Operations grimoire: Difference between revisions
From Nasqueron Agora
(61 intermediate revisions by 3 users not shown) | |||
Line 1: | Line 1: | ||
[[File:Nasqueron Operations Grimoire.jpg|thumb|320px|right|The Nasqueron operations grimoire tries to document the more arcane aspects of our complex infrastructure.]] | |||
Welcome to the Nasqueron operations grimoire (NOG). | Welcome to the Nasqueron operations grimoire (NOG). | ||
This grimoire is a reference about our infrastructure and services hosted with procedures we follow to build, maintain and deploy. | |||
Our infrastructure is open, mainly documented in {{repo|operations}} repository, and we actively encourage contributions from the community. | |||
== Infrastructure == | == Infrastructure == | ||
* [[/Environments]] | |||
* [[/Kubernetes]] | |||
* [[/Docker engine]] | * [[/Docker engine]] | ||
* [[/Salt]] | |||
=== OS-specific === | |||
* [[/FreeBSD]] | |||
* [[/RHEL]] | |||
* [[/Packages repository]] | |||
=== Storage === | |||
* [[/ZFS]] | |||
=== Network === | |||
* [[/Network]] | |||
* [[/DNS]] | |||
* [[/Firewall]] | |||
* [[/IPv6]] | |||
* [https://netbox.nasqueron.org/ NetBox] | |||
== Services == | == Services == | ||
=== Core services === | |||
; Messages queues | |||
* [[/Kafka]] | |||
* [[/RabbitMQ]] | |||
; Databases | |||
* [[/MySQL]] | |||
* [[/PostgreSQL]] | |||
; Ops | |||
* [[/NetBox]] | |||
=== Identity management === | === Identity management === | ||
* [[/Login]] (Auth Grove) | * [[/Login]] (Auth Grove) | ||
=== Collaborative tools === | === Collaborative tools === | ||
* [[/DevCentral]] (Phabricator) | * [[/DevCentral]] (Phabricator) | ||
* [[/Etherpad]] | * [[/Etherpad]] | ||
* [[/Mumble]] | |||
* [[/Mastodon]] (social.nasqueron.org) | |||
* [[/Openfire]] (XMPP) | |||
=== IRC bots === | |||
* [[/Dæghrefn]] (eggdrop) | |||
* [[/Odderon]] (darkbot) | |||
=== Mail === | |||
* [[/Mail]] | |||
* [[/Mail/DKIM]] | |||
* [[/Mail/Sympa]] | |||
=== Web === | |||
; Common documentation for all webserver roles | |||
* [[/Web/Headers]] | |||
; Where to host? | |||
* [[/Docker engine]] for Docker containers front-end | |||
* [[/Alkane]] for PHP and static sites | |||
; SaaS for common applications | |||
* [[MediaWiki SaaS]] | |||
* [[/WordPress]] | |||
; Other sites | |||
* [[/Sites on Eglide]] | |||
* [[/Sites on Ysul]] (currently migrating to Alkane) | |||
; Services for web applications | |||
* [[/Orbeon]] | |||
=== CI/CD === | === CI/CD === | ||
* [[/Broker]] | * [[/Broker]] | ||
* [[/Docker registry]] | |||
* [[/Jenkins]] | * [[/Jenkins]] | ||
* [[/Notifications center]] | * [[/Notifications center]] | ||
* [[/Sentry]] | |||
* [[/Vault]] | * [[/Vault]] | ||
=== Shellserver === | |||
* [[/Eglide/Vault]] | |||
=== Observability === | |||
* [[/Grafana]] | |||
* [[/Prometheus]] | |||
== Services configuration == | == Services configuration == | ||
''This section contains general information not related to a specific service.'' | ''This section contains general information not related to a specific service.'' | ||
* [[/ | * [[/TLS certificates]] (Let's encrypt / letsencrypt) | ||
== Checklists == | == Checklists == | ||
=== Infrastructure === | |||
* [[/How to add a server to the Nasqueron servers pool]] | |||
* [[/How to attach a new virtual disk]] | |||
* [[/Reboot checklist]] | |||
=== Network === | |||
* [[/Checklist router post-restart]] | |||
=== Docker === | |||
* [[/Restart a Docker engine]] | * [[/Restart a Docker engine]] | ||
* [[/Dwellers to DevCentral]] | * [[/Dwellers to DevCentral]] | ||
* [[/Git operations in production containers]] | * [[/Git operations in production containers]] | ||
* [[/Add a service to Docker PaaS]] | |||
* [[/Docker Hub]] | |||
=== Salt === | |||
* [[/Operations repository]] | |||
* [[/Deploy with Salt]] | * [[/Deploy with Salt]] | ||
* [[/Create and revoke user accounts on Salt servers]] | |||
* [[/Provision user homefiles]] | |||
== SIG == | |||
* [[/Onboarding]] | |||
== Appendices == | == Appendices == | ||
* [[/Changelog]] | |||
* [[/Contacts]] | |||
* [[/Contribute]] | |||
* [[/Decom]] | |||
* [[/Evaluated products]] | |||
* [[/External services]] | |||
* [[/Incidents]] | |||
* [[/Legacy archive]] | |||
* [[/Policies]] | * [[/Policies]] | ||
* [[/ | * [[/Old content report]] | ||
* [[/Who]] | |||
[[Category:Operations grimoire|*]] | |||
[[Category:Reference]] | [[Category:Reference]] |
Latest revision as of 13:00, 10 November 2024
Welcome to the Nasqueron operations grimoire (NOG).
This grimoire is a reference about our infrastructure and services hosted with procedures we follow to build, maintain and deploy.
Our infrastructure is open, mainly documented in operations repository, and we actively encourage contributions from the community.
Infrastructure
OS-specific
Storage
Network
Services
Core services
- Messages queues
- Databases
- Ops
Identity management
- /Login (Auth Grove)
Collaborative tools
- /DevCentral (Phabricator)
- /Etherpad
- /Mumble
- /Mastodon (social.nasqueron.org)
- /Openfire (XMPP)
IRC bots
Web
- Common documentation for all webserver roles
- Where to host?
- /Docker engine for Docker containers front-end
- /Alkane for PHP and static sites
- SaaS for common applications
- Other sites
- /Sites on Eglide
- /Sites on Ysul (currently migrating to Alkane)
- Services for web applications
CI/CD
Shellserver
Observability
Services configuration
This section contains general information not related to a specific service.
- /TLS certificates (Let's encrypt / letsencrypt)
Checklists
Infrastructure
- /How to add a server to the Nasqueron servers pool
- /How to attach a new virtual disk
- /Reboot checklist
Network
Docker
- /Restart a Docker engine
- /Dwellers to DevCentral
- /Git operations in production containers
- /Add a service to Docker PaaS
- /Docker Hub
Salt
- /Operations repository
- /Deploy with Salt
- /Create and revoke user accounts on Salt servers
- /Provision user homefiles