|
2df10730b1
|
ticker: rm dup security.acme configuration
|
2021-09-29 22:59:31 +02:00 |
|
|
1f4344f43e
|
mobilizon: setup emails
|
2021-09-29 19:28:05 +02:00 |
|
|
dcfdd87899
|
DRY security.acme
|
2021-09-27 22:27:36 +02:00 |
|
|
8974270a90
|
public-access-proxy: fix sdr domain name
|
2021-09-26 01:47:02 +02:00 |
|
|
9a7a585f63
|
radiobert: deploy into serv, add nginx
|
2021-09-25 16:36:09 +02:00 |
|
|
1dd68b06a9
|
freifunk: ignore invalid cert on https://register.freifunk-dresden.de
|
2021-09-22 00:01:41 +02:00 |
|
|
1235a7439d
|
mobilizon: init
does not yet send mails
|
2021-09-20 22:11:32 +02:00 |
|
|
4d9aa9f091
|
ticker: add ds21 schedule.ics
|
2021-09-18 00:45:47 +02:00 |
|
|
8305b47c7c
|
s/zentralwerk.dn42/zentralwerk.org/
follow-up to df0bca25bb
requested by poelzi
|
2021-09-18 00:44:58 +02:00 |
|
|
e90d9e1449
|
stream: set hostName
|
2021-09-10 23:02:57 +02:00 |
|
|
9a936461e6
|
stream: init
|
2021-09-10 22:59:40 +02:00 |
|
|
2ad513da4a
|
kibana: fix build
|
2021-09-10 00:21:53 +02:00 |
|
|
8ac07ae985
|
spaceapi: flakify
|
2021-09-10 00:21:38 +02:00 |
|
|
8fbef50ba5
|
ticker: enable stats
|
2021-09-09 22:00:08 +02:00 |
|
|
fcea4078cf
|
scrape: scrape dhmd-veranstaltungen hourly
|
2021-09-09 18:22:31 +02:00 |
|
|
c95ca9d4ad
|
scrape: don't reset /home/scrape permissions
|
2021-09-09 18:22:22 +02:00 |
|
|
7830b1a2b3
|
public-access-proxy: collect haproxy stats
|
2021-09-09 18:21:38 +02:00 |
|
|
d72ae64d7d
|
public-access-proxy: remove unused config
|
2021-09-09 16:44:45 +02:00 |
|
|
9d19102721
|
ticker: add dhmd feed
|
2021-09-08 22:48:37 +02:00 |
|
|
eb3006fa32
|
scrape: add scraper
|
2021-09-08 21:12:54 +02:00 |
|
|
e2fac8eb53
|
kibana: bump nginx clientMaxBodySize
|
2021-09-08 03:17:54 +02:00 |
|
|
3964498be4
|
dn42: enable resolved
|
2021-09-08 03:17:22 +02:00 |
|
|
23536cfcaf
|
matemat: set ssmtp.useTLS
nixos complained
|
2021-09-08 01:43:35 +02:00 |
|
|
3b93b16370
|
ticker: flakify
|
2021-09-08 01:22:40 +02:00 |
|
|
745fe9471e
|
scrape: add scraper
|
2021-09-08 00:34:26 +02:00 |
|
|
9a16c2148b
|
ticker: save config after migration from inbert to cluster01
|
2021-09-06 01:43:07 +02:00 |
|
|
838f075190
|
add gitea.
|
2021-09-05 02:28:48 +02:00 |
|
|
add5efdc7b
|
added ticker host
|
2021-09-04 18:09:05 +02:00 |
|
|
2a9b976cc2
|
public-access-proxy: move nixvita.de
|
2021-09-03 20:49:02 +02:00 |
|
|
1327f465de
|
public-access-proxy: match by host end
|
2021-09-01 23:36:26 +02:00 |
|
|
dbccd2df17
|
public-access-proxy: fix wildcard matches
|
2021-09-01 21:42:03 +02:00 |
|
|
b1ae3b6013
|
public-access-proxy: s/srv1/vps1/
|
2021-09-01 21:41:50 +02:00 |
|
|
b96c789aca
|
public-access-proxy: proxy to srv1
|
2021-09-01 21:27:32 +02:00 |
|
|
e01f9ce5bf
|
scrape: add and serve riesa-efau-kalender
|
2021-07-17 23:17:05 +02:00 |
|
|
e925dfd0c5
|
public-access-proxy: fix settings
|
2021-07-14 18:57:06 +02:00 |
|
|
8240f7dc32
|
Revert "public-access-proxy: fix haproxy config indentation"
This reverts commit 9168f27585 .
