Skip to content
This repository was archived by the owner on Aug 5, 2025. It is now read-only.

maxexcloo/infrastructure

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

307 Commits
templates
templates
 
 
.gitignore
.gitignore
 
 
CLAUDE.md
CLAUDE.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
b2.tf
b2.tf
 
 
cloudflare.tf
cloudflare.tf
 
 
data.tf
data.tf
 
 
htpasswd.tf
htpasswd.tf
 
 
local.tf
local.tf
 
 
locals_dns.tf
locals_dns.tf
 
 
locals_output.tf
locals_output.tf
 
 
locals_servers.tf
locals_servers.tf
 
 
locals_tailscale.tf
locals_tailscale.tf
 
 
locals_vms.tf
locals_vms.tf
 
 
oci.tf
oci.tf
 
 
onepassword.tf
onepassword.tf
 
 
outputs.tf
outputs.tf
 
 
providers.tf
providers.tf
 
 
proxmox.tf
proxmox.tf
 
 
random.tf
random.tf
 
 
resend.tf
resend.tf
 
 
sftpgo.tf
sftpgo.tf
 
 
tailscale.tf
tailscale.tf
 
 
terraform.tf
terraform.tf
 
 
terraform.tfvars.sample
terraform.tfvars.sample
 
 
variables.tf
variables.tf
 
 

Repository files navigation

Infrastructure

License Status OpenTofu

OpenTofu configuration for personal infrastructure management.

Quick Start

  1. Copy configuration template:

    cp terraform.tfvars.sample terraform.tfvars

  2. Update terraform.tfvars with your values

  3. Initialize and apply:

    tofu init
tofu plan
tofu apply

Features

  • DNS: Cloudflare zones and automated record creation
  • Networking: Tailscale mesh with device management
  • Security: 1Password integration for secret management
  • Storage: Backblaze B2 buckets for backup
  • VMs: Oracle Cloud Infrastructure and Proxmox instances

Security

  • All credentials marked sensitive
  • Network access via Tailscale zero-trust
  • Secrets managed in 1Password
  • State stored in Terraform Cloud

Installation

Prerequisites

  • OpenTofu 1.6+
  • Access to cloud providers (Oracle Cloud, Cloudflare)
  • 1Password service account
  • Tailscale account

Setup

  1. Clone repository
  2. Copy terraform.tfvars.sample to terraform.tfvars
  3. Configure provider credentials in terraform.tfvars
  4. Run initialization commands

Usage

Configuration

Infrastructure defined in terraform.tfvars:

routers = [
  {
    flags    = ["homepage", "unifi"]
    location = "au"
  }
]

servers = [
  {
    flags  = ["docker", "homepage"] 
    name   = "server-name"
    parent = "router-location"
  }
]

vms_oci = [
  {
    config = {
      cpus   = 4
      memory = 8
    }
    location = "au"
    name     = "vm-name"  
  }
]

vms_proxmox = [
  {
    config = {
      cpus   = 2
      memory = 4
    }
    name   = "vm-name"
    parent = "physical-server-name"
  }
]

Workflow

tofu fmt && tofu validate && tofu plan
tofu apply

Project Structure

├── data.tf                  # All data sources
├── locals_*.tf              # Configuration processing
├── outputs.tf               # Output definitions
├── providers.tf             # Provider configurations
├── terraform.tf             # Terraform configuration
├── variables.tf             # Variable definitions
├── *.tf                     # Resource files
└── terraform.tfvars         # Instance values

Troubleshooting

Common issues:

  1. Authentication errors: Check terraform.tfvars credentials
  2. DNS delays: Cloudflare changes take time to propagate
  3. Resource conflicts: Check for naming collisions
  4. VM failures: Verify cloud provider quotas

Run tofu validate to check configuration syntax.

Contributing

  1. Follow the coding standards in CLAUDE.md
  2. Run tofu fmt before committing
  3. Ensure all changes pass tofu validate and tofu plan
  4. Use the provided commit message format

License

This project is licensed under the AGPL-3.0 License - see the LICENSE file for details.

About

OpenTofu configuration for personal infrastructure.

Resources

Readme

License

AGPL-3.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Contributors 2

  •  
  •  

Languages