|
3fbc5577d5
|
flpk: fix hosts4.leon
|
2022-09-18 21:34:56 +02:00 |
|
|
ccb5f0e33f
|
flpk-gw: clean upstream.noNat.subnets6
|
2022-09-18 21:26:37 +02:00 |
|
|
97dadf4801
|
ap: turn owe on on 5ghz for all c3d2 aps
|
2022-09-18 20:44:38 +02:00 |
|
|
2e4f65b3b7
|
leon: move from serv to flpk
|
2022-09-18 20:38:10 +02:00 |
|
|
3d26788830
|
config/secrets-production: fix many more
|
2022-09-18 20:13:17 +02:00 |
|
|
62d43a47d7
|
config/secrets-production: fix
|
2022-09-18 20:05:59 +02:00 |
|
|
ffc4c56730
|
pub: add flpk subnet
|
2022-09-18 01:59:14 +02:00 |
|
|
05641a7f74
|
flpk-gw: implement upstream.noNat.subnets4
|
2022-09-18 01:42:34 +02:00 |
|
|
7be3b761e6
|
c3d2-gw1: route over flpk-gw
|
2022-09-18 01:32:19 +02:00 |
|
|
d5e2307404
|
flpk: add addresses
|
2022-09-18 01:29:09 +02:00 |
|
|
c9585041f6
|
cluster: bridge flpk to server3..10
|
2022-09-18 01:01:52 +02:00 |
|
|
8ae2a3567e
|
flpk: add interface flpk
|
2022-09-18 01:00:20 +02:00 |
|
|
b6ebe0f136
|
net/flpk: init
|
2022-09-18 00:17:59 +02:00 |
|
|
1293ab0a75
|
nixos-module/container/wireguard: make upBandwidth optional
|
2022-09-18 00:07:10 +02:00 |
|
|
5fc24d2d59
|
anon1: properly prefer upstream4
|
2022-09-17 14:20:08 +02:00 |
|
|
bc3f838c80
|
anon1: prefer upstream3
|
2022-09-17 14:17:51 +02:00 |
|
|
07face4a33
|
c3d2: enlarge dhcp range
|
2022-09-17 11:14:59 +02:00 |
|
|
104352788e
|
config/secrets-production: update
|
2022-09-16 22:42:26 +02:00 |
|
|
ef7d4d377d
|
ap21: redeploy
|
2022-09-16 22:27:46 +02:00 |
|
|
0d912ec5a1
|
ap: end the owe experiment in the saal :(
was not reliable
|
2022-09-16 20:27:05 +02:00 |
|
|
3f441fd54e
|
ap: merge ssid Datenspuren into ZW public again
|
2022-09-16 20:15:13 +02:00 |
|
|
afeab51ff9
|
ap: bring back ZW public legacy in the saal
change config for an hour and now others expect it to be like this
forever :(
|
2022-09-16 19:43:00 +02:00 |
|
|
70f63609f6
|
ap: add explicit ifname for ssids of duplicate nets
|
2022-09-16 19:19:24 +02:00 |
|
|
0002456abf
|
options, saal aps: turn ZW public back to no encryption, add ssid Datenspuren for owe
|
2022-09-16 18:57:16 +02:00 |
|
|
186c9e6db3
|
switch-ds1, switch-ds2: deploy
|
2022-09-16 18:39:06 +02:00 |
|
|
52ed3f3b9e
|
serv: add zengel
|
2022-09-15 20:07:14 +02:00 |
|
|
6b55e24a25
|
switch-c1: remove old port
|
2022-09-14 21:23:37 +02:00 |
|
|
de99179247
|
switch-c1: deploy ap61
|
2022-09-14 21:22:23 +02:00 |
|
|
d95c54e3c2
|
ap: add "ZW public legacy" for some dual-band aps
|
2022-09-14 17:31:02 +02:00 |
|
|
cff8d37b14
|
priv44: fix gw typo
|
2022-09-12 22:53:56 +02:00 |
|
|
60df827767
|
ap61: prepare
|
2022-09-12 22:37:42 +02:00 |
|
|
910428ebde
|
config: add priv44
|
2022-09-12 21:56:32 +02:00 |
|
|
629decc369
|
config/secrets-production: update
|
2022-09-12 18:32:02 +02:00 |
|
|
0ba27a4e0a
|
serv: add leoncloud
|
2022-09-05 20:57:25 +02:00 |
|
|
3324eb1ed3
|
Revert "Update pulsebert MAC"
This reverts commit aa9ec2268d .