Not required as per http://cbonte.github.io/haproxy-dconv/2.3/configuration.html#2.1
|
2021-07-14 17:40:49 +02:00 |
|
|
724e659016
|
public-access-proxy: disable outdated backends
|
2021-06-24 21:43:34 +02:00 |
|
|
9168f27585
|
public-access-proxy: fix haproxy config indentation
|
2021-06-24 21:38:59 +02:00 |
|
|
3b98bfb261
|
public-access-proxy: flakify
|
2021-06-23 21:59:10 +02:00 |
|
|
b58ab9e8f0
|
public-access-proxy: add nixvita.de
|
2021-06-23 21:26:51 +02:00 |
|
|
92c48317f4
|
freifunk, yggdrasil: enable OSPFv3 auth
|
2021-06-16 20:02:11 +02:00 |
|
|
5c6d357036
|
dhcp: remove
DHCP server is now on c3d2-gw3.c3d2.zentralwerk.dn42
|
2021-06-16 20:01:38 +02:00 |
|
|
2653f998dd
|
logging: use internal domain names for backend IPv4 connections
|
2021-06-07 23:30:49 +02:00 |
|
|
4fdf88ac18
|
IPv6 renumbering
|
2021-06-02 21:37:18 +02:00 |
|
|
1369154dbb
|
dnscache: remove
|
2021-06-02 21:35:04 +02:00 |
|
|
d77639d9a7
|
matemat: specify port for mail.c3d2.de
|
2021-05-28 04:54:26 +02:00 |
|
|
0f9193d874
|
freifunk, yggdrasil: enlarge core network from /26 to /25
|
2021-05-27 01:35:38 +02:00 |
|
|
31b643e2e0
|
kibana: flakify
|
2021-05-10 00:28:27 +02:00 |
|
|
60117817f7
|
freifunk: advertise default route in another ospf instance, import all ipv6 routes
|
2021-05-01 01:41:26 +02:00 |
|
|
3cad34726d
|
rewrite hostname to satisfy helo restrictions
|
2021-04-30 10:36:37 +02:00 |
|
|
a4b53d344d
|
freifunk: fix ip rules
|
2021-04-30 00:08:49 +02:00 |
|
|
b7456776b0
|
freifunk: enable nat for tunneled uplink
|
2021-04-29 23:08:28 +02:00 |
|
|
8bfb061785
|
freifunk: learn freifunk default route and share over OSPF
|
2021-04-29 22:55:50 +02:00 |
|
|
08b35d6f51
|
freifunk: name more bmx tables
|
2021-04-29 22:55:31 +02:00 |
|
|
8b0fb87025
|
freifunk: mknod /dev/net/tun
|
2021-04-29 21:56:37 +02:00 |
|
|
90c5c69ecb
|
freifunk: switch bmxd from gateway to node mode
|
2021-04-29 21:54:22 +02:00 |
|
|
b9f603eba8
|
hydra: useSubstitutes = true
reason: https://github.com/NixOS/nixpkgs/issues/118732
|
2021-04-08 13:53:11 +02:00 |
|
|
7e73c09ad7
|
yggdrasil: disable radv
|
2021-04-04 21:11:21 +02:00 |
|
|
1b10fdf03d
|
dn42: implement multiprotocol peering
|
2021-03-29 00:52:59 +02:00 |
|
|
d04f56f4c1
|
scrape: add luftqualitaet
|
2021-03-28 20:41:37 +02:00 |
|
|
ef5a03b68b
|
scrape: add impfee
|
2021-03-24 21:11:16 +01:00 |
|
|
6056b78ce6
|
hydra: add buildMachines
did I deploy that?
