added netbox deployment

.gitignore

@@ -0,0 +1,2 @@
+.env
+data

docker-compose.yml

@@ -0,0 +1,148 @@
+---
+services:
+  netbox: &netbox
+    image: netboxcommunity/netbox:${NETBOX_VERSION}-${NETBOX_DOCKER_VERSION}
+    restart: unless-stopped
+    depends_on:
+      - netbox-worker
+      - postgres
+      - redis
+      - redis-cache
+    environment:
+      - CORS_ORIGIN_ALLOW_ALL=True
+      - DB_HOST=postgres
+      - DB_NAME=${PSQL_NAME}
+      - DB_USER=${PSQL_USER}
+      - DB_PASSWORD=${PSQL_PASS}
+      - EMAIL_SERVER=${NETBOX_EMAIL_SERVER}
+      - EMAIL_PORT=${NETBOX_EMAIL_PORT}
+      - EMAIL_SSL_CERTFILE=${NETBOX_EMAIL_SSLCER}
+      - EMAIL_SSL_KEYFILE=${NETBOX_EMAIL_SSLKEY}
+      - EMAIL_TIMEOUT=${NETBOX_EMAIL_TIMEOUT}
+      - EMAIL_USE_SSL=${NETBOX_EMAIL_SSL}
+      - EMAIL_USE_TLS=${NETBOX_EMAIL_TLS}
+      - EMAIL_FROM=${NETBOX_EMAIL_FROM}
+      - EMAIL_USERNAME=${NETBOX_EMAIL_USER}
+      - EMAIL_PASSWORD=${NETBOX_EMAIL_PASS}
+      - GRAPHQL_ENABLED=${NETBOX_GRAPHQL}
+      - HOUSEKEEPING_INTERVAL=86400
+      - MAX_PAGE_SIZE=1000
+      - MEDIA_ROOT=/opt/netbox/netbox/media
+      - METRICS_ENABLED=${NETBOX_METRICS}
+      - NAPALM_USERNAME=${NETBOX_NAPALM_USER}
+      - NAPALM_PASSWORD=${NETBOX_NAPALM_PASS}
+      - NAPALM_TIMEOUT=10
+      - REDIS_HOST=redis
+      - REDIS_DATABASE=0
+      - REDIS_PASSWORD=${REDIS_PASS}
+      - REDIS_SSL=false
+      - REDIS_INSECURE_SKIP_TLS_VERIFY=false
+      - REDIS_CACHE_HOST=redis-cache
+      - REDIS_CACHE_DATABASE=1
+      - REDIS_CACHE_PASSWORD=${REDIS_CACHE_PASS}
+      - REDIS_CACHE_SSL=false
+      - REDIS_CACHE_INSECURE_SKIP_TLS_VERIFY=false
+      - RELEASE_CHECK_URL=https://api.github.com/repos/netbox-community/netbox/releases
+      - SECRET_KEY=${NETBOX_SECRET_KEY}
+      - SKIP_STARTUP_SCRIPTS=${NETBOX_SKIP_SCRIPTS}
+      - SKIP_SUPERUSER=${NETBOX_SKIP_SUPERUSER}
+      - SUPERUSER_API_TOKEN=${NETBOX_SUPERUSER_TOKEN}
+      - SUPERUSER_EMAIL=${NETBOX_SUPERUSER_EMAIL}
+      - SUPERUSER_NAME=${NETBOX_SUPERUSER_NAME}
+      - SUPERUSER_PASSWORD=${NETBOX_SUPERUSER_PASS}
+      - WEBHOOKS_ENABLED=${NETBOX_WEBHOOKS}
+    labels:
+      - traefik.enable=${TRAEFIK_ENABLED}
+      - traefik.docker.network=${TRAEFIK_NETWORK}
+      ### Section HTTP
+      - traefik.http.routers.http-${TRAEFIK_ROUTER}.entrypoints=http
+      # redirect to HTTPS only
+      - traefik.http.routers.http-${TRAEFIK_ROUTER}.middlewares=http-to-https
+      - traefik.http.routers.http-${TRAEFIK_ROUTER}.rule=Host(`${TRAEFIK_MATCHRULE}`)
+      ### Section HTTPS
+      - traefik.http.routers.https-${TRAEFIK_ROUTER}.entrypoints=https
+      # configure the exposed service
+      - traefik.http.routers.https-${TRAEFIK_ROUTER}.middlewares=hsts
+      - traefik.http.routers.https-${TRAEFIK_ROUTER}.rule=Host(`${TRAEFIK_MATCHRULE}`)
+      # of course, enable TLS and it's certificate provider
+      - traefik.http.routers.https-${TRAEFIK_ROUTER}.tls=${TRAEFIK_TLSENABLED}
+      - traefik.http.routers.https-${TRAEFIK_ROUTER}.tls.certresolver=${TRAEFIK_CERTRESOLVER}
+      # specify a service so a custom port can be used
+      - traefik.http.services.${TRAEFIK_SERVICE}.loadbalancer.server.port=${TRAEFIK_SERVICE_PORT}
+    user: unit:root
+    volumes:
+      - ${NETBOX_DATA}/configuration:/etc/netbox/config:z,ro
+      - ${NETBOX_DATA}/initializers:/opt/netbox/initializers:z,ro
+      - ${NETBOX_DATA}/media:/opt/netbox/netbox/media:z
+      - ${NETBOX_DATA}/reports:/etc/netbox/reports:z,ro
+      - ${NETBOX_DATA}/scripts:/etc/netbox/scripts:z,ro
+      - ${NETBOX_DATA}/startup_scripts:/opt/netbox/startup_scripts:z,ro
+
+  netbox-worker:
+    <<: *netbox
+    command:
+      - /opt/netbox/venv/bin/python
+      - /opt/netbox/netbox/manage.py
+      - rqworker
+    depends_on:
+      - postgres
+      - redis
+    labels:
+      - traefik.enable=false
+    networks:
+      - internal
+
+  netbox-housekeeping:
+    <<: *netbox
+    command:
+      - /opt/netbox/housekeeping.sh
+    depends_on:
+      - postgres
+      - redis
+    labels:
+      - traefik.enable=false
+    networks:
+      - internal
+
+  postgres:
+    image: postgres:${PSQL_VERSION}
+    restart: unless-stopped
+    environment:
+      - POSTGRES_DB=${PSQL_NAME}
+      - POSTGRES_USER=${PSQL_USER}
+      - POSTGRES_PASSWORD=${PSQL_PASS}
+    networks:
+      - internal
+    volumes:
+      - ${PSQL_DATA}:/var/lib/postgresql/data
+
+  redis:
+    image: redis:${REDIS_VERSION}
+    restart: unless-stopped
+    command:
+      - sh
+      - -c
+      - redis-server --appendonly yes --requirepass $$REDIS_PASSWORD
+    environment:
+      - REDIS_PASSWORD=${REDIS_PASS}
+    networks:
+      - internal
+    volumes:
+      - ${REDIS_DATA}:/data
+
+  redis-cache:
+    image: redis:${REDIS_VERSION}
+    command:
+      - sh
+      - -c
+      - redis-server --requirepass $$REDIS_PASSWORD
+    environment:
+      - REDIS_PASSWORD=${REDIS_CACHE_PASS}
+    networks:
+      - internal
+
+networks:
+  internal:
+  traefik:
+    external: true
+    name: ${TRAEFIK_NETWORK}

