Hetzner VLAN¶
Overview¶
Configures VLAN interfaces on a Hetzner host.
Deployment¶
sb install hetzner-vlan-deploy
Role Defaults¶
Info
Variables can be overridden in /srv/git/saltbox/inventories/host_vars/localhost.yml.
Example Override
hetzner_vlan_netplan_apply: true
hetzner_vlan_netplan_apply
# Type: bool (true/false)
hetzner_vlan_netplan_apply: true
hetzner_vlan_role_autoheal_enabled
# Enable or disable Autoheal monitoring for the container created when deploying
# Type: bool (true/false)
hetzner_vlan_role_autoheal_enabled: true
hetzner_vlan_role_depends_on
# List of container dependencies that must be running before the container start
# Type: string
hetzner_vlan_role_depends_on: ""
hetzner_vlan_role_depends_on_delay
# Delay in seconds before starting the container after dependencies are ready
# Type: string (quoted number)
hetzner_vlan_role_depends_on_delay: "0"
hetzner_vlan_role_depends_on_healthchecks
# Enable healthcheck waiting for container dependencies
# Type: string ("true"/"false")
hetzner_vlan_role_depends_on_healthchecks:
hetzner_vlan_role_diun_enabled
# Enable or disable Diun update notifications for the container created when deploying
# Type: bool (true/false)
hetzner_vlan_role_diun_enabled: true
hetzner_vlan_role_dns_enabled
# Enable or disable automatic DNS record creation for the container
# Type: bool (true/false)
hetzner_vlan_role_dns_enabled: true
hetzner_vlan_role_docker_controller
# Enable or disable Saltbox Docker Controller management for the container
# Type: bool (true/false)
hetzner_vlan_role_docker_controller: true
hetzner_vlan_role_traefik_autodetect_enabled
# Enable Traefik autodetect middleware for the container
# Type: bool (true/false)
hetzner_vlan_role_traefik_autodetect_enabled: false
hetzner_vlan_role_traefik_crowdsec_enabled
# Enable CrowdSec middleware for the container
# Type: bool (true/false)
hetzner_vlan_role_traefik_crowdsec_enabled: false
hetzner_vlan_role_traefik_error_pages_enabled
# Enable custom error pages middleware for the container
# Type: bool (true/false)
hetzner_vlan_role_traefik_error_pages_enabled: false
hetzner_vlan_role_traefik_gzip_enabled
# Enable gzip compression middleware for the container
# Type: bool (true/false)
hetzner_vlan_role_traefik_gzip_enabled: false
hetzner_vlan_role_traefik_middleware_http_api_insecure
# Type: bool (true/false)
hetzner_vlan_role_traefik_middleware_http_api_insecure:
hetzner_vlan_role_traefik_middleware_http_insecure
# Type: bool (true/false)
hetzner_vlan_role_traefik_middleware_http_insecure:
hetzner_vlan_role_traefik_robot_enabled
# Enable robots.txt middleware for the container
# Type: bool (true/false)
hetzner_vlan_role_traefik_robot_enabled: true
hetzner_vlan_role_traefik_tailscale_enabled
# Enable Tailscale-specific Traefik configuration for the container
# Type: bool (true/false)
hetzner_vlan_role_traefik_tailscale_enabled: false
hetzner_vlan_role_traefik_wildcard_enabled
# Enable wildcard certificate for the container
# Type: bool (true/false)
hetzner_vlan_role_traefik_wildcard_enabled: true
hetzner_vlan_role_web_fqdn_override
# Override the Traefik fully qualified domain name (FQDN) for the container
# Type: list
hetzner_vlan_role_web_fqdn_override:
Example Override
hetzner_vlan_role_web_fqdn_override:
- "{{ traefik_host }}"
- "hetzner_vlan2.{{ user.domain }}"
- "hetzner_vlan.otherdomain.tld"
Note: Include {{ traefik_host }} to preserve the default FQDN alongside your custom entries
hetzner_vlan_role_web_host_override
# Override the Traefik web host configuration for the container
# Type: string
hetzner_vlan_role_web_host_override:
Example Override
hetzner_vlan_role_web_host_override: "Host(`{{ traefik_host }}`) || Host(`{{ 'hetzner_vlan2.' + user.domain }}`)"
Note: Use {{ traefik_host }} to include the default host configuration in your custom rule
hetzner_vlan_role_web_scheme
# URL scheme to use for web access to the container
# Type: string ("http"/"https")
hetzner_vlan_role_web_scheme: