c3d2/nix-config
c3d2/nix-config
23
7
Fork 3
Code Issues 12 Pull Requests 2 Releases Wiki Activity
2,020 Commits 6 Branches 0 Tags 9.2 MiB
9c9c52b659
Commit Graph

1245 Commits

Author SHA1 Message Date
Sandro Jäckel
80a43fee2a
dacbert: increase tmpfs size 2022-09-22 23:59:04 +02:00
astro
212c6f8754 Merge pull request 'leon-vps' (#62) from leon/nix-config:leon-vps into master 
Reviewed-on: #62
 2022-09-22 12:03:00 +02:00
Astro
5862adf9ed modules/microvm: refactor into modules/nomad-microvm 2022-09-22 02:04:04 +02:00
Sandro Jäckel
93fc2736bb
hydra: fix increase parallel builds, increase max output, cleanup 2022-09-21 21:31:58 +02:00
Sandro Jäckel
05f74ab4eb
hydra: fix platforms, try 2 2022-09-21 20:24:48 +02:00
Sandro Jäckel
959b3d00b7
hydra: remove ssh://localhost which no longer works 2022-09-21 19:52:41 +02:00
leon
fb2d4126bd change username 2022-09-21 00:36:39 +01:00
leon
ad8d0b3364 add port 22 2022-09-20 01:41:57 +01:00
Astro
96df38bd7b put our new ipv6 range everywhere 2022-09-20 01:05:22 +02:00
Astro
8a4db81345 hosts/sshlog: init 2022-09-20 00:00:02 +02:00
leon
99f180f790 add ssh-key 2022-09-19 20:14:52 +01:00
leon
766ae5cacf add docker 2022-09-19 20:13:38 +01:00
Astro
c7bd7a84be leoncloud: remove manual network config 2022-09-18 23:07:48 +02:00
Astro
fe3636e324 leon: switch to flpk net 2022-09-18 21:39:16 +02:00
Astro
f08946f64b dacbert, rpi-netboot: reenable bevy_julia 2022-09-17 22:24:55 +02:00
Astro
c1452bb3c8 dacbert, rpi-netboot: install projectm 2022-09-17 19:32:04 +02:00
Astro
9113efdbf8 rpi-netboot: add projectm 2022-09-17 19:32:04 +02:00
Astro
989ef10dbf dacbert, glotzbert, rpi-netboot: add bevy_julia 2022-09-17 01:27:35 +02:00
Astro
933014cee2 dacbert, glotzbert: add tracer, bevy_mandelbrot, allcolors 2022-09-16 22:15:43 +02:00
Astro
10bb8eb364 rpi-netboot: enable bevy_mandelbrot 2022-09-16 00:10:48 +02:00
Astro
ef858c7a46 hosts/zengel: init 2022-09-15 20:32:50 +02:00
Astro
dfab24ab1c rpi-netboot, overlay: add polygon's allcolors 2022-09-15 16:38:45 +02:00
Sandro Jäckel
928180dfab
Cleanup dell tests leftovers 2022-09-14 22:55:39 +02:00
Astro
8d49db6fe9 nfsroot: fix nfs 2022-09-14 21:34:44 +02:00
Astro
3ce02a849c rpi-netboot: add tracer, bevy-mandelbrot 2022-09-14 21:34:27 +02:00
Astro
4a03d23f75 rpi-netboot: set console param 2022-09-14 20:10:15 +02:00
Astro
360896b3c2 rpi-netboot: remove outdated packageOverrides 2022-09-14 19:43:05 +02:00
Astro
a928adf98d nfsroot: restrict dacbert nfs rw access to just dacbert 2022-09-14 00:23:25 +02:00
Astro
a237d67397 host-registry: add dacbert, pulsebert ip4 addresses 2022-09-14 00:19:19 +02:00
Astro
cccce38fe4 freifunk: update wg-vpn6 endpoint 2022-09-13 01:48:04 +02:00
Astro
49c5fa0996 ticker: s/ds21/ds22/ 2022-09-12 01:27:48 +02:00
Astro
c79982f1a7 freifunk: update age key 2022-09-11 04:13:49 +02:00
Astro
777a4e3d85 riscbert: hack checks away in a dirtier way 2022-09-09 04:34:46 +02:00
Astro
b84243c03b dacbert: switch to wayland, vnc -> rdp 2022-09-08 21:26:23 +02:00
Astro
85d9a11e96 riscbert: disable checks for libuv 2022-09-08 20:56:10 +02:00
Emery
749a1ad2be Use the good eris packages not the bad eris_utils 2022-09-08 12:44:00 -05:00
Astro
373d663919 riscbert: disable checks for libffi, openssl as well 2022-09-08 17:49:46 +02:00
Astro
c32316352f riscbert: add nfs to boot.initrd.availableKernelModules 2022-09-08 17:49:11 +02:00
Astro
c480bf4083 hydra: use dacbert again as build for aarch64-linux 2022-09-08 03:42:20 +02:00
Astro
868658e1fd rpi-netboot: disable hq.journalToMqtt due to lack of ssh key for sops-nix 2022-09-07 20:11:38 +02:00
Astro
3eef152463 modules/c3d2: add c3d2.hq.journalToMqtt 2022-09-07 17:56:51 +02:00
Astro
97c8a3c032 riscbert: mount nfsroot 2022-09-07 16:39:21 +02:00
Emery
678313627a Add ERIS CoAP server to nncp 2022-09-06 11:24:34 -05:00
Astro
ba2e93b8ec riscbert: add workaround for broken klibc 2022-09-06 01:46:34 +02:00
Astro
d55ef67118 riscbert: config 2022-09-06 01:28:08 +02:00
Astro
c4889d0377 broker: add sensors account 2022-09-06 00:21:48 +02:00
Astro
5baaa1f3ae leon: move from nomad to server10 2022-09-05 22:19:49 +02:00
Astro
a0dc08e97b hosts/leoncloud: init 2022-09-05 22:19:35 +02:00
Astro
293c8dcd7a dacbert: reboot on oops 2022-09-05 21:40:01 +02:00
Sandro Jäckel
8865ff898e
bind: use reload-or-restart 2022-09-04 19:14:16 +02:00
Sandro Jäckel
96284491ff
pulsebert: back to pi 2022-09-04 13:13:59 +02:00
leonvita91
acb599e16f fix peers sub-ips 2022-09-02 20:52:02 +01:00
leonvita91
3b005f4385 change subnet peers 2022-09-02 20:34:32 +01:00
leonvita91
d8bf588368 orginezed lines 2022-09-02 20:28:01 +01:00
leonvita91
33ae6cf083 Orginzied lines 2022-09-02 20:25:18 +01:00
Astro
8097c9a521 leon: remove route that is no longer necessary with NAT reflection from internal ipv4 address 2022-09-02 21:05:05 +02:00
Astro
bbba102053 leon: fix spelling, reindent 2022-09-02 20:58:59 +02:00
astro
2bb94cb300 Merge pull request 'Fix peers mess' (#55) from leon/nix-config:leon-network into master 
Reviewed-on: #55
 2022-09-02 20:55:52 +02:00
leonvita91
6a94a556af Fix peers mess 2022-09-02 19:54:30 +01:00
astro
3672b786c8 Merge pull request 'fix peers' (#54) from leon/nix-config:leon-network into master 
Reviewed-on: #54
 2022-09-02 20:51:20 +02:00
leonvita91
6258b24f09 fix peers 2022-09-02 19:49:25 +01:00
astro
7f765a6751 Merge pull request 'fix allow ips' (#53) from leon/nix-config:leon-network into master 
Reviewed-on: #53
 2022-09-02 20:34:18 +02:00
leonvita91
526725a77b fix allow ips 2022-09-02 19:01:03 +01:00
astro
07d8560f8a Merge pull request 'leon-network' (#52) from leon/nix-config:leon-network into master 
Reviewed-on: #52
 2022-09-02 19:35:00 +02:00
leonvita91
d41c99e82d fix syntax 2022-09-02 04:37:55 +01:00
leonvita91
3cebad00ce add-new-vpn-clients 2022-09-02 04:34:59 +01:00
Sandro Jäckel
318ee46c91
