Infrastructure

Deep operational reference for each infrastructure service. Deploy in dependency order.

task ansible:deploy-networking ENV=wil   # 1. Must be first
task ansible:deploy-ca ENV=wil           # 2. Certificate authority
task ansible:deploy-ntp ENV=wil          # 3. Time server
task ansible:deploy-monitoring ENV=wil   # 4. Metrics and dashboards

Services

1. Networking — DNS (BIND9), reverse proxy (Caddy), dynamic DNS, VPN (Tailscale)
2. Certificate Authority — Private CA (Step-CA) for internal TLS
3. Time Server — NTP synchronization (Chrony)
4. Monitoring — Metrics (Prometheus), dashboards (Grafana, Homepage), uptime (Uptime Kuma)
5. Docker Services — Container definitions and compose templates