diff --git a/HelmCharts/firefly-chart/templates/mysql-deployment.yaml b/HelmCharts/firefly-chart/templates/mysql-deployment.yaml index 174c5ffb..eb0b20f1 100644 --- a/HelmCharts/firefly-chart/templates/mysql-deployment.yaml +++ b/HelmCharts/firefly-chart/templates/mysql-deployment.yaml @@ -54,7 +54,6 @@ spec: containers: #- image: docker-registry:32000/mariadb:1.0 #- image: mariadb:latest - #- image: creylopez/mariadb:1.0 - image: mysql:latest name: mysql env: diff --git a/NginxConf202311/k8s-server/etc/nginx/nginx.conf b/NginxConf202311/k8s-server/etc/nginx/nginx.conf new file mode 100644 index 00000000..9ee6e06c --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/nginx.conf @@ -0,0 +1,85 @@ +user www-data; +worker_processes auto; +pid /run/nginx.pid; +include /etc/nginx/modules-enabled/*.conf; + +events { + worker_connections 768; + # multi_accept on; +} + +http { + + ## + # Basic Settings + ## + + sendfile on; + tcp_nopush on; + tcp_nodelay on; + keepalive_timeout 65; + types_hash_max_size 2048; + # server_tokens off; + + # server_names_hash_bucket_size 64; + # server_name_in_redirect off; + + include /etc/nginx/mime.types; + default_type application/octet-stream; + + ## + # SSL Settings + ## + + ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3; # Dropping SSLv3, ref: POODLE + ssl_prefer_server_ciphers on; + + ## + # Logging Settings + ## + + access_log /var/log/nginx/access.log; + error_log /var/log/nginx/error.log; + + ## + # Gzip Settings + ## + + gzip on; + + # gzip_vary on; + # gzip_proxied any; + # gzip_comp_level 6; + # gzip_buffers 16 8k; + # gzip_http_version 1.1; + # gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript; + + ## + # Virtual Host Configs + ## + + include /etc/nginx/conf.d/*.conf; + include /etc/nginx/sites-enabled/*; +} + + +#mail { +# # See sample authentication script at: +# # http://wiki.nginx.org/ImapAuthenticateWithApachePhpScript +# +# # auth_http localhost/auth.php; +# # pop3_capabilities "TOP" "USER"; +# # imap_capabilities "IMAP4rev1" "UIDPLUS"; +# +# server { +# listen localhost:110; +# protocol pop3; +# proxy on; +# } +# +# server { +# listen localhost:143; +# protocol imap; +# proxy on; +# } +#} diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/calibre.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/calibre.conf new file mode 100644 index 00000000..060a284d --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/calibre.conf @@ -0,0 +1,41 @@ +server { + ## + # Aquí va el nombre del servidor + ## + server_name calibre.reymota.es; + + location / { + ## + # El puerto tiene que ser el del servicio por el que la aplicación escucha + ## + proxy_pass http://127.0.0.1:30830/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/calibre.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/calibre.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + + +} +server { + if ($host = calibre.reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name calibre.reymota.es; + listen 80; + return 404; # managed by Certbot + + +} \ No newline at end of file diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/ddns-net.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/ddns-net.conf new file mode 100644 index 00000000..be16f959 --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/ddns-net.conf @@ -0,0 +1,35 @@ +server { + server_name reymota.ddns.net; + + location / { + proxy_pass http://127.0.0.1:30580/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/calibre.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/calibre.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + + +} +server { + if ($host = reymota.ddns.net) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name reymota.ddns.net; + listen 80; + return 404; # managed by Certbot + + +} diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/default b/NginxConf202311/k8s-server/etc/nginx/sites-available/default new file mode 100644 index 00000000..9117e378 --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/default @@ -0,0 +1,91 @@ +## +# You should look at the following URL's in order to grasp a solid understanding +# of Nginx configuration files in order to fully unleash the power of Nginx. +# https://www.nginx.com/resources/wiki/start/ +# https://www.nginx.com/resources/wiki/start/topics/tutorials/config_pitfalls/ +# https://wiki.debian.org/Nginx/DirectoryStructure +# +# In most cases, administrators will remove this file from sites-enabled/ and +# leave it as reference inside of sites-available where it will continue to be +# updated by the nginx packaging team. +# +# This file will automatically load configuration files provided by other +# applications, such as Drupal or Wordpress. These applications will be made +# available underneath a path with that package name, such as /drupal8. +# +# Please see /usr/share/doc/nginx-doc/examples/ for more detailed examples. +## + +# Default server configuration +# +server { + listen 80 default_server; + listen [::]:80 default_server; + + # SSL configuration + # + # listen 443 ssl default_server; + # listen [::]:443 ssl default_server; + # + # Note: You should disable gzip for SSL traffic. + # See: https://bugs.debian.org/773332 + # + # Read up on ssl_ciphers to ensure a secure configuration. + # See: https://bugs.debian.org/765782 + # + # Self signed certs generated by the ssl-cert package + # Don't use them in a production server! + # + # include snippets/snakeoil.conf; + + root /var/www/html; + + # Add index.php to the list if you are using PHP + index index.html index.htm index.nginx-debian.html; + + server_name _; + + location / { + # First attempt to serve request as file, then + # as directory, then fall back to displaying a 404. + try_files $uri $uri/ =404; + } + + # pass PHP scripts to FastCGI server + # + #location ~ \.php$ { + # include snippets/fastcgi-php.conf; + # + # # With php-fpm (or other unix sockets): + # fastcgi_pass unix:/var/run/php/php7.4-fpm.sock; + # # With php-cgi (or other tcp sockets): + # fastcgi_pass 127.0.0.1:9000; + #} + + # deny access to .htaccess files, if Apache's document root + # concurs with nginx's one + # + #location ~ /\.ht { + # deny all; + #} +} + + +# Virtual Host configuration for example.com +# +# You can move that to a different file under sites-available/ and symlink that +# to sites-enabled/ to enable it. +# +#server { +# listen 80; +# listen [::]:80; +# +# server_name example.com; +# +# root /var/www/example.com; +# index index.html; +# +# location / { +# try_files $uri $uri/ =404; +# } +#} diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/firefly-reymota.