Redirect hackmd.c3d2.de ot hedgedoc 2022-09-01 23:56:14 +02:00
Astro
96d02609db leon: enable stats 2022-08-31 20:10:40 +02:00
Astro
3420b853de leon: enable ip forwarding 2022-08-31 19:50:48 +02:00
leonvita91
42987faacd update firewall & ports 2022-08-28 00:43:10 +01:00
leonvita91
a456d25708 update firewall 2022-08-27 22:03:10 +01:00
Astro
9be2894ac6 ftp: let nginx listen on ipv6 too 2022-08-27 21:54:01 +02:00
Astro
afcd152088 matemat: allow all the internal ipv6 subnets 2022-08-27 21:39:11 +02:00
astro
7b99cdc3cc Merge pull request 'sync the port with the new one' (#46) from leon/nix-config:master into master 
Reviewed-on: #46
 2022-08-27 21:12:00 +02:00
leonvita91
5428aa3d17 sync the port with the new one 2022-08-27 18:19:38 +01:00
Astro
858a344a7d ticker: update `and' feed url 2022-08-27 16:31:56 +02:00
Astro
fab419937d leon: fix interface in prepared but inactive code 2022-08-26 00:35:57 +02:00
astro
de3b114a83 Merge pull request 'master' (#45) from leon/nix-config:master into master 
Reviewed-on: #45
 2022-08-26 00:34:57 +02:00
leonvita91
6c5d103e12 changing routing from serv to pub 2022-08-25 23:32:04 +01:00
Astro
cdd358e2cb leon: add backwards route for port forwarding 2022-08-26 00:01:10 +02:00
leonvita91
1dc8bdc3e3 add new-vpn-interface-without-internet 2022-08-25 22:42:33 +01:00
leonvita91
b93a0d2a73 add new VPN-interface- 2022-08-25 22:38:52 +01:00
Astro
691bc7c8e1 leon: route through pub-gw 2022-08-25 22:04:22 +02:00
astro
0f4aa8baa8 Merge pull request 'fixing the interface name' (#44) from leon/nix-config:master into master 
Reviewed-on: #44
 2022-08-25 20:26:06 +02:00
leonvita91
d55ff8fa56 fixing the interface name 2022-08-25 19:18:57 +01:00
astro
535c85010a Merge pull request 'master' (#43) from leon/nix-config:master into master 
Reviewed-on: #43
 2022-08-25 19:51:25 +02:00
leonvita91
5f3c3da2db fix-iptables-down-option 2022-08-25 01:53:27 +01:00
leonvita91
103936aa47 add-vps-wireguard-server 2022-08-25 01:44:31 +01:00
leonvita91
5521c14abb Adding Wg-VPN uncomplete-- 2022-08-24 04:47:49 +01:00
Sandro Jäckel
8d9f1ef2dd
Keep journalctl for debugging 2022-08-24 01:18:24 +02:00
Sandro Jäckel
848c27d1fb
Allow llmnr tcp 2022-08-24 01:18:13 +02:00
Sandro Jäckel
0beeba3686
pulsebert: disable bluetooth 
there is no wireless hardware on the new hardware
 2022-08-24 01:17:52 +02:00
Sandro Jäckel
bdbfef3bc5
Switch pulsebert to dell mini 2022-08-24 00:32:00 +02:00
Sandro Jäckel
248034671d
pulsebert: activate firewall 2022-08-23 00:19:58 +02:00
Sandro Jäckel
936e45704b
pulsebert: disable not working wlan0 dhcp 2022-08-23 00:19:45 +02:00
Sandro Jäckel
c9e34bc740
pulsebert: add sdimage back 2022-08-23 00:19:33 +02:00
Astro
b7bc64e2df nfsroot: provide netbootxyz from this host 2022-08-22 22:14:16 +02:00
Sandro Jäckel
2c4814b16d
Disable crashing mjpg-streamer 2022-08-21 22:33:44 +02:00
Sandro Jäckel
b3406003cb
Try getting firewall to work 
somehow allowing ports does not have any effect.
