adelgado/ansible-role-prometheus_node_exporter
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
ansible-role-prometheus_nod.../templates/apache2.conf.j2

81 lines
5.2 KiB
Django/Jinja
Raw Blame History

<VirtualHost *:80>
ServerName node-metrics-{{ inventory_hostname }}.{{ domain }}
DocumentRoot "/var/www/node-metrics-{{ inventory_hostname }}.{{ domain }}/"
<Directory "/var/www/node-metrics-{{ inventory_hostname }}.{{ domain }}/">
Options Indexes FollowSymLinks MultiViews
AllowOverride None
Require all granted
</Directory>
ErrorLog "/var/log/apache2/node-metrics-{{ inventory_hostname }}.{{ domain }}_insecure_error.log"
ServerSignature Off
CustomLog "/var/log/apache2/node-metrics-{{ inventory_hostname }}.{{ domain }}_insecure_access.log" combined
Redirect permanent / https://node-metrics-{{ inventory_hostname }}.{{ domain }}/
</VirtualHost>
<VirtualHost *:443>
ServerName node-metrics-{{ inventory_hostname }}.{{ domain }}
ServerAdmin webmaster@susurrando.com
DocumentRoot "/var/www/node-metrics-{{ inventory_hostname }}.{{ domain }}/"
<Directory "/var/www/node-metrics-{{ inventory_hostname }}.{{ domain }}/">
Options -Indexes +FollowSymLinks
AllowOverride None
Require all granted
</Directory>
ErrorLog "/var/log/apache2/node-metrics-{{ inventory_hostname }}.{{ domain }}_ssl_error_ssl.log"
ServerSignature Off
CustomLog "/var/log/apache2/node-metrics-{{ inventory_hostname }}.{{ domain }}_ssl_access_ssl.log" combined
ErrorDocument 404 /notfound.php
ErrorDocument 500 /error500.php
ErrorDocument 503 /error503.php
RewriteEngine On
SSLEngine on
SSLCertificateFile "/etc/letsencrypt/live/node-metrics-{{ inventory_hostname }}.{{ domain }}/fullchain.pem"
SSLCertificateKeyFile "/etc/letsencrypt/live/node-metrics-{{ inventory_hostname }}.{{ domain }}/privkey.pem"
SSLProtocol all -SSLv3 -SSLv2 -TLSv1 -TLSv1.1
SSLCipherSuite ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA
DefineExternalAuth mysqlauth pipe /usr/local/bin/mysql-auth.pl
SSLHonorCipherOrder on
ProxyPass / http://127.0.0.1:9100/
ProxyPassReverse / http://127.0.0.1:9100/
</VirtualHost>
<VirtualHost *:80>
ServerName postfix-metrics-{{ inventory_hostname }}.{{ domain }}
DocumentRoot "/var/www/postfix-metrics-{{ inventory_hostname }}.{{ domain }}/"
<Directory "/var/www/postfix-metrics-{{ inventory_hostname }}.{{ domain }}/">
Options Indexes FollowSymLinks MultiViews
AllowOverride None
Require all granted
</Directory>
ErrorLog "/var/log/apache2/postfix-metrics-{{ inventory_hostname }}.{{ domain }}_insecure_error.log"
ServerSignature Off
CustomLog "/var/log/apache2/postfix-metrics-{{ inventory_hostname }}.{{ domain }}_insecure_access.log" combined
Redirect permanent / https://postfix-metrics-{{ inventory_hostname }}.{{ domain }}/
</VirtualHost>
<VirtualHost *:443>
ServerName postfix-metrics-{{ inventory_hostname }}.{{ domain }}
ServerAdmin webmaster@susurrando.com
DocumentRoot "/var/www/postfix-metrics-{{ inventory_hostname }}.{{ domain }}/"
<Directory "/var/www/postfix-metrics-{{ inventory_hostname }}.{{ domain }}/">
Options -Indexes +FollowSymLinks
AllowOverride None
Require all granted
</Directory>
ErrorLog "/var/log/apache2/postfix-metrics-{{ inventory_hostname }}.{{ domain }}_ssl_error_ssl.log"
ServerSignature Off
CustomLog "/var/log/apache2/postfix-metrics-{{ inventory_hostname }}.{{ domain }}_ssl_access_ssl.log" combined
ErrorDocument 404 /notfound.php
ErrorDocument 500 /error500.php
ErrorDocument 503 /error503.php
RewriteEngine On
SSLEngine on
SSLCertificateFile "/etc/letsencrypt/live/postfix-metrics-{{ inventory_hostname }}.{{ domain }}/fullchain.pem"
SSLCertificateKeyFile "/etc/letsencrypt/live/postfix-metrics-{{ inventory_hostname }}.{{ domain }}/privkey.pem"
SSLProtocol all -SSLv3 -SSLv2 -TLSv1 -TLSv1.1
SSLCipherSuite ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA
DefineExternalAuth mysqlauth pipe /usr/local/bin/mysql-auth.pl
SSLHonorCipherOrder on
ProxyPass / http://127.0.0.1:9154/
ProxyPassReverse / http://127.0.0.1:9154/
</VirtualHost>
Reference in a new issue View git blame Copy permalink