DGNum/infrastructure
11
6
Fork 2
Code Issues 21 Pull requests 21 Projects 1 Releases Packages Wiki Activity Actions

feat(vault01): Deploy victorialogs to prepare the collect of the AP logs #305

Merged
thubrecht merged 2 commits from vault01-logs into main 2025-03-01 16:53:42 +01:00
Conversation 0 Commits 2 Files changed 3 +23 -8
1 changed files with 23 additions and 8 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files
Showing only changes of commit 953b69b1c6 - Show all commits

31
machines/nixos/vault01/monitoring/victorialogs.nix
View file

@ -2,21 +2,36 @@
# #
# SPDX-License-Identifier: EUPL-1.2 # SPDX-License-Identifier: EUPL-1.2
{ meta, ... }:
let let
port = 9428; port = 9428;
in in
{ {
services.victorialogs = { services = {
enable = true; nginx = {
enable = true;
streamConfig = ''
server {
listen 10.0.253.1:${toString port};
listen ${meta.network.vault01.netbirdIp}:${toString port};
proxy_pass 127.0.0.1:${toString port};
}
'';
};
victorialogs = {
enable = true;
flags = { flags = {
retentionPeriod = "52w"; retentionPeriod = "52w";
# FIXME: We need to listen so that we are available for both the APs and the grafana httpListenAddr = "127.0.0.1:${builtins.toString port}";
httpListenAddr = "0.0.0.0:${builtins.toString port}"; };
}; };
}; };
# FIXME: @catvayor please do a nft rule to open the firewall on the AP-facing interfaces networking.firewall.interfaces = {
networking.firewall.interfaces.wt0.allowedTCPPorts = [ port ]; wt0.allowedTCPPorts = [ port ];
vlan-admin-ap.allowedTCPPorts = [ port ];
};
} }