env.example

@@ -0,0 +1,51 @@
+# NetBox
+NETBOX_DOCKER_VERSION=2.1.0
+NETBOX_VERSION=3.2.9
+NETBOX_DATA=./data/netbox
+NETBOX_EMAIL_SERVER=localhost
+NETBOX_EMAIL_PORT=25
+NETBOX_EMAIL_SSLCER=
+NETBOX_EMAIL_SSLKEY=
+NETBOX_EMAIL_TIMEOUT=5
+NETBOX_EMAIL_SSL=false
+NETBOX_EMAIL_TLS=false
+NETBOX_EMAIL_FROM=netbox@bar.com
+NETBOX_EMAIL_USER=netbox
+NETBOX_EMAIL_PASS=
+NETBOX_GRAPHQL=true
+NETBOX_METRICS=false
+NETBOX_NAPALM_USER=
+NETBOX_NAPALM_PASS=
+NETBOX_SECRET_KEY=r8OwDznj!!dci#P9ghmRfdu1Ysxm0AiPeDCQhKE+N_rClfWNj
+NETBOX_SKIP_SCRIPTS=false
+NETBOX_SKIP_SUPERUSER=false
+NETBOX_SUPERUSER_TOKEN=0123456789abcdef0123456789abcdef01234567
+NETBOX_SUPERUSER_EMAIL=admin@example.com
+NETBOX_SUPERUSER_NAME=admin
+NETBOX_SUPERUSER_PASS=admin
+NETBOX_WEBHOOKS=true
+
+# Træfik
+TRAEFIK_ENABLED=true
+TRAEFIK_NETWORK=traefik
+TRAEFIK_ROUTER=netbox_example_com
+TRAEFIK_MATCHRULE=netbox.example.com
+TRAEFIK_TLSENABLED=true
+TRAEFIK_CERTRESOLVER=letsencrypt
+TRAEFIK_SERVICE=netbox_example_com
+TRAEFIK_SERVICE_PORT=8000
+
+# PostgreSQL
+PSQL_VERSION=14.5-alpine3.16
+PSQL_DATA=./data/postgres
+PSQL_NAME=netbox
+PSQL_USER=netbox
+PSQL_PASS=J5brHrAXFLQSif0K
+
+# Redis
+REDIS_VERSION=7.0.4-alpine3.16
+REDIS_DATA=./data/redis
+REDIS_PASS=H733Kdjndks81
+
+# Redis Cache
+REDIS_CACHE_PASS=t4Ph722qJ5QHeQ1qfu36

update_base.sh

@@ -0,0 +1,12 @@
+#/usr/bin/env bash
+set -e
+
+source .env
+rm -rf ${NETBOX_DATA}/{configuration,initializers,reports,scripts,startup_scripts}
+mkdir -p ${NETBOX_DATA}
+git clone https://github.com/netbox-community/netbox-docker.git
+cd netbox-docker
+git checkout ${NETBOX_DOCKER_VERSION}
+cd ..
+mv netbox-docker/{configuration,initializers,reports,scripts,startup_scripts} ${NETBOX_DATA}
+rm -rf netbox-docker