|
2022-09-03 01:12:01 +02:00 |
|
|
5d7bcf31b2
|
update port
|
2022-08-28 00:45:00 +01:00 |
|
|
0fec126f08
|
add new-port-forward
|
2022-08-27 15:42:32 +01:00 |
|
|
582f13c303
|
upstream4: change port forwarding from 777/udp to 8800/udp
|
2022-08-25 21:38:30 +02:00 |
|
|
cf014d1aac
|
asecrets-production: update
|
2022-08-25 21:20:42 +02:00 |
|
|
bd1e42067a
|
config/net/upstream: fmt
|
2022-08-25 18:53:18 +02:00 |
|
|
1bc11e35bf
|
Merge pull request 'master' (#9) from leon/network:master into master
Reviewed-on: zentralwerk/network#9
|
2022-08-25 18:52:43 +02:00 |
|
|
f01d8bd26d
|
ap42: remove outdated link to ap34
|
2022-08-24 02:50:12 +02:00 |
|
|
aa9ec2268d
|
Update pulsebert MAC
|
2022-08-23 23:56:13 +02:00 |
|
|
d4a2f34f18
|
nix/nixos-module/container/netboot: merge into c3d2/nix-config host nfsroot
|
2022-08-22 19:54:07 +02:00 |
|
|
70b7bd00e5
|
add port upstream vpn-website-
|
2022-08-20 21:14:18 +01:00 |
|
|
cd7d55247c
|
add port upstream vpn-website
|
2022-08-20 21:09:57 +01:00 |
|
|
89df3792d6
|
Forward ftp to port 22
|
2022-08-05 22:40:21 +02:00 |
|
|
fa0869b110
|
Forward port 1022 to ftp
|
2022-08-05 22:04:32 +02:00 |
|
|
39897ded63
|
Add factorio.serv
|
2022-08-05 18:58:22 +02:00 |
|
|
88cadab0f0
|
entirely remove obsolete upstream1+upstream2 ipv4 subnets
|
2022-08-05 18:15:00 +02:00 |
|
|
15ab6d744e
|
vpn-gw: add peer
|
2022-07-26 20:10:16 +02:00 |
|
|
ec93cdfcda
|
Add auth
|
2022-07-22 21:51:13 +02:00 |
|
|
59974b34bc
|
ap34: swap for ap15
|
2022-07-19 20:03:34 +02:00 |
|
|
0d6bcab8f2
|
serv: add ftp
|
2022-07-16 18:54:20 +02:00 |
|
|
9fda6bc16f
|
config/secrets-production: update
|
2022-07-16 01:48:33 +02:00 |
|
|
5b1c0301d5
|
nixos-module/collectd: add distribution to mqttServer
|
2022-07-16 01:29:02 +02:00 |
|
|
2ea199f980
|
serv: add broker
|
2022-07-16 00:42:38 +02:00 |
|
|
4f033b2b20
|
switch-b3: make server1 a proper group
|
2022-07-12 00:23:42 +02:00 |
|
|
1a4714e2de
|
switch-b3: deploy server1
|
2022-07-12 00:07:44 +02:00 |
|
|
4dea4cf035
|
switch-b3: distribute bonds across both stacked switches in the hope for enhanced redundancy
|
2022-07-11 02:59:45 +02:00 |
|
|
845b55aaed
|
Add sandro to wireguard
|
2022-07-10 20:11:10 +02:00 |
|
Markus Schmidl
|
71dece2882
|
fix typo
|
2022-07-09 23:58:44 +02:00 |
|
Markus Schmidl
|
87febd07ee
|
fix typo
|
2022-07-09 23:19:27 +02:00 |
|
Markus Schmidl
|
9ce3a15fca
|
upstream4: add port forwarding for data-hoarder and add data-hoarder
|
2022-07-09 23:09:53 +02:00 |
|
|
6b81111b6d
|
upstream4: add port forwarding for gnunet
|
2022-07-06 21:06:34 +02:00 |
|
|
a36ac03dbc
|
config/net/serv: add gnunet host
|
2022-07-06 20:57:39 +02:00 |
|
|
ac97ea42cf
|
config/switch: remove outdated server3 and server5
|
2022-07-01 01:54:32 +02:00 |
|
|
5c0d8ab858
|
