From 0b874cf25282fe5593321a8957b75d8bfb12ea21 Mon Sep 17 00:00:00 2001 From: dadada Date: Sun, 4 Feb 2024 17:39:40 +0100 Subject: [PATCH] ninurta: monitoring with munin --- nixos/agares/configuration.nix | 8 ++++++++ nixos/ninurta/configuration.nix | 2 ++ nixos/ninurta/monitoring.nix | 28 ++++++++++++++++++++++++++++ nixos/surgat/configuration.nix | 9 +++++++++ 4 files changed, 47 insertions(+) create mode 100644 nixos/ninurta/monitoring.nix diff --git a/nixos/agares/configuration.nix b/nixos/agares/configuration.nix index edf7e9e..4e553e4 100644 --- a/nixos/agares/configuration.nix +++ b/nixos/agares/configuration.nix @@ -82,6 +82,14 @@ tcpdump ]; + services.munin-node = { + enable = true; + extraConfig = '' + host_name ${config.networking.hostName} + cidr_allow 192.168.101.184/32 + ''; + }; + # Running router VM. They have to be restarted in the right order, so network comes up cleanly. Not ideal. system.autoUpgrade.allowReboot = false; diff --git a/nixos/ninurta/configuration.nix b/nixos/ninurta/configuration.nix index 508695e..00b1c26 100644 --- a/nixos/ninurta/configuration.nix +++ b/nixos/ninurta/configuration.nix @@ -18,6 +18,7 @@ in ../modules/profiles/server.nix ./hardware-configuration.nix ./printing.nix + ./monitoring.nix ]; services.soft-serve = { @@ -377,6 +378,7 @@ in allowPing = true; allowedTCPPorts = [ 22 # SSH + 80 # munin web 631 # Printing 3000 # Hydra softServePort diff --git a/nixos/ninurta/monitoring.nix b/nixos/ninurta/monitoring.nix new file mode 100644 index 0000000..f582b7f --- /dev/null +++ b/nixos/ninurta/monitoring.nix @@ -0,0 +1,28 @@ +{ config, ... }: +{ + services.nginx.enable = true; + services.nginx.virtualHosts."ninurta.bs.dadada.li" = { + addSSL = false; + enableACME = false; + root = "/var/www/munin/"; + locations = { + "/" = { + root = "/var/www/munin/"; + }; + }; + }; + services.munin-cron = { + enable = true; + hosts = '' + [${config.networking.hostName}] + address localhost + + [surgat] + address 10.3.3.1 + + [agares] + address 192.168.101.1 + ''; + }; + services.munin-node.enable = true; +} diff --git a/nixos/surgat/configuration.nix b/nixos/surgat/configuration.nix index ee710da..937afa4 100644 --- a/nixos/surgat/configuration.nix +++ b/nixos/surgat/configuration.nix @@ -123,6 +123,7 @@ in 22 # SSH 80 443 # HTTPS + 4949 # munin-node ]; allowedUDPPorts = [ 51234 # Wireguard @@ -150,5 +151,13 @@ in services.postgresql.package = pkgs.postgresql_15; + services.munin-node = { + enable = true; + extraConfig = '' + host_name surgat + cidr_allow 10.3.3.3/32 + ''; + }; + system.stateVersion = "23.05"; }