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/firefly-reymota.conf new file mode 100644 index 00000000..0ba7a683 --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/firefly-reymota.conf @@ -0,0 +1,36 @@ +server { + server_name firefly.reymota.es; + + location / { + proxy_pass http://127.0.0.1:30880/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/firefly.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/firefly.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + + + +} +server { + if ($host = firefly.reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name firefly.reymota.es; + listen 80; + return 404; # managed by Certbot + + +} diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/gitea.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/gitea.conf new file mode 100644 index 00000000..9d5c17a2 --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/gitea.conf @@ -0,0 +1,40 @@ +server { + ## + # Aquí va el nombre del servidor + ## + server_name gitea.reymota.es; + + location / { + ## + # El puerto tiene que ser el del servicio por el que la aplicación escucha + ## + proxy_pass http://127.0.0.1:30780/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/gitea.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/gitea.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + +} +server { + if ($host = gitea.reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name gitea.reymota.es; + listen 80; + return 404; # managed by Certbot + + +} \ No newline at end of file diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/gogs.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/gogs.conf new file mode 100644 index 00000000..2969b40f --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/gogs.conf @@ -0,0 +1,40 @@ +server { + ## + # Aquí va el nombre del servidor + ## + server_name gogs.reymota.es; + + location / { + ## + # El puerto tiene que ser el del servicio por el que la aplicación escucha + ## + proxy_pass http://192.168.1.116:30009/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/calibre.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/calibre.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + +} +server { + if ($host = gogs.reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name gogs.reymota.es; + listen 80; + return 404; # managed by Certbot + + +} diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/jenkins.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/jenkins.conf new file mode 100644 index 00000000..cd758025 --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/jenkins.conf @@ -0,0 +1,40 @@ +server { + ## + # Aquí va el nombre del servidor + ## + server_name jenkins.reymota.es; + + location / { + ## + # El puerto tiene que ser el del servicio por el que la aplicación escucha + ## + proxy_pass http://127.0.0.1:32000/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/jenkins.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/jenkins.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + +} +server { + if ($host = jenkins.reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name jenkins.reymota.es; + listen 80; + return 404; # managed by Certbot + + +} \ No newline at end of file diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/jugaralpadel-es.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/jugaralpadel-es.conf new file mode 100644 index 00000000..e562973a --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/jugaralpadel-es.conf @@ -0,0 +1,40 @@ +server { + ## + # Aquí va el nombre del servidor + ## + server_name jugaralpadel.es; + + location / { + ## + # El puerto tiene que ser el del servicio por el que la aplicación escucha + ## + proxy_pass http://127.0.0.1:30345/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/jugaralpadel.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/jugaralpadel.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + +} +server { + if ($host = jugaralpadel.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name jugaralpadel.es; + listen 80; + return 404; # managed by Certbot + + +} \ No newline at end of file diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/jugaralpadel.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/jugaralpadel.conf new file mode 100644 index 00000000..a5c921fc --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/jugaralpadel.conf @@ -0,0 +1,40 @@ +server { + ## + # Aquí va el nombre del servidor + ## + server_name jugaralpadel.ddns.net; + + location / { + ## + # El puerto tiene que ser el del servicio por el que la aplicación escucha + ## + proxy_pass http://127.0.0.1:30345/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/jugaralpadel.ddns.net/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/jugaralpadel.ddns.net/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + +} +server { + if ($host = jugaralpadel.ddns.net) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name jugaralpadel.ddns.net; + listen 80; + return 404; # managed by Certbot + + +} \ No newline at end of file diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/libros.