-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathVagrantfile
209 lines (191 loc) · 8.17 KB
/
Vagrantfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
Vagrant.configure("2") do |config|
config.vm.box = "bento/ubuntu-22.04"
config.vm.box_check_update = false
config.vm.box_download_insecure = false
config.ssh.insert_key = true
config.vm.define "Production" do |woo|
woo.vm.hostname = "Production"
woo.vm.network "private_network", ip: "192.168.10.10"
woo.vm.provider "virtualbox" do |vb|
vb.memory = 5552
vb.cpus = 2
vb.name = "Production"
end
woo.vm.provision "shell", inline: <<-SHELL
#!/bin/bash
sudo apt update
sudo apt-get install ufw -y
sudo ufw enable
sudo ufw default deny incoming
sudo ufw default allow outgoing
sudo ufw allow 80
sudo ufw allow 443
sudo ufw allow 22
sudo ufw allow 8888
sudo ufw allow 3306
sudo ufw allow 8081
sudo ufw allow 6379
sudo ufw allow 9100
sudo ufw allow 7070
sudo ufw allow 8080
sudo ufw allow 9090
sudo -E apt install apt-transport-https ca-certificates curl software-properties-common -y
curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo -E apt-key add -
CODENAME=$(lsb_release -cs)
sudo -E add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu $CODENAME stable"
sudo -E apt update
sudo -E apt install docker-ce=5:20.10.24~3-0~ubuntu-$CODENAME docker-ce-cli=5:20.10.24~3-0~ubuntu-$CODENAME containerd.io docker-compose -y
sudo usermod -aG docker vagrant
docker network create -d bridge production-network
sudo useradd -m -d /home/jenkins -G docker jenkins
sudo systemctl enable docker
sudo systemctl start docker
sudo chown $USER:docker /var/run/docker.sock
mkdir /home/vagrant/production-compose
cp /vagrant/production-compose/docker-compose.yml /home/vagrant/production-compose
docker network create production-network
docker-compose -f /home/vagrant/production-compose/docker-compose.yml up -d
sudo apt install openjdk-17-jdk -y
sudo apt install python3-pip -y
pip install -U mock
pip install nose
sudo timedatectl set-timezone Europe/Paris
sudo touch /etc/cloud/cloud-init.disabled
SHELL
end
# Deploy Jenkins Master
config.vm.define "JenkinsMaster" do |master|
master.vm.hostname = "JenkinsMaster"
master.vm.network "private_network", ip: "192.168.10.20"
master.vm.provider "virtualbox" do |vb|
vb.memory = 3048
vb.cpus = 2
vb.name = "JenkinsMaster"
end
master.vm.provision "shell", inline: <<-SHELL
#!/bin/bash
sudo apt-get update
sudo apt-get install ufw -y
sudo ufw enable
sudo ufw default deny incoming
sudo ufw default allow outgoing
sudo ufw allow 80
sudo ufw allow 443
sudo ufw allow 22
sudo ufw allow 5555
sudo ufw allow 8081
sudo ufw allow 9100
sudo ufw allow 6379
sudo -E apt install apt-transport-https ca-certificates curl software-properties-common -y
curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo -E apt-key add -
CODENAME=$(lsb_release -cs)
sudo -E add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu $CODENAME stable"
sudo -E apt update
sudo -E apt install docker-ce=5:20.10.24~3-0~ubuntu-$CODENAME docker-ce-cli=5:20.10.24~3-0~ubuntu-$CODENAME containerd.io docker-compose -y
sudo usermod -a -G docker vagrant
sudo chown $USER:docker /var/run/docker.sock
sudo systemctl enable docker
sudo systemctl start docker
mkdir /home/vagrant/jenkins-compose
docker network create jenkins-network
cp /vagrant/jenkins-compose/docker-compose.yml /home/vagrant/jenkins-compose
docker-compose -f /home/vagrant/jenkins-compose/docker-compose.yml up -d
sudo touch /etc/cloud/cloud-init.disabled
SHELL
end
# Deploy Observability Machine
config.vm.define "Observability" do |observa|
observa.vm.hostname = "Observability"
observa.vm.network "private_network", ip: "192.168.10.30"
