
www IN CNAME ns4
diff --git a/Ansible/roles/router/files/packetbeat.yml b/Ansible/roles/router/files/packetbeat.yml
deleted file mode 100644
index 07b3b8a66cd7df7d5bacda5fe8d8851e2af7e827..0000000000000000000000000000000000000000
--- a/Ansible/roles/router/files/packetbeat.yml
+++ /dev/null
@@ -1,34 +0,0 @@
----
-output.elasticsearch:
- hosts:
- - https://elasticsearch.shore.co.il:443
-
-logging:
- level: warning
- json: true
- to_syslog: true
- metrics.enabled: false
-
-# processors:
-# - add_host_metadata: ~
-
-packetbeat:
- interfaces.device: em1
- protocols:
- - type: icmp
- enabled: true
- - type: dns
- enabled: true
- - type: http
- enabled: true
- ports:
- - 80
- - type: tls
- enabled: true
- ports:
- - 443
- # - type: dhcp
- # enabled: true
- # ports:
- # - 67
- # - 68
diff --git a/Ansible/roles/router/handlers/main.yaml b/Ansible/roles/router/handlers/main.yaml
index 24920ae848b061b8d1da1d76e1f03ee9cb65a7c4..835727acbff84d07f0206f74c1e1e780903697c0 100644
--- a/Ansible/roles/router/handlers/main.yaml
+++ b/Ansible/roles/router/handlers/main.yaml
@@ -71,21 +71,6 @@
name: sshd
state: restarted
-- name: Restart the filebeat daemon
- ansible.builtin.service:
- name: filebeat
- state: restarted
-
-- name: Restart the metricbeat daemon
- ansible.builtin.service:
- name: metricbeat
- state: restarted
-
-- name: Restart the packetbeat daemon
- ansible.builtin.service:
- name: packetbeat
- state: restarted
-
- name: Message about restarting the machine
ansible.builtin.debug:
msg: The {{ ansible_facts.hostname }} needs to be restarted
diff --git a/Ansible/roles/router/tasks/main.yaml b/Ansible/roles/router/tasks/main.yaml
index a0f292c3b545d3028ce864eef64e8e876ad5b0c7..4171c12338b1ff3253a58f8c0bd5d8b092dbe070 100644
--- a/Ansible/roles/router/tasks/main.yaml
+++ b/Ansible/roles/router/tasks/main.yaml
@@ -519,39 +519,3 @@
tags:
- cron
- mail
-
-- name: Install beats
- loop: &beats
- - filebeat
- - metricbeat
- - packetbeat
- community.general.openbsd_pkg:
- name: '{{ item }}'
- state: present
- tags:
- - packages
- - beats
-
-- name: Configure beats
- loop: *beats
- ansible.builtin.copy:
- backup: true
- dest: '/etc/{{ item }}/{{ item }}.yml'
- group: wheel
- mode: 0o0644
- owner: root
- src: '{{ item }}.yml'
- validate: '{{ item }} test config -c %s'
- notify:
- - Restart the {{ item }} daemon
- tags:
- - beats
-
-- name: Enable beats
- loop: *beats
- ansible.builtin.service:
- enabled: true
- name: '{{ item }}'
- state: started
- tags:
- - beats
diff --git a/Compose/web-proxy/host01/conf.d/sogo.shore.co.il.conf b/Compose/web-proxy/host01/conf.d/sogo.shore.co.il.conf
deleted file mode 100644
index 09dcaa4874b7295f50736a4e69171e44539ae2f0..0000000000000000000000000000000000000000
--- a/Compose/web-proxy/host01/conf.d/sogo.shore.co.il.conf
+++ /dev/null
@@ -1,41 +0,0 @@
-# vim: ft=nginx
-map $host $sogo { default sogo; }
-
-server {
- listen 80;
- listen [::]:80;
- server_name sogo.shore.co.il;
- include snippets/robots-disallow-all.conf;
- include snippets/ads-txt.conf;
- include snippets/security-txt.conf;
- include snippets/www-acme-challenge.conf;
- include snippets/redirect-https.conf;
-}
-
-server {
- listen 443 ssl;
- listen [::]:443 ssl;
- http2 on;
- server_name sogo.shore.co.il;
- include snippets/robots-disallow-all.conf;
- include snippets/ads-txt.conf;