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/libros.conf new file mode 100644 index 00000000..13f577ea --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/libros.conf @@ -0,0 +1,41 @@ +server { + ## + # Aquí va el nombre del servidor + ## + server_name libros.reymota.es; + + location / { + ## + # El puerto tiene que ser el del servicio por el que la aplicación escucha + ## + proxy_pass http://127.0.0.1:30343/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/calibre.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/calibre.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + + +} +server { + if ($host = libros.reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name libros.reymota.es; + listen 80; + return 404; # managed by Certbot + + +} \ No newline at end of file diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/lyrics.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/lyrics.conf new file mode 100644 index 00000000..3246b63a --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/lyrics.conf @@ -0,0 +1,41 @@ +server { + ## + # Aquí va el nombre del servidor + ## + server_name lyrics.reymota.es; + + location / { + ## + # El puerto tiene que ser el del servicio por el que la aplicación escucha + ## + proxy_pass http://127.0.0.1:30338/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/calibre.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/calibre.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + + +} +server { + if ($host = lyrics.reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name lyrics.reymota.es; + listen 80; + return 404; # managed by Certbot + + +} \ No newline at end of file diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/miweb.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/miweb.conf new file mode 100644 index 00000000..19d079da --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/miweb.conf @@ -0,0 +1,34 @@ +server { + server_name reymota.duckdns.org; + + location / { + proxy_pass http://127.0.0.1:8080/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/reymota.duckdns.org/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/reymota.duckdns.org/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + +} +server { + if ($host = reymota.duckdns.org) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name reymota.duckdns.org; + listen 80; + return 404; # managed by Certbot + + +} diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/navidrome.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/navidrome.conf new file mode 100644 index 00000000..a0be2eda --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/navidrome.conf @@ -0,0 +1,42 @@ +server { + ## + # Aquí va el nombre del servidor + ## + server_name navidrome.reymota.es; + + location / { + ## + # El puerto tiene que ser el del servicio por el que la aplicación escucha + ## + proxy_pass http://127.0.0.1:30681/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/navidrome.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/navidrome.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + + + +} +server { + if ($host = navidrome.reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name navidrome.reymota.es; + listen 80; + return 404; # managed by Certbot + + +} \ No newline at end of file diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/nextcloud.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/nextcloud.conf new file mode 100644 index 00000000..29f32d80 --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/nextcloud.conf @@ -0,0 +1,42 @@ +server { + ## + # Aquí va el nombre del servidor + ## + server_name nextcloud.reymota.es; + + location / { + ## + # El puerto tiene que ser el del servicio por el que la aplicación escucha + ## + proxy_pass http://127.0.0.1:30580/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/nextcloud.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/nextcloud.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + + + +} +server { + if ($host = nextcloud.reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name nextcloud.reymota.es; + listen 80; + return 404; # managed by Certbot + + +} \ No newline at end of file diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/plantilla.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/plantilla.conf new file mode 100644 index 00000000..9f42b246 --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/plantilla.conf @@ -0,0 +1,20 @@ +server { + ## + # Aquí va el nombre del servidor + ## + server_name firefly.reymota.es; + + location / { + ## + # El puerto tiene que ser el del servicio por el que la aplicación escucha + ## + proxy_pass http://127.0.0.1:30880/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } +} diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/registry.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/registry.conf new file mode 100644 index 00000000..45e95476 --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/registry.conf @@ -0,0 +1,42 @@ +server { + ## + # Aquí va el nombre del servidor + ## + server_name registry.reymota.es; + + location / { + ## + # El puerto tiene que ser el del servicio por el que la aplicación escucha + ## + proxy_pass http://127.0.0.1:30342/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 0; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/registry.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/registry.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + + + +} +server { + if ($host = registry.reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name registry.reymota.es; + listen 80; + return 404; # managed by Certbot + + +} diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/repostajes.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/repostajes.conf new file mode 100644 index 00000000..31b3099a --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/repostajes.conf @@ -0,0 +1,41 @@ +server { + ## + # Aquí va el nombre del servidor + ## + server_name repostajes.reymota.es; + + location / { + ## + # El puerto tiene que ser el del servicio por el que la aplicación escucha + ## + proxy_pass http://127.0.0.1:30340/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/calibre.