servers:foobar
foobar.thelab.ms
Provisioning Process (Dec 2024)
- Azure Standard_B1s running Ubuntu 24.04 in southcentralus.
- Enable daily Azure backups during provisioning.
- Manually populate IP in Cloudflare dns record (foobar.thelab.ms)
- The cto user should trust the current acting CTO's ssh pubkey. It can always be updated through the Azure portal.
- Manually install cloudflared for tunneling. It would be hard to automate, very easy to do by hand.
- Make sure to run as a service i.e.
cloudflared service install
- Run
make ansible!
Here's the cloudflared config at the time of provisioning:
- snippet.yaml
tunnel: <redacted> credentials-file: /root/.cloudflared/<redacted>.json originRequest: connectTimeout: 10s ingress: - hostname: members.thelab.ms service: http://localhost:8080 - hostname: wiki.thelab.ms service: http://localhost:8081 - service: http_status:404
servers/foobar.txt ยท Last modified: 2025/01/26 17:37 by ef2d127d-e37b-942b-aad0-6145e54b0c61