Ansible playbook & server config of yuriko.co.nz with SElinux
ぼくのかんがえたさいきょうのサーバ設定! with SELinux
| Layer | Managed by |
|---|---|
| Container | |
| Docker | |
| CentOS 7 | |
| QEMU Guest | ConoHa |
| QEMU Host(OpenStack) | ConoHa |
| Physical Server | ConoHa |
QEMU Guest and Host are provided by ConoHa VPS (IaaS)
This playbook will target above CentOS Layer
ConoHa 1GB server plan (880 Yen/month)
- CPU: 1 core 2 threads
- Memory: 1GB Physical + 8GB Swap
- Storage: 100GB SSD
Use CentOS (Minimal install from iso image). See anaconda-ks.cfg.
ConoHa official CentOS image was not used. (It doesn't contains LVM partition for snapshot backup)
Enables IPv6 & SELinux
root Filesystem is ext4 on LVM -> Filesystem Layout
Containers are managed by docker-compose
- Nginx + certbot
- php-fpm
- MediaWiki
- PostgreSQL
- IPsec/L2TP
- BOINC
- OpenVPN
- Mailu (Postfix/dovecot/clamav etc...)
Use ConoHa's Managed DNS service. (FREE!)
See Issue
Ideas are welcome!