Probably related to the Pi not being reboot save.
 2022-08-21 22:33:44 +02:00
Sandro Jäckel
398133fa93
Don't error if octoprint is disabled for testing 2022-08-21 22:10:01 +02:00
Sandro Jäckel
72c8847075
Dedupe octoprint port 2022-08-21 22:09:39 +02:00
Sandro Jäckel
f62d05d770
glotzbert: enable hardware accelerated video decoding in chromium 2022-08-21 00:13:29 +02:00
Astro
f0907545d4 Merge remote-tracking branch 'leon/master' 2022-08-20 17:24:25 +02:00
leonvita91
b97ab5e226 fix firewall syntax 2022-08-20 16:22:11 +01:00
leonvita91
60cacf8cfd fix ssh syntax 2022-08-20 16:16:59 +01:00
leonvita91
5b23d68513 open ports 2022-08-20 05:55:46 +01:00
leonvita91
26c22ea868 add config and wireguard-tools 2022-08-20 03:24:53 +01:00
Sandro Jäckel
c825120197
factorio: increase RAM 2022-08-18 23:30:47 +02:00
Astro
ac2a9e2246 server9, server10: refactor into modules/microvm-host 2022-08-17 21:00:01 +02:00
Astro
5741ba6aa6 leon: fix syntax 2022-08-14 23:04:27 +02:00
Astro
f4155c5675 scrape, ticker: add dresden-kulturstadt 2022-08-14 23:04:18 +02:00
astro
2b28d6d81c Merge pull request 'add new ssh-key and app' (#41) from leon/nix-config:vps into master 
Reviewed-on: #41
 2022-08-13 23:23:25 +02:00
leonvita91
97e705423b add new ssh-key and app 2022-08-11 03:27:43 +01:00
Astro
9d256b6306 ticker: wiggle colors 2022-08-10 15:01:46 +02:00
Astro
153d6bc336 ticker: colors 2022-08-10 14:36:29 +02:00
Astro
aded3075fa ticker: add software-engineering-community, slubmakerspace, php-usergroup 2022-08-10 14:26:47 +02:00
Sandro Jäckel
7ce2490bd6
mediawiki: add LDAPAuthentication2 and PluggableAuth 2022-08-07 20:55:11 +02:00
Sandro Jäckel
2ba58ac387
mediawiki: install first extension for LDAP, LDAPProvider, fix deployment, bump flake 2022-08-07 14:59:00 +02:00
leonvita91
a533a648e2 config.nix 2022-08-07 02:47:42 +01:00
Astro
0a7a4715f1 ftp: add astro's key for ftpupload@ 2022-08-05 21:00:09 +02:00
Astro
c30245df93 ftp: chroot deeper 2022-08-05 20:59:54 +02:00
Sandro Jäckel
e30dc899ad
Add factorio 2022-08-05 19:08:42 +02:00
Sandro Jäckel
47198a8124
Format 2022-08-05 18:19:12 +02:00
Sandro Jäckel
6e7e013ec6
auth: fix json 2022-08-02 01:51:13 +02:00
Sandro Jäckel
355c10d79f
auth: seed groups, technical users 2022-08-01 00:16:55 +02:00
Sandro Jäckel
f2bd987f1e
Move sopsDefaultFile into hosts 2022-07-31 18:13:03 +02:00
Sandro Jäckel
36f78974e9
Delete old proxy entries 2022-07-31 17:55:56 +02:00
Sandro Jäckel
01e108977f
Format 2022-07-31 17:54:49 +02:00
Sandro Jäckel
a20be3ca78
Move sops secrets into nix-config, move hosts under hosts/containers to hosts 2022-07-31 17:52:24 +02:00
Sandro Jäckel
c5a2cad5ab
Delete no longer existing hosts 2022-07-31 17:47:31 +02:00
Sandro Jäckel
d3c494f5f7
mediawiki: use upstreamed package, correct admin mail 2022-07-27 22:32:44 +02:00
Sandro Jäckel
73f937c5f6
gitea: increase paging per size 2022-07-27 21:00:29 +02:00
Sandro Jäckel
0b78141b42
WIP 2022-07-24 03:59:15 +02:00
Sandro Jäckel
f0800a6150
Rename codimd.c3d2.de to hedgedoc.c3d2.de, redirect, add ldap login 2022-07-24 03:59:07 +02:00
Sandro Jäckel
9eef50b0f0
gitea: increqase minimal rsa key size 2022-07-23 22:26:08 +02:00
Sandro Jäckel
43bdf5cc4e
gitea: route ldap over internal network 2022-07-23 02:04:53 +02:00
Sandro Jäckel
d07eb5eab2
auth: open ldaps port 2022-07-23 02:04:42 +02:00
Sandro Jäckel
70004fb081
Add auth.c3d2.de 2022-07-23 00:06:24 +02:00
Sandro Jäckel
d26554436e
RIP keycloak 2022-07-22 19:55:18 +02:00
Sandro Jäckel
fb38db52bb
leon: remove resolved TODO 2022-07-20 20:59:04 +02:00
Sandro Jäckel
4c95a28d19
server10: use zfs compatible kernel 2022-07-20 20:57:17 +02:00
Astro
0c3fc6f3ec gnunet: throttle maxNetDownBandwidth 
this has caused avg 1.5 MB/s upload over last two weeks
 2022-07-20 01:46:52 +02:00
Astro
5ba762520b broker: enable websockets 2022-07-19 18:25:28 +02:00
Astro
451719ee2e broker: listen on both ipv4 and ipv6 
though sysctl net.ipv6.bindv6only is already at 0
 2022-07-17 02:00:55 +02:00
Astro
e1f7b84669 hydra: fix overlay to restore wander from nixos-unstable 2022-07-17 01:48:50 +02:00
Astro
bd0479c4b5 broker: enable mqtt+tls 2022-07-17 01:48:16 +02:00
polygon
6fed0e0bf9 ftp: theme in Nix store 2022-07-16 22:59:28 +02:00
polygon
7cec5e2734 ftp: sftp working 2022-07-16 21:50:55 +02:00
polygon
fe8f3d3abb ftp: nginx 2022-07-16 20:38:23 +02:00
Astro
b87a73e85c ftp: copy ftpupload.authorized_keys from inbert 2022-07-16 20:37:29 +02:00
Astro
314227533a scrape, ticker: add tjg-dresden 2022-07-16 03:11:27 +02:00
Astro
df323b4dfa broker: customize mqttui with username/password 2022-07-16 03:11:06 +02:00
polygon
7b5f6b388e mosquitto: works 2022-07-16 02:05:36 +02:00
Sandro Jäckel
116bae9d15
hydra: set keep-outputs to not gc anything in build jobs 2022-07-16 01:00:06 +02:00
Astro
2128cd02b0 ticker: add dresdenjs, cpp-ug 2022-07-15 18:47:37 +02:00
Astro
d6d1347291 ticker: add ezag 2022-07-15 04:08:10 +02:00
Astro
87b1d471be scrape, ticker: add kultursommer, hfmdd, hfbk-dresden 2022-07-15 02:33:47 +02:00
Astro
cad90483e1 scrape, ticker: add kunsthaus 2022-07-14 20:38:48 +02:00
revol-xut
67daa356ae
fixed nix ref 2022-07-13 20:39:21 +02:00
revol-xut
1351320281
fixed folder names for staging-data-hoarder 2022-07-13 20:23:32 +02:00
revol-xut
667a7bb974
restructed update script for staging-data-hoarder 2022-07-13 20:10:42 +02:00
Markus Schmidl
0af1d41e0a public-access-proxy: update data-hoarder match arg 2022-07-12 00:57:42 +02:00
Markus Schmidl
009231747f public-access-proxy: add data-hoarder 2022-07-11 23:36:25 +02:00
Astro
36d19c3223 dacbert: remove duplicate boot.kernelPackages 2022-07-10 22:44:22 +02:00
Astro
49ff7a6f61 sdrweb: nomadify 2022-07-10 20:51:45 +02:00
Astro
