--- # Global vars ansible_ssh_private_key_file: "/etc/secrets/{{ hostvars['console']['node']['uid'] }}/id_console" timezone: "Asia/Seoul" # CA root_cert_filename: "ilnmors_root_ca.crt" intermediate_cert_filename: "ilnmors_intermediate_ca.crt" intermediate_key_filename: "ilnmors_intermediate_ca.key" # local SAN and SSH SAN should be updated manually on host_vars domain: public: "ilnmors.com" internal: "ilnmors.internal" dc: "dc=ilnmors,dc=internal" org: "ilnmors" # DNS configuration including bind and blocky should be set manually. # named.conf.j2 is also set manually. # Check the hosts.j2 when cname records are fixed services: crowdsec: domain: "crowdsec" ports: https: "8080" bind: domain: "bind" ports: dns: "53" blocky: domain: "blocky" ports: https: "443" dns: "53" postgresql: domain: "postgresql" ports: tcp: "5432" # postgresql db connection port subuid: "100998" ldap: domain: "ldap" ports: http: "17170" ldaps: "6360" subuid: "100999" ca: domain: "ca" ports: https: "9000" subuid: "100999" x509-exporter: ports: http: "9793" subuid: "165533" prometheus: domain: "prometheus" ports: https: "9090" subuid: "165533" loki: domain: "loki" ports: https: "3100" subuid: "110000" grafana: domain: "grafana" ports: http: "3000" # Infra server: Internal ports subuid: "100471" caddy: ports: http: "2080" https: "2443" nas: domain: "nas" ports: https: "5001" kopia: domain: "nas" ports: https: "51515" authelia: domain: "authelia" ports: http: "9091" redis: subuid: "100998" vaultwarden: domain: public: "vault" internal: "vault.app" ports: http: "8000" gitea: domain: public: "gitea" internal: "gitea.app" ports: http: "3000" # App server: Public ports subuid: "100999" immich: domain: public: "immich" internal: "immich.app" ports: http: "2283" redis: "6379" immich-ml: ports: http: "3003" paperless: domain: public: "paperless" internal: "paperless.app" ports: http: "8001" redis: "6380" subuid: "100999" manticore: subuid: "100998" affine: domain: public: "affine" internal: "affine.app" ports: http: "3010" redis: "6381" manticore: "9308" nextcloud: domain: public: "nextcloud" internal: "nextcloud.app" ports: http: "8002" redis: "6382" subuid: "100032" collabora: domain: public: "collabora" internal: "collabora.app" ports: http: "9980" subuid: "101000" sure: domain: public: "sure" internal: "sure.app" ports: http: "3001" redis: "6383" subuid: "100999" outline: domain: public: "outline" internal: "outline.app" ports: http: "3002" redis: "6384" subuid: "101000" memos: domain: public: "memos" internal: "memos.app" ports: http: "3004" subuid: "110000" version: packages: sops: "3.12.1" step: "0.30.2" kopia: "0.22.3" blocky: "0.29.0" alloy: "1.16.1" containers: # common caddy: "2.11.2" # infra step: "0.30.2" ldap: "v0.6.3" x509-exporter: "4.1.0" prometheus: "v3.11.3" loki: "3.7.1" grafana: "13.0.1" ## Postgresql postgresql: "18.3" # For immich - https://github.com/immich-app/base-images/blob/main/postgres/versions.yaml # pgvector: "v0.8.1" vectorchord: "1.1.1" # Auth authelia: "4.39.19" # App vaultwarden: "1.36.0" gitea: "1.26.1" redis: "8.6.3" immich: "v2.7.5" paperless: "2.20.15" manticore: "25.0.0" affine: "0.26.3" nextcloud: "33.0.3" collabora: "25.04.9.4.1" sure: "0.7.0-hotfix.2" outline: "1.7.1" memos: "0.28.0"