The edit can be undone. Please check the comparison below to verify that this is what you want to do, and then publish the changes below to finish undoing the edit.
Latest revision | Your text | ||
Line 2: | Line 2: | ||
|name=dockerserver | |name=dockerserver | ||
|description=Docker-Instanzen | |description=Docker-Instanzen | ||
|os=Debian | |os=Debian 9.8 | ||
|location=Host:Helios | |location=Host:Helios | ||
|purpose=Container hosten | |purpose=Container hosten | ||
|disk=250GB | |disk=250GB | ||
|ram= | |ram=4GiB | ||
|admin_toolkit=Yes | |admin_toolkit=Yes | ||
|ssh_pam=Yes | |ssh_pam=Yes | ||
Line 12: | Line 12: | ||
|ownership=virtual | |ownership=virtual | ||
|use=ask | |use=ask | ||
|admins=magluz, marudor, nomaster, ytvwld | |admins=magluz, marudor, nomaster, xchange, ytvwld | ||
|netbox_url=https://netbox.chaosdorf.space/virtualization/virtual-machines/1/ | |netbox_url=https://netbox.chaosdorf.space/virtualization/virtual-machines/1/ | ||
}} | }} | ||
== | == Prittstift aktualisieren == | ||
docker pull telegnom/labello | |||
systemctl stop prittstift.service | |||
docker rm prittstift | |||
docker create --name prittstift --env-file prittstift.env -p 8001:8000 -v prittstift:/opt/labello/fonts telegnom/labello download_font | |||
systemctl start prittstift.service | |||
== | == Labello aktualisieren == | ||
=== | docker pull chaosdorf/labello | ||
systemctl stop labello.service | |||
docker rm labello | |||
docker create --name=labello -p 127.0.0.1:8000:8000 --mount type=bind,source=(pwd)/labello-secrets,destination=/run/secrets,readonly=true chaosdorf/labello | |||
systemctl start labello.service | |||
== mpd2mqtt aktualisieren == | |||
docker pull chaosdorf/mpd-mqtt-gateway | |||
systemctl stop mpd2mqtt.service | |||
docker rm mpd2mqtt | |||
docker create --name mpd2mqtt --dns=172.22.26.9 --mount type=bind,source=(pwd)/mpd2mqtt-secrets,destination=/run/secrets,readonly=true chaosdorf/mpd-mqtt-gateway | |||
systemctl start mpd2mqtt.service | |||
== dashpi aktualisieren == | |||
docker pull chaosdorf/dashpi:latest | |||
systemctl stop dashpi.service | |||
docker rm dashpi | |||
docker create --name dashpi -p 3030:3030 --dns=172.22.26.9 --env-file=dashpi.env --mount type=bind,source=(pwd)/dashpi-secrets,destination=/run/secrets,readonly=true chaosdorf/dashpi:latest | |||
systemctl start dashpi.service | |||
== shairplay aktualisieren == | |||
docker pull chaosdorf/shairplay | |||
systemctl stop shairplay.service | |||
docker rm shairplay | |||
docker create --name shairplay --dns=172.22.26.9 --network host --env-file shairplay.env chaosdorf/shairplay | |||
systemctl start shairplay.service | |||
== pulseweb aktualisieren == | |||
docker pull chaosdorf/pawebcontrol | |||
systemctl stop pulseweb.service | |||
docker rm pulseweb | |||
docker create --name pulseweb --dns 172.22.26.9 -p 8080:8080 --env-file pulseweb.env chaosdorf/pawebcontrol | |||
systemctl start pulseweb.service | |||
== ympd aktualisieren == | |||
docker pull chaosdorf/ympd | |||
systemctl stop ympd.service | |||
docker rm ympd | |||
docker create --name ympd --dns 172.22.26.9 -p 8082:8080 chaosdorf/ympd | |||
systemctl start ympd.service | |||
== fftalks aktualisieren == | |||
docker pull chaosdorf/freitagsfoo-web | |||
systemctl stop fftalks.service | |||
docker rm fftalks | |||
docker create --name fftalks -p 4000:5000 --mount type=bind,source=(pwd)/docker-stacks/configs/fftalks.cfg,destination=/etc/freitagsfoo-web.cfg,readonly=true --mount type=bind,source=(pwd)/fftalks-secrets,destination=/run/secrets,readonly=true chaosdorf/freitagsfoo-web | |||
systemctl start fftalks.service | |||
== telemete aktualisieren == | |||
docker pull ytvwld/telemete # vorher bauen und pushen | |||
systemctl stop telemete.service | |||
docker rm telemete | |||
docker create --name telemete --env-file telemete.env -v (pwd)/telemete-data:/usr/src/app/data --mount type=bind,source=(pwd)/docker-stacks/configs/telemete.toml,destination=/etc/telemete.toml,readonly=true --mount type=bind,source=(pwd)/telemete-secrets,destination=/run/secrets,readonly=true ytvwld/telemete | |||
systemctl start telemete.service | |||
== mete == | |||
Mete läuft über docker-compose, allerdings nicht vom Dockerserver aus. Die folgenden Befehle müssen also '''lokal''' im Verzeichnis mit dem Compose-File ausgeführt werden (und setzen funktionierende Tools voraus): | |||
erst [https://gist.github.com/YtvwlD/762759e67eba7d184f3a65667bd27753 diesen Patch] anwenden | |||
ssh -L localhost:5732:localhost:2375 root@dockerserver -N & | |||
docker-compose -H tcp://localhost:5732 pull | |||
env SENTRY_DSN=blargh docker-compose -H tcp://localhost:5732 up --no-start | |||
<warten> | |||
fg | |||
^C | |||
systemctl -H root@dockerserver start mete.target | |||
== chaospizza == | |||
Chaospizza läuft über docker-compose, allerdings nicht vom Dockerserver aus. Die folgenden Befehle müssen also '''lokal''' im Verzeichnis mit dem docker-compose-File ausgeführt werden (und setzen funktionierende Tools voraus): | |||
ssh -L localhost:5732:localhost:2375 root@dockerserver -N & | |||
docker-compose -H tcp://localhost:5732 -f chaospizza.yml -p chaospizza pull | |||
env SENTRY_DSN=foo docker-compose -H tcp://localhost:5732 -f chaospizza.yml -p chaospizza up --no-start | |||
<warten> | |||
fg | |||
^C | |||
systemctl -H root@dockerserver start chaospizza.target | |||
== certbot aktualisieren == | |||
Die TLS-Zertifikate werden automatisch aktualisiert (certbot.service / .timer), aber auch certbot bekommt Updates. | |||
./certbot-auto -h # installiert möglicherweise Updates, zeigt dann die Hilfe an | |||
# wenn Updates installiert wurden: | |||
cd /opt/eff.org/certbot | |||
. venv/bin/activate.fish | |||
pip install certbot-dns-cloudflare | |||
deactivate |