|
2021-03-24 21:09:51 +01:00 |
|
|
70774131f1
|
grafana: rm broken route configuration
|
2021-03-24 21:09:18 +01:00 |
|
|
906ef601d3
|
mucbot: flakify
|
2021-03-22 16:22:57 +01:00 |
|
|
446f93bf00
|
dn42: clean up bgp filters
|
2021-03-12 23:38:17 +01:00 |
|
|
e90c920103
|
dn42: add routecount collectd stats
|
2021-03-12 22:20:35 +01:00 |
|
|
fb5751220f
|
hail hydra!
|
2021-03-12 22:07:08 +01:00 |
|
|
b6bd649e45
|
dn42, dnscache: remove outdated nameservers
|
2021-03-12 21:07:45 +01:00 |
|
|
13ae483d22
|
dn42: enable collectd, clean up
|
2021-03-12 18:42:06 +01:00 |
|
|
4f6f47a30d
|
dn42: update secrets
|
2021-03-11 20:46:33 +01:00 |
|
|
4a10f571fb
|
dn42: enable forwarding
|
2021-03-11 16:54:40 +01:00 |
|
|
019c4487af
|
grafana: flakify
|
2021-03-11 16:40:39 +01:00 |
|
|
44ded16352
|
dn42: put in hq net
|
2021-03-11 16:25:03 +01:00 |
|
|
4633b71ca9
|
dn42: flakify
|
2021-03-11 15:59:00 +01:00 |
|
|
3a220d91a2
|
lib/default-gateway.nix: rm
this is done in lib/default.nix
|
2021-03-10 15:54:09 +01:00 |
|
|
7c834abb43
|
ssmtp for matemat
|
2021-03-06 20:59:08 +01:00 |
|
|
ae1c93404d
|
scrape: convert scrapers to flake input
|
2021-03-06 03:11:43 +01:00 |
|
|
4b8353c011
|
scrape: migrate from krops to flakes
|
2021-03-06 02:57:35 +01:00 |
|
|
f29dacb173
|
matemat: allow auth-less access from local subnets
|
2021-03-06 02:33:38 +01:00 |
|
|
8347def09b
|
matemat: add auth
|
2021-03-06 02:28:46 +01:00 |
|
|
b26478db13
|
matemat: 🎆 init
|
2021-03-06 01:14:02 +01:00 |
|
|
fca9a7f859
|
lib/default-gateway.nix: set only when running without systemd-networkd
this would need GatewayOnLink=yes for the route on the interface
|
2021-03-06 01:10:53 +01:00 |
|
|
d89788511a
|
freifunk: fix self reference
|
2021-03-05 01:20:56 +01:00 |
|
|
1a559b36e5
|
freifunk: obtain flaky secrets
|
2021-03-05 01:16:57 +01:00 |
|
|
1d3568bfe6
|
host-registry: add freifunk
|
2021-03-05 01:16:16 +01:00 |
|
|
f4b4dbb7a0
|
freifunk: add yggdrasil port-forwarding
|
2021-03-05 00:43:49 +01:00 |
|
|
4a15413ea0
|
freifunk: pin firmware/server revs
|
2021-03-05 00:43:12 +01:00 |
|
|
379b1851bb
|
yggdrasil: implement ospf, nat, name interfaces
|
2021-03-04 01:45:29 +01:00 |
|
|
6c28006440
|
yggdrasil: disable systemd-networkd with a reason
|
2021-03-04 01:44:39 +01:00 |
|
|
9264b271f2
|
yggdrasil: add listener
|
2021-03-04 00:02:59 +01:00 |
|
|
