Skip to content

Tywele/ansible_homeserver

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

59 Commits
group_vars/all
group_vars/all
 
 
roles
roles
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
ansible.cfg
ansible.cfg
 
 
inventory.yml
inventory.yml
 
 
run.yml
run.yml
 
 

Repository files navigation

Ansible Homeserver

General Info

This is my Ansible playbook to setup my homeserver running Fedora Server.

This playbook assumes that you have one boot drive and 3 storage drives. 1 of the storage drives is an NVMe drive to store app config data and the other 2 are HDD drives which store other data like images, books and anything else that requires more space than configs.

Services

The following services will be setup with this playbook:

BTRFS Filesystem

The drives will be setup as follows (output from my test VM):

~$ sudo btrfs filesystem show
Label: 'fedora'  uuid: 2ee78a69-ec4f-41bc-af26-3f33d6b38d26
        Total devices 1 FS bytes used 5.16GiB
        devid    1 size 19.00GiB used 7.02GiB path /dev/sda3

Label: 'apps'  uuid: d4a08458-3ac6-429b-a6e5-3528a8ef9c1d
        Total devices 1 FS bytes used 1.18GiB
        devid    1 size 50.00GiB used 4.52GiB path /dev/sdb

Label: 'data'  uuid: 020571bf-743a-45a9-9c8b-4d10aabb8453
        Total devices 2 FS bytes used 37.46MiB
        devid    1 size 400.00GiB used 4.03GiB path /dev/sdc
        devid    2 size 400.00GiB used 4.03GiB path /dev/sdd

Setup

Before using this playbook you need to generate an SSH keypair and name it homeserver and use it to connect to the homerserver once.

After the playbook has run you need to ssh into the server and push the id_ed25519 ssh key that has been generated by the playbook to the Hetzner Storage Box otherwise the rsync cron jobs won't work.

Maintenance

For maintenance I have written tasks to create cron jobs that:

  • take daily snapshots of the apps and data filesystems
  • delete snapshots older than 30 days
  • do monthly scrubs of all filesystems
  • rsyncs apps and data filesystems to a storage box
  • executes short SMART tests daily
  • executes long SMART tests weekly

Contents of the secret.yml

These variables need to be added to the /group_vars/all/vars.yml file if you don't want to store them as an encrypted file.

You can create an Ansible Vault with ansible-vault create secret.yml and edit it with ansible-vault edit secret.yml. When creating you are asked to set a password which is required when editing the file.

immich_postgres_db_password: "secretpassword"
nextcloud_mariadb_db_password: "secretpassword"
nextcloud_mariadb_root_password: "secretpassword"
nextcloud_admin_password: "secretpassword"
admin_username: "admin"
username: "username"
email: "example@test.com"
watchtower_notification_url: "discord://token@id"
domain_name: "domain.tld"
storage_box_address: "uXXXXX@uXXXXX.your-storagebox.de"
borg_backup_password: "secretpassword"

About

Ansible playbook for my homeserver

Topics

ansible homeserver

Resources

Readme

License

GPL-3.0 license
Activity

Stars

5 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Languages