1b618f0cd8 modules/microvm: c3d2.deployment.server = "nomad" 2022-07-10 20:50:07 +02:00
Astro
e96f45dc81 hydra, server9, server10: enable smartd 2022-07-10 03:01:56 +02:00
Markus Schmidl
028ceb3ac5 remove legacy 2022-07-10 03:00:12 +02:00
Markus Schmidl
545336db70 server10: add microvm data-hoarder 2022-07-10 01:28:44 +02:00
Astro
1212323160 c3d2-web: properly redirect stdout+stderr to file 2022-07-10 00:19:47 +02:00
Sandro Jäckel
94f9ac621e
hydra: set state version for container 2022-07-09 00:58:03 +02:00
Sandro Jäckel
321ff05045
hydra: more parallism with less jobs 2022-07-09 00:57:42 +02:00
Sandro Jäckel
a890058b8f
pulsebert: enable rtkit 2022-07-08 22:03:31 +02:00
Astro
7aa7cab3b2 c3d2-web: redirect https://datenspuren.de/ -> /2022/ 2022-07-07 17:04:34 +02:00
Astro
08060dced9 improve nomad deployment 2022-07-07 01:21:39 +02:00
Astro
c485214385 gnunet: bump limits 2022-07-07 00:32:02 +02:00
Astro
8ef962fe16 gnunet: add 2022-07-06 21:09:04 +02:00
Sandro Jäckel
9d9d7b2757
hydra: fix max output size 2022-07-05 21:31:10 +02:00
Astro
5707cd896f add nomad scripting 2022-07-05 00:08:03 +02:00
Astro
cb4799d2e9 ticker: add more feeds 2022-07-05 00:07:05 +02:00
Sandro Jäckel
98d7d5d6d5
hydra: increase max_output_size 2022-07-04 00:51:01 +02:00
Astro
eb1df36d7a hydra: remove nomad client 2022-07-04 00:33:50 +02:00
Astro
9170273a38 modules/cluster: join nomad instances over ipv4 2022-07-04 00:31:23 +02:00
Astro
974e85aaac dacbert: add pi-sensors 2022-07-04 00:22:11 +02:00
Astro
e8a66709b7 modules/cluster: init glusterfs and nomad 2022-07-04 00:22:11 +02:00
Sandro Jäckel
14d8d34112
mediawiki: turn on captcha to prevent spam 2022-07-03 22:45:19 +02:00
Sandro Jäckel
b378c49f5e
mediawiki: sort extensions 2022-07-03 22:00:22 +02:00
Sandro Jäckel
77a03b1962
mediawiki: fix css loading 2022-07-03 21:57:50 +02:00
Sandro Jäckel
fa700f5f8a
mediawiki: fix old api links 2022-07-03 21:42:33 +02:00
Astro
2b53f1878b ticker: add kursiv feed 2022-07-03 14:36:39 +02:00
Astro
b29d7e936f dacbert, radiobert: allow /dev/mem access for gpio 2022-07-01 19:45:00 +02:00
Astro
274945f951 ticker: add impact-hub 2022-07-01 03:11:51 +02:00
Sandro Jäckel
2525f40584
hydra: forcefully enable ca-derivations 2022-07-01 01:31:13 +02:00
Sandro Jäckel
0ed536b3fc
hydra-ca: add upstream ca hydra cache 2022-07-01 01:31:13 +02:00
Sandro Jäckel
51b70b1f0f
hydra-ca: add git for flakes 2022-07-01 01:31:13 +02:00
Astro
a0b116b924 scrape, ticker: add dresden-versammlungen, azconni 2022-07-01 01:05:50 +02:00
vv01f
4b93a5fbcc add gefilte fest 2022-06-30 19:13:50 +02:00
Markus Schmidl
6025d3d9c9 server9: add zfs mounts to hardware configuration 2022-06-29 20:17:45 +02:00
Markus Schmidl
763d7203db server[9|10]: enable zfs autoscrub 2022-06-29 20:04:57 +02:00
Astro
a36901790d nfsroot: fix /etc/exports duplicate fsid 2022-06-29 17:40:15 +02:00