From 5c7d2aabb68352fce8daf3d264ce4d3b46c5933a Mon Sep 17 00:00:00 2001
From: Adar Nimrod <nimrod@shore.co.il>
Date: Mon, 17 May 2021 00:11:35 +0300
Subject: [PATCH] Move the Elasticsearch stack to ns4.
host01 is falling over running everything there. ns4 is secure enough
for the logs (volumes are encrypted, I don't think that there are
passwords or keys in the logs, just private information).
---
renew-certs.yaml | 4 ++--
roles/router/files/nsd/shore.co.il | 6 +++---
2 files changed, 5 insertions(+), 5 deletions(-)
diff --git a/renew-certs.yaml b/renew-certs.yaml
index c148e28..c59a439 100644
--- a/renew-certs.yaml
+++ b/renew-certs.yaml
@@ -35,6 +35,8 @@
domains:
- autoconfig.nehe.sr
- autoconfig.shore.co.il
+ - elasticsearch.shore.co.il
+ - kibana.shore.co.il
- myip.shore.co.il
- nehe.sr
- ns4.shore.co.il
@@ -58,9 +60,7 @@
domains:
- auth.shore.co.il
- code.shore.co.il
- - elasticsearch.shore.co.il
- git.shore.co.il
- - kibana.shore.co.il
- lam.shore.co.il
- nextcloud.shore.co.il
- ns1.shore.co.il
diff --git a/roles/router/files/nsd/shore.co.il b/roles/router/files/nsd/shore.co.il
index 4d22864..4c8f647 100644
--- a/roles/router/files/nsd/shore.co.il
+++ b/roles/router/files/nsd/shore.co.il
@@ -2,7 +2,7 @@
$TTL 1h
$ORIGIN shore.co.il.
@ IN SOA ns1 hostmaster (
- 2021051402
+ 2021051702
1h
5m
4w
@@ -55,11 +55,11 @@ _caldavs._tcp IN SRV 0 1 443 nextcloud
auth IN CNAME ns1
autoconfig IN CNAME ns4
code IN CNAME ns1
-elasticsearch IN CNAME ns1
+elasticsearch IN CNAME ns4
git IN CNAME ns1
imap IN CNAME smtp
jellyfin IN CNAME ns1
-kibana IN CNAME ns1
+kibana IN CNAME ns4
kodi IN CNAME ns1
lam IN CNAME ns1
library IN CNAME ns1
--
GitLab