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/calibre.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + + +} +server { + if ($host = repostajes.reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name repostajes.reymota.es; + listen 80; + return 404; # managed by Certbot + + +} \ No newline at end of file diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/reymota.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/reymota.conf new file mode 100644 index 00000000..6a345dac --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/reymota.conf @@ -0,0 +1,44 @@ +server { + ## + # Aquí va el nombre del servidor + ## + server_name reymota.es; + + location / { + ## + # El puerto tiene que ser el del servicio por el que la aplicación escucha + ## + #proxy_pass http://127.0.0.1:30341/; + proxy_pass http://192.168.1.116:30341/; + #proxy_pass http://192.168.1.134:30341/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + + + +} +server { + if ($host = reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name reymota.es; + listen 80; + return 404; # managed by Certbot + + +} diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/reymota_es.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/reymota_es.conf new file mode 100644 index 00000000..6c2454a1 --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/reymota_es.conf @@ -0,0 +1,104 @@ +server { + server_name gitlab.reymota.es; + + location / { + proxy_pass http://192.168.1.116:31080; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header Host $host; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + } + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/gitlab.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/gitlab.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + +} + +server { + server_name jenkins.reymota.es; + + location / { + #proxy_pass http://192.168.1.116:31222; + proxy_pass http://192.168.1.134:32000; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header Host $host; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + } + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/jenkins.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/jenkins.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + +} +server { + ## + # Aquí va el nombre del servidor + ## + server_name forgejo.reymota.es; + + location / { + ## + # El puerto tiene que ser el del servicio por el que la aplicación escucha + ## + proxy_pass http://192.168.1.134:30785/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/forgejo.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/forgejo.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + +} + +server { + if ($host = jenkins.reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + listen 80; + server_name jenkins.reymota.es; + return 404; # managed by Certbot + + +} +server { + if ($host = gitlab.reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + listen 80; + server_name gitlab.reymota.es; + return 404; # managed by Certbot + + +} + +server { + if ($host = forgejo.reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name forgejo.reymota.es; + listen 80; + return 404; # managed by Certbot + + +} + + diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/vaultwarden.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/vaultwarden.conf new file mode 100644 index 00000000..0199c082 --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/vaultwarden.conf @@ -0,0 +1,42 @@ +server { + ## + # Aquí va el nombre del servidor + ## + server_name vaultwarden.reymota.es; + + location / { + ## + # El puerto tiene que ser el del servicio por el que la aplicación escucha + ## + proxy_pass http://127.0.0.1:31078/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/vaultwarden.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/vaultwarden.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + + + +} +server { + if ($host = vaultwarden.reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name vaultwarden.reymota.es; + listen 80; + return 404; # managed by Certbot + + +} \ No newline at end of file diff --git a/NginxConf202311/k8s-server/etc/nginx/sites-available/wordpress.conf b/NginxConf202311/k8s-server/etc/nginx/sites-available/wordpress.conf new file mode 100644 index 00000000..4a9c43b2 --- /dev/null +++ b/NginxConf202311/k8s-server/etc/nginx/sites-available/wordpress.conf @@ -0,0 +1,36 @@ +server { + server_name wordpress.reymota.es; + + location / { + proxy_pass http://127.0.0.1:30088/; + proxy_set_header X-Forwarded-Host $host; + proxy_set_header X-Forwarded-Server $host; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header Host $host; + client_max_body_size 64M; + proxy_read_timeout 300s; + } + + + listen 443 ssl; # managed by Certbot + ssl_certificate /etc/letsencrypt/live/wordpress.reymota.es/fullchain.pem; # managed by Certbot + ssl_certificate_key /etc/letsencrypt/live/wordpress.reymota.es/privkey.pem; # managed by Certbot + include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot + ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot + + + +} +server { + if ($host = wordpress.reymota.es) { + return 301 https://$host$request_uri; + } # managed by Certbot + + + server_name wordpress.reymota.es; + listen 80; + return 404; # managed by Certbot + + +} diff --git a/NginxConf202311/k8s-server/var/www/html/index.html b/NginxConf202311/k8s-server/var/www/html/index.html new file mode 100644 index 00000000..2c2ea6c0 --- /dev/null +++ b/NginxConf202311/k8s-server/var/www/html/index.html @@ -0,0 +1,29 @@ + + + + + + + + 404 Error + + + + + + +
+
+

¡Rayos!

+

No hemos podido encontrar la página que solicitas :(

+ +
+ home image +
+ + +