config/ap: s#platform/qca955x_wmac#platform/ahb/18100000.wmac#
|
2022-06-30 15:47:29 +02:00 |
|
|
01f5dffa9e
|
ap15: fix model
|
2022-06-30 15:41:01 +02:00 |
|
|
c0781ea212
|
config/ap: s/switch-b[12]/switch-b3/
|
2022-06-27 22:50:54 +02:00 |
|
|
593e7fefb0
|
config/secrets: add dummy switch-b3.password
|
2022-06-27 22:41:50 +02:00 |
|
|
547e0e92d3
|
pkgs/switches/junos: generate password hash
|
2022-06-27 22:40:14 +02:00 |
|
|
00c57c88bf
|
lib/config/options: add assertions for switch links
|
2022-06-27 22:09:16 +02:00 |
|
|
5a6a5cdeed
|
switch-b3: set some ports for c3d2
|
2022-06-27 21:28:43 +02:00 |
|
|
4549820bef
|
switch-b3: migrate
|
2022-06-27 01:11:07 +02:00 |
|
|
212794fc0c
|
switch-b3: migrate
|
2022-06-27 01:07:28 +02:00 |
|
|
fec671f093
|
switch-b3: replace switch-b1/b2
|
2022-06-27 01:04:44 +02:00 |
|
|
469caa0858
|
serv: fix hydra role
|
2022-06-23 22:31:07 +02:00 |
|
|
7354cf5f2d
|
switch-b1: redeploy hydra and server10
|
2022-06-23 19:07:31 +02:00 |
|
|
0c90bed397
|
conf/net/serv: rename wiki to mediawiki
|
2022-06-23 18:31:01 +02:00 |
|
|
0df331b85d
|
conf/net/serv: add wiki
|
2022-06-23 18:28:32 +02:00 |
|
|
f15f0cdf22
|
config/net/cluster: s/proxmox/nixos/g
|
2022-06-23 18:14:51 +02:00 |
|
|
6f82d6f260
|
switch-b2: deploy ap60 on port 20
|
2022-06-23 17:22:20 +02:00 |
|
|
a56e56e25d
|
config: s#platform/qca956x_wmac#platform/ahb/18100000.wmac#
|
2022-06-23 17:08:01 +02:00 |
|
|
7a10da3426
|
ap60: deploy
|
2022-06-23 16:33:09 +02:00 |
|
|
b94298c252
|
serv: add hedgedoc
|
2022-06-21 20:13:55 +02:00 |
|
|
2eefed33b3
|
priv31: doc fixed dhcp host
|
2022-06-21 16:22:37 +02:00 |
|
|
53d964d5c1
|
priv31: add a fixed dhcp host
|
2022-06-21 16:15:36 +02:00 |
|
|
1b759680e8
|
anon1: prefer upstream4
|
2022-06-21 03:24:08 +02:00 |
|
|
b39d513a69
|
config/net/core: remove server9
|
2022-06-18 01:33:57 +02:00 |
|
|
0dc39c5c9e
|
switch-b2: expand server9 to 4 ports
|
2022-06-18 01:28:09 +02:00 |
|
|
6f8dfc8859
|
config: remove upstream1 and upstream2 entirely
|
2022-06-10 18:55:25 +02:00 |
|
|
69eeccc2a7
|
config/net/serv: add nfsroot
|
2022-06-07 19:40:51 +02:00 |
|
|
b015ad5712
|
serv: update ssh to leon
|
2022-06-01 19:24:15 +02:00 |
|
|
94083e1d1a
|
ap29: update radio path
|
2022-05-31 20:07:34 +02:00 |
|
|
5dd984843b
|
config/net/serv: add oparl ipv6
|
2022-05-28 03:39:11 +02:00 |
|
|
259a51f8a5
|
config/net/serv: add oparl
|
2022-05-27 22:57:04 +02:00 |
|
|
b595016136
|
ap31: update radio path
|
2022-05-27 02:07:55 +02:00 |
|
|
6ae78b0c7e
|
ap2: update radio path
|
2022-05-27 01:38:37 +02:00 |
|
|
8acc5bcb59
|
config/net/serv: s/data-hoarder-staging/staging-data-hoarder/
naming is hard
|
2022-05-15 02:49:37 +02:00 |
|
|
75de19dd9a
|
config/net/serv: add data-hoarder-staging
|
2022-05-14 22:55:54 +02:00 |
|
|
497cebb86d
|
deploy server10
|
