diff options
author | lassulus <lass@lassul.us> | 2017-02-07 17:12:21 +0100 |
---|---|---|
committer | lassulus <lass@lassul.us> | 2017-02-09 10:06:19 +0100 |
commit | 73140ed18358e25983b28874c220f8e882e5e95f (patch) | |
tree | e5c05cb03957fd676d3cbca50d81506229b9e8a7 /lass/2configs/monitoring/server.nix | |
parent | 3085d190485d2b4e822bf4a507104ace155c52b3 (diff) |
l 2 monitoring server: add kibana + elasticsearch
Diffstat (limited to 'lass/2configs/monitoring/server.nix')
-rw-r--r-- | lass/2configs/monitoring/server.nix | 23 |
1 files changed, 18 insertions, 5 deletions
diff --git a/lass/2configs/monitoring/server.nix b/lass/2configs/monitoring/server.nix index ff6e980cb..f3d8026ab 100644 --- a/lass/2configs/monitoring/server.nix +++ b/lass/2configs/monitoring/server.nix @@ -72,15 +72,28 @@ with import <stockholm/lib>; }; }; - krebs.iptables.tables.filter.INPUT.rules = [ - { predicate = "-p tcp -i retiolum --dport 8086"; target = "ACCEPT"; } - { predicate = "-p tcp -i retiolum --dport 3000"; target = "ACCEPT"; } - { predicate = "-p udp -i retiolum --dport 25826"; target = "ACCEPT"; } - ]; services.grafana = { enable = true; addr = "0.0.0.0"; auth.anonymous.enable = true; security = import <secrets/grafana_security.nix>; # { AdminUser = ""; adminPassword = ""} }; + + services.elasticsearch = { + enable = true; + listenAddress = "0.0.0.0"; + }; + + services.kibana = { + enable = true; + listenAddress = "0.0.0.0"; + }; + + krebs.iptables.tables.filter.INPUT.rules = [ + { predicate = "-p tcp -i retiolum --dport 8086"; target = "ACCEPT"; } + { predicate = "-p tcp -i retiolum --dport 3000"; target = "ACCEPT"; } + { predicate = "-p udp -i retiolum --dport 25826"; target = "ACCEPT"; } + { predicate = "-p tcp -i retiolum --dport 9200"; target = "ACCEPT"; } + { predicate = "-p tcp -i retiolum --dport 5601"; target = "ACCEPT"; } + ]; } |