- include snippets/security-txt.conf;
- include snippets/ssl-modern.conf;
-
- location / { return 301 https://$host/SOGo/; }
- location /SOGo { return 301 https://$host/SOGo/; }
- location /SOGo/ {
- proxy_pass http://$sogo:20000$request_uri;
- proxy_http_version 1.1;
- include snippets/proxy-headers.conf;
- proxy_hide_header X-Frame-Options;
- include snippets/allow-private-ips.conf;
-
- # Copied from http://wiki.sogo.nu/nginxSettings
- proxy_set_header x-webobjects-server-protocol HTTP/1.1;
- proxy_set_header x-webobjects-remote-host $sogo;
- proxy_set_header x-webobjects-server-name $server_name;
- proxy_set_header x-webobjects-server-url $scheme://$host;
- proxy_set_header x-webobjects-server-port $server_port;
- }
-}
diff --git a/Compose/web-proxy/host01/docker-compose.yml b/Compose/web-proxy/host01/docker-compose.yml
index b7f28f04ae31d32036c5254eec406a3b3efa1c8a..43c9654291eae08dc5b9df7eb9ccc3a3bbe08592 100644
--- a/Compose/web-proxy/host01/docker-compose.yml
+++ b/Compose/web-proxy/host01/docker-compose.yml
@@ -17,7 +17,6 @@ services:
- lam.shore.co.il
- matrix.shore.co.il
- mta-sts.shore.co.il
- - sogo.shore.co.il
- vouch.shore.co.il
- zpush.shore.co.il
ports:
diff --git a/Compose/web-proxy/ns4/conf.d/elasticsearch.shore.co.il.conf b/Compose/web-proxy/ns4/conf.d/elasticsearch.shore.co.il.conf
deleted file mode 100644
index 77b517003709ece5006cc892db4f031114208c36..0000000000000000000000000000000000000000
--- a/Compose/web-proxy/ns4/conf.d/elasticsearch.shore.co.il.conf
+++ /dev/null
@@ -1,30 +0,0 @@
-# vim: ft=nginx
-map $host $es { default elasticsearch; }
-
-server {
- listen 80;
- listen [::]:80;
- server_name elasticsearch.shore.co.il;
- include snippets/robots-disallow-all.conf;
- include snippets/ads-txt.conf;
- include snippets/security-txt.conf;
- include snippets/www-acme-challenge.conf;
- include snippets/redirect-https.conf;
-}
-
-server {
- listen 443 ssl;
- listen [::]:443 ssl;
- http2 on;
- server_name elasticsearch.shore.co.il;
- include snippets/robots-disallow-all.conf;
- include snippets/ads-txt.conf;
- include snippets/security-txt.conf;
- include snippets/ssl-modern.conf;
-
- location / {
- proxy_pass http://$es:9200$request_uri;
- proxy_http_version 1.1;
- include snippets/allow-shore-ips.conf;
- }
-}
diff --git a/Compose/web-proxy/ns4/conf.d/kibana.shore.co.il.conf b/Compose/web-proxy/ns4/conf.d/kibana.shore.co.il.conf
deleted file mode 100644
index 3e4ba7b279493fafb87d2679d489470288396105..0000000000000000000000000000000000000000
--- a/Compose/web-proxy/ns4/conf.d/kibana.shore.co.il.conf
+++ /dev/null
@@ -1,31 +0,0 @@
-# vim: ft=nginx
-map $host $kibana { default kibana; }
-
-server {
- listen 80;
- listen [::]:80;
- server_name kibana.shore.co.il;
- include snippets/robots-disallow-all.conf;
- include snippets/ads-txt.conf;
- include snippets/security-txt.conf;
- include snippets/www-acme-challenge.conf;
- include snippets/redirect-https.conf;
-}
-
-server {
- listen 443 ssl;
- listen [::]:443 ssl;
- http2 on;
- server_name kibana.shore.co.il;
- include snippets/robots-disallow-all.conf;
- include snippets/ads-txt.conf;
- include snippets/security-txt.conf;
- include snippets/ssl-modern.conf;
- include snippets/vouch.conf;
-
- location / {
- proxy_pass http://$kibana:5601$request_uri;
- proxy_http_version 1.1;
- include snippets/proxy-headers.conf;
- }
-}