tommy/homelab-configs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
homelab-configs/traefik
History
tommy 10b60761ff traefik: add cert-expiry-check.sh with Prometheus textfile output 
Reads acme.json hourly on docker-node01, writes:
  traefik_cert_expiry_days{domain=X} N
  traefik_cert_check_last_run_seconds EPOCH

Two Grafana alert thresholds:
  Warning  < 30d: auto-renewal window opened, ntfy high priority
  Critical < 14d: ACME renewal failed, ntfy urgent

Textfile at /var/lib/node_exporter/textfile/cert_expiry.prom
Scraped by existing node-exporter job on 192.168.99.186:9100
Grafana rules: cfl8jqdlhu680d (warning), afl8jqdoepwqod (critical)
Break-tested: 35d threshold fired for vault/pdf/scrutiny/gitea correctly.

Cron: 0 * * * * sudo /usr/local/bin/cert-expiry-check.sh
2026-05-06 05:34:31 -05:00
..
cert-expiry-check.sh
traefik: add cert-expiry-check.sh with Prometheus textfile output
2026-05-06 05:34:31 -05:00
dynamic_conf_node01.yml
traefik: sync dynamic_conf.yml and add drift-check cron
2026-05-05 20:17:17 -05:00
dynamic_conf_node02.yml
traefik: sync dynamic_conf.yml and add drift-check cron
2026-05-05 20:17:17 -05:00
traefik-drift-check.sh
traefik: sync dynamic_conf.yml and add drift-check cron
2026-05-05 20:17:17 -05:00