Move the Elasticsearch stack to ns4.

host01 is falling over running everything there. ns4 is secure enough for the logs (volumes are encrypted, I don't think that there are passwords or keys in the logs, just private information).

Move the Elasticsearch stack to ns4.
5c7d2aab · nimrod · ebe13570 · 5c7d2aab · 5c7d2aab
Commit 5c7d2aab authored 4 years ago by nimrod
--- a/renew-certs.yaml
+++ b/renew-certs.yaml
@@ -35,6 +35,8 @@
        domains:
          - autoconfig.nehe.sr
          - autoconfig.shore.co.il
+          - elasticsearch.shore.co.il
+          - kibana.shore.co.il
          - myip.shore.co.il
          - nehe.sr
          - ns4.shore.co.il
@@ -58,9 +60,7 @@
        domains:
          - auth.shore.co.il
          - code.shore.co.il
-          - elasticsearch.shore.co.il
          - git.shore.co.il
-          - kibana.shore.co.il
          - lam.shore.co.il
          - nextcloud.shore.co.il
          - ns1.shore.co.il

--- a/roles/router/files/nsd/shore.co.il
+++ b/roles/router/files/nsd/shore.co.il
@@ -2,7 +2,7 @@
 $TTL 1h
 $ORIGIN shore.co.il.
 @               IN      SOA     ns1     hostmaster (
-        2021051402
+        2021051702
        1h
        5m
        4w
@@ -55,11 +55,11 @@ _caldavs._tcp    IN  SRV  0 1 443 nextcloud
 auth            IN  CNAME   ns1
 autoconfig      IN  CNAME   ns4
 code            IN  CNAME   ns1
-elasticsearch   IN  CNAME   ns1
+elasticsearch   IN  CNAME   ns4
 git             IN  CNAME   ns1
 imap            IN  CNAME   smtp
 jellyfin        IN  CNAME   ns1
-kibana          IN  CNAME   ns1
+kibana          IN  CNAME   ns4
 kodi            IN  CNAME   ns1
 lam             IN  CNAME   ns1
 library         IN  CNAME   ns1