/nvvs-devops

Documentation for the NVVS DevOps Team

Primary LanguageHTMLMIT LicenseMIT

repo standards badge

Ministry of Justice NVVS DevOps team repository

About this Repository

This is the Ministry of Justice NVVS DevOps teams public repository for our documentation.

Contents

Core repositories

Name Description
NVVS DevOps team Our repository for documentation, scripts and ways of working (this repository)

Shared Services

Name Description
GitHub actions Central configuration repository for GitHub Actions Workflows, which can be called from our other repositories.
Shared services infrastructure Creates infrastructure in the shared services account, including continuous integration and delivery pipelines
Technology Services GitHub Teams Terraform repository to define and maintain GitHub Teams for Technology Services.
Tech docs monitor Technical Documentation expiry monitor and notifier
AWS OIDC To manage GitHub AWS OpenID Connector provider on MoJO AWS Shared Services account.

Certificate Services

Name Description
Certificate Services Public Key Infrastructure(PKI) for devices and users. This repository is used to redeploy the EC2 instances on which Entrust builds the managed service.

DHCP / DNS

Name Description
DHCP DNS infrastructure This repository contains the Terraform code to build the AWS infrastructure for the Ministry of Justice's DNS and DHCP platform.
DHCP DNS admin portal Portal for managing staff device site DHCP and DNS.
DHCP server config This repository contains the Dockerfile to create the ISC Kea DHCP server docker image. The configuration for this server is managed in the Admin Portal.
DNS server config This repository contains the Dockerfile to create the BIND DNS server Docker image. The configuration for this server is managed in the Admin Portal.
DNS route53 zones DNS Zones hosted in Route53, the internal zones are used by MoJO-DNS
DHCP DNS disaster recovery This repo contains an interactive script which can be used to roll back a corrupt config file for the DNS or DHCP services.
DHCP DNS integration tests These scripts emulate UDP traffic for both DHCP and Syslog requests. They are run from the Corsham VM to test the services over the network.

Infrastructure Monitoring and Alerting Platform

Name Description
DevOps Monitor Monitoring solution developed by the Lan & WIFI team to monitor the applications that this team currently manages.
App reachability Container to remote write blackbox http application prometheus metrics
Blackbox exporter To probe endpoints over HTTP, HTTPS, DNS, TCP and ICMP
DNS reachability Container to remote write blackbox DNS prometheus metrics
Helm Deployment To deploy helm charts to EKS
IMAP infrastructure Terraform module that deploys the staff infrastructure monitoring solution including Grafana and Prometheus.
SNMP exporter To scrape data from physical devices (Docker image)
IMAP configuration To provision data sources dashboards and alerts
Prometheus ECS Prometheus ECS
Prometheus EKS Prometheus EKS

SMTP Relay Service

Name Description
SMTP infrastructure Infrastructure deployment for networking services including SMTP
SMTP relay server Internal mail relay based on POSTFIX

Network Access Control (NACS)

Name Description
Network access control admin Web Frontend for managing Network Access Control
Network access control disaster recovery Disaster Recovery
Network access control infrastructure NACS Infrastructure
Network access control integration tests NACS Integrations Tests
Network access control server NACS Radius Server Configuration

Tools & Automation

Name Description
Juniper Mist integration Automated tool, to manage sites on Juniper Mist

About this Website

This repository is published via Github Pages here

To update, edit files in this directory.

Filenames must be [something].html.md.erb