d2262715da
|
Add yggdrasil configurations
|
2021-03-03 22:53:19 +01:00 |
|
|
535478c160
|
Flakify freifunk container
|
2021-02-26 20:23:24 +01:00 |
|
|
709d8e278e
|
Flakify dhcp
|
2021-02-24 14:14:48 +01:00 |
|
|
c01bf41df1
|
Remove hail
Hail is no longer in use
|
2021-02-22 12:12:00 +01:00 |
|
|
6170a9c4e0
|
Nixfmt everything
|
2021-02-22 11:45:12 +01:00 |
|
|
c06710cf18
|
freifunk: change sysinfo.json location
nginx runs with PrivateTmp=yes since NixOS 20.09
|
2021-01-06 18:43:54 +01:00 |
|
|
02095467fb
|
freifunk: restore, rm accidental disk image
|
2021-01-06 18:17:57 +01:00 |
|
Daniel Poelzleithner
|
873a957e52
|
Merge branch 'master' of ssh://gitea.c3d2.de:2222/C3D2/nix-config into master
|
2021-01-03 15:00:55 +01:00 |
|
Daniel Poelzleithner
|
256dcd5ec9
|
Merge branch 'master' of ssh://gitea.c3d2.de:2222/C3D2/nix-config into master
|
2021-01-03 15:00:33 +01:00 |
|
|
af06036cc3
|
public-access-proxy: rm drkkr.hq.c3d2.de
haproxy breaks the websockets
|
2020-12-11 01:35:56 +01:00 |
|
|
f4632a422c
|
pulsebert-access-proxy: add drkkr.hq.c3d2.de
|
2020-12-10 15:28:25 +01:00 |
|
|
3379116fc9
|
public-access-proxy: fix error.hq.c3d2.de.de domain
|
2020-12-10 15:28:11 +01:00 |
|
Daniel Poelzleithner
|
60f270224b
|
Merge branch 'master' of ssh://gitea.c3d2.de:2222/C3D2/nix-config
|
2020-12-09 01:23:45 +01:00 |
|
|
e66639bad9
|
public-access-proxy: fix haproxy conf syntax
|
2020-12-03 16:52:12 +01:00 |
|
|
3475c13a56
|
public-access-proxy: update haproxy settings to 2.1
|
2020-12-03 16:48:28 +01:00 |
|
|
dcfa8cda56
|
public-access-proxy: add error.hq.c3d2.de vhost
|
2020-12-03 16:22:09 +01:00 |
|
Daniel Poelzleithner
|
5f073a7394
|
update prometheus
|
2020-11-12 02:31:45 +01:00 |
|
Daniel Poelzleithner
|
5f8bdae3a8
|
update elastic / logging
|
2020-11-11 20:19:40 +01:00 |
|
|
f7230c5829
|
deployer: activate autoOptimiseStore
|
2020-10-18 17:26:21 +02:00 |
|
|
13f735c0d7
|
public-access-proxy: add robots.datenspuren.de
|
2020-09-19 19:15:13 +02:00 |
|
bastiion
|
3202318820
|
adding a robot to ha-proxy robot1.hq.c3d2.de
|
2020-09-19 15:30:10 +02:00 |
|
|
7ce33808f2
|
Use modulesPath where appropriate
|
2020-08-04 17:16:35 +02:00 |
|
|
a3db001870
|
hosts/containers/dhcp: make dhcp server authoritative
Make the dhcp server explicitly authoritative before importing
the configuration from the secrets submodule.