observa.vm.provider "virtualbox" do |vb|
vb.memory = 5552
vb.cpus = 2
vb.name = "Observability"
end
observa.vm.provision "shell", inline: <<-SHELL
#!/bin/bash
sudo apt-get update
sudo apt-get install ufw -y
sudo ufw enable
sudo ufw default deny incoming
sudo ufw default allow outgoing
sudo ufw allow 80
sudo ufw allow 443
sudo ufw allow 22
sudo ufw allow 3000
sudo ufw allow 9090
sudo ufw allow 1010
sudo ufw allow 8081
sudo ufw allow 9100
sudo ufw allow 6379
sudo -E apt install apt-transport-https ca-certificates curl software-properties-common -y
curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo -E apt-key add -
CODENAME=$(lsb_release -cs)
sudo -E add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu $CODENAME stable"
sudo -E apt update
sudo apt install openjdk-17-jdk -y
sudo -E apt install docker-ce=5:20.10.24~3-0~ubuntu-$CODENAME docker-ce-cli=5:20.10.24~3-0~ubuntu-$CODENAME containerd.io docker-compose -y
sudo usermod -a -G docker vagrant
sudo chown $USER:docker /var/run/docker.sock
sudo systemctl enable docker
sudo systemctl start docker
mkdir -p promgrafnode/prometheus && mkdir -p promgrafnode/grafana/provisioning && touch promgrafnode/docker-compose.yml && touch promgrafnode/prometheus/prometheus.yml
cp /vagrant/observability-compose/docker-compose.yml /home/vagrant/promgrafnode/docker-compose.yml
cp /vagrant/observability-compose/prometheus/prometheus.yml /home/vagrant/promgrafnode/prometheus/prometheus.yml
cp /vagrant/observability-compose/prometheus/rules.yml /home/vagrant/promgrafnode/prometheus/rules.yml
docker network create observability-network
docker-compose -f /home/vagrant/promgrafnode/docker-compose.yml up -d
sudo touch /etc/cloud/cloud-init.disabled
SHELL
end
# HAPROXY
config.vm.define "HAPROXY" do |haproxy|
haproxy.vm.hostname = "HAPROXY"
haproxy.vm.network "private_network", ip: "192.168.10.40"
haproxy.vm.provider "virtualbox" do |vb|
vb.memory = 2048
vb.cpus = 2
vb.name = "HAPROXY"
end
haproxy.vm.provision "shell", inline: <<-SHELL
#!/bin/bash
sudo apt-get update
sudo apt-get install ufw -y
sudo ufw enable
sudo ufw default deny incoming
sudo ufw default allow outgoing
sudo ufw allow 80
sudo ufw allow 443
sudo ufw allow 22
sudo ufw allow 9100
sudo -E apt install apt-transport-https ca-certificates curl software-properties-common -y
curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo -E apt-key add -
CODENAME=$(lsb_release -cs)
sudo -E add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu $CODENAME stable"
sudo -E apt update
sudo -E apt install docker-ce=5:20.10.24~3-0~ubuntu-$CODENAME docker-ce-cli=5:20.10.24~3-0~ubuntu-$CODENAME containerd.io docker-compose -y
sudo usermod -a -G docker vagrant
sudo chown $USER:docker /var/run/docker.sock
sudo systemctl enable docker
sudo systemctl start docker
mkdir -p /home/vagrant/haproxy-compose
cp /vagrant/haproxy-compose/docker-compose.yml /home/vagrant/haproxy-compose/docker-compose.yml
docker network create haproxy
docker-compose -f /home/vagrant/haproxy-compose/docker-compose.yml up -d
mkdir ssl
cp /vagrant/ssl_generate.sh /home/vagrant/ssl
sudo sudo apt-get install dos2unix
sudo dos2unix /home/vagrant/ssl/ssl_generate.sh
sudo chmod +x /home/vagrant/ssl/ssl_generate.sh
sudo bash /home/vagrant/ssl/ssl_generate.sh haproxy
sudo apt install haproxy -y
sudo rm -f /etc/haproxy/haproxy.cfg
sudo cp /vagrant/haproxy_micro.cfg /etc/haproxy/haproxy.cfg
cp /vagrant/haproxy /etc/default/haproxy
sudo systemctl enable haproxy
sudo systemctl restart haproxy
docker run --name NodeExporter -d -p 9100:9100 prom/node-exporter
sudo touch /etc/cloud/cloud-init.disabled
SHELL
end
end