-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathhologram-monitoring-client.pkg.toml
48 lines (41 loc) · 1.46 KB
/
hologram-monitoring-client.pkg.toml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
[package]
name = "hologram-monitoring-client"
version = "0.1.4"
description = "hologram: connection to monitoring network"
conflicts = [ 'hologram-monitoring-server' ]
requires = [
'secrets', # this uses /usr/bin/replicator
'hologram-monitoring-agents',
'wireguard-tools',
]
[[directory]]
path = "/etc/wireguard"
mode = "0700" # contains private keys
# open port when using hologram-ferm
[[file]]
path = "/etc/ferm.d/incoming-wireguard"
content = "proto udp dport {{.Vars.wg.port}} ACCEPT;"
[[symlink]]
path = "/usr/share/holo/files/20-wireguard/etc/ferm.d/incoming-wireguard.holoscript"
target = "/usr/bin/replicator"
################################################################################
# private network for metric collection/Grafana access
[[file]]
path = "/etc/wireguard/wg-monitoring.conf"
content = '''
[Interface]
Address = {{.Vars.prometheus.slash24}}.{{.Vars.host.id}}/32
PrivateKey = {{.Vars.wg.private_key}}
[Peer]
PublicKey = {{.Vars.wg.server.public_key}}
PresharedKey = {{.Vars.wg.preshared_key}}
Endpoint = {{.Vars.wg.server.endpoint}}:{{.Vars.wg.port}}
AllowedIPs = {{.Vars.prometheus.slash24}}.0/24
PersistentKeepAlive = 15
'''
[[symlink]]
path = "/usr/share/holo/files/20-monitoring-server/etc/wireguard/wg-monitoring.conf.holoscript"
target = "/usr/bin/replicator"
[[symlink]]
path = "/etc/systemd/system/multi-user.target.wants/[email protected]"
target = "/usr/lib/systemd/system/[email protected]"