|
2020-07-07 20:54:22 +05:30 |
|
|
cee19e7e3e
|
spaceapi: disable firewall
|
2020-06-24 18:30:11 +02:00 |
|
|
30b5584555
|
scrape: DRY
|
2020-06-04 01:18:06 +02:00 |
|
|
39562676b2
|
scrape: add freifunk node 1099
|
2020-06-03 17:20:18 +02:00 |
|
|
9de52f1c4f
|
freifunk: forward port 53
|
2020-05-24 22:33:07 +02:00 |
|
|
e5c1afdb6c
|
dnscache: allow query by freifunk range
|
2020-05-24 22:32:48 +02:00 |
|
|
c45a087dfd
|
freifunk: update to accommodate sysinfo changes in ffdd-server.git
|
2020-05-24 21:58:43 +02:00 |
|
|
e967ee77cb
|
dn42: fix tun interfaces
|
2020-05-24 18:37:06 +02:00 |
|
|
8a97a1c08a
|
dn42: DRY address6
|
2020-05-24 02:05:51 +02:00 |
|
|
243406e499
|
dn42: remove obsolete quagga pkg
|
2020-05-24 01:34:00 +02:00 |
|
|
d6842d607f
|
update grafana influxdb address
|
2020-05-23 02:35:29 +02:00 |
|
|
ef2f20658c
|
kibana: tidy proxy url
|
2020-05-23 02:35:16 +02:00 |
|
|
d69eee2b75
|
containers/kibana: init
|
2020-05-23 01:17:16 +02:00 |
|
|
672c8e5b13
|
public-access-proxy: add kibana.hq.c3d2.de
|
2020-05-22 20:30:30 +02:00 |
|
|
c3beabc363
|
public-access-proxy: fix addresses
|
2020-05-22 19:11:41 +02:00 |
|
|
f80c07aaa3
|
public-access-proxy: move to serv subnet
|
2020-05-22 19:07:07 +02:00 |
|
|
d90d5f428d
|
grafana: close signup
|
2020-05-22 18:34:26 +02:00 |
|
|
a2f05a1699
|
public-access-proxy: add grafana, kibana
|
2020-05-22 18:24:37 +02:00 |
|
|
ab38d328b7
|
grafana: switch to serv subnet
|
2020-05-22 18:07:39 +02:00 |
|
|
dcaa765651
|
grafana: switch to serv subnet
|
2020-05-22 17:56:30 +02:00 |
|
|
412bd84abd
|
spaceapi: rm default-gateway.nix
|
2020-05-22 17:53:16 +02:00 |
|
|
95b8272413
|
static ipv4 configuration for containers in the serv subnet
|
2020-05-22 17:24:56 +02:00 |
|
Daniel Poelzleithner
|
e179dbe0f7
|
Merge branch 'master' of ssh://gitea.c3d2.de:2222/C3D2/nix-config
|
2020-05-15 10:46:58 +02:00 |
|
|
f3ae530506
|
scrape: add freifunk node 1891
|
2020-04-30 20:59:11 +02:00 |
|
|
aae6da4299
|
scrape: update freifunk node
|
2020-04-29 22:24:23 +02:00 |
|
|
fa3e90f23f
|
dn42: fix command syntax
|
2020-04-24 20:55:43 +02:00 |
|
|
2a039a3b3c
|
dn42: fix wireguard pointopoint route
|
2020-04-24 20:54:50 +02:00 |
|
|
07779f2ff8
|
dn42: fix wireguard pointopoint route
|
2020-04-24 20:48:31 +02:00 |
|
|
b28eb471f8
|
dn42: fix wireguard pointopoint routes
|
2020-04-24 20:42:52 +02:00 |
|
|
5e34762669
|
dn42: set wireguard.allowedIPsAsRoutes=false
|
2020-04-24 20:38:35 +02:00 |
|
|
e9818d55c7
|
dn42: fix
|
2020-04-24 19:41:55 +02:00 |
|
|
150fd52178
|
dn42: make wireguard.endpoint optional
|
2020-04-24 19:40:49 +02:00 |
|
|
ea275446d5
|
dn42: fix wireguard
|
2020-04-24 19:28:37 +02:00 |
|
|
68f6b337c9
|
dn42: fix wireguard
|
2020-04-24 19:20:41 +02:00 |
|
|
52387b4db7
|
dn42: implement wireguard
|
2020-04-24 19:15:28 +02:00 |
|
|
ac0bc652c5
|
freifunk: announce being a bmxd gateway
|
2020-04-23 20:13:32 +02:00 |
|
|
8adb86f47a
|
freifunk: improve nat rules
|
2020-04-23 20:13:18 +02:00 |
|
|
461a5680fd
|
remove lib/hq.nix remnants
|
2020-04-23 18:45:53 +02:00 |
|