2022-05-14 03:02:11 +02:00 |
|
|
33ec78cafc
|
config/net/c3d2: update dacbert MAC addr
|
2022-05-12 19:47:04 +02:00 |
|
|
bd99e88f8e
|
confi/net/roof: add ipv4
|
2022-05-12 16:41:00 +02:00 |
|
|
2a129d81db
|
switch-dach: plug port 20
|
2022-05-10 21:26:29 +02:00 |
|
|
b4f6bfe3b8
|
hydra.serv: update IPv6 addrs
|
2022-05-05 22:33:59 +02:00 |
|
|
f29dc36e2e
|
switch-b1: replug a few ports
|
2022-05-05 18:49:00 +02:00 |
|
|
1137025c99
|
config/secrets-production.nix.gpg: update
|
2022-05-01 18:35:41 +02:00 |
|
|
7a00fd74cf
|
pkgs/openwrt-images: add support for legacy devices
|
2022-04-30 01:31:56 +02:00 |
|
|
f9ce07f65e
|
add nix-openwrt-imagebuilder
|
2022-04-29 00:49:45 +02:00 |
|
|
9774b73408
|
net/c3d2: change default ipv4 gateway from c3d2-anon to c3d2-gw3
as discussed in yesterday's plenum <https://codimd.c3d2.de/plenum-2022-04#IPv4-Default-Gateway-im-C3D2-Netz>
|
2022-04-08 17:49:02 +02:00 |
|
|
598388d428
|
wlan5-roof: lower mtu
|
2022-04-04 20:18:46 +02:00 |
|
|
382ac6d4e6
|
upstream4: add forwardPorts for direkthilfe:ssh
|
2022-03-31 00:21:32 +02:00 |
|
|
2de02cc5bb
|
*.nix: remove unused code
|
2022-03-22 18:13:17 +01:00 |
|
|
8d64902f6a
|
serv: add nix-build
|
2022-03-16 01:58:05 +01:00 |
|
|
219bad8f71
|
upstream4: remove port forwarding for radiobert/soapysdr-server
doesn't work. use ipv6.
|
2022-03-14 02:44:46 +01:00 |
|
|
3fdbcbdde7
|
upstream4: add port forwarding for radiobert/soapysdr-server
|
2022-03-12 19:50:17 +01:00 |
|
|
3b474ba9b1
|
serv: fix direkthilfe ipv6 address
|
2022-03-08 16:55:39 +01:00 |
|
|
54efda7db3
|
serv: add direkthilfe ipv6 addrs
|
2022-03-06 20:25:42 +01:00 |
|
|
4205020d5f
|
serv: add direkthilfe
|
2022-03-06 20:08:26 +01:00 |
|
|
48063fe68c
|
switch-c1: typo
|
2022-03-06 15:18:57 +01:00 |
|
|
46a7ce23e6
|
switch-c1: deploy saal foyer
|
2022-03-06 15:18:25 +01:00 |
|
|
fc0241a87d
|
upstream1: move gemini port forwarding to upstream4 proper
|
2022-03-05 01:07:04 +01:00 |
|
|
f49b08a8d2
|
upstream4: add gemini to forwardPorts
|
2022-03-04 21:28:51 +01:00 |
|
|
bdca123b99
|
vpn-gw: init
|
2022-03-01 22:51:31 +01:00 |
|
|
d59415fdc5
|
upstream4: make dns forwardPorts reflective
|
2022-03-01 21:52:04 +01:00 |
|
|
909ce51a01
|
config/secrets: remove disconnected ap20, ap21, ap43
|
2022-02-25 01:13:05 +01:00 |
|
|
c3e9641a75
|
upstream4: change port forwardings from mail to mailtngbert
|
2022-02-24 19:58:59 +01:00 |
|
|
6c614494b9
|
Fix typo in mailtngbert address
|
2022-02-24 18:43:55 +01:00 |
|
|
4c1b5c60df
|
config/secrets-production.nix.gpg: update
|
2022-02-22 22:31:10 +01:00 |
|
|
e0483d35d4
|
Add IPv4 Adress for mailtngbert
We need a test container for testing a new mailserver setup to migrate to
|
2022-02-20 20:52:31 +01:00 |
|
|
91ee88fec6
|
ap: remove disconnected ap20, ap21, ap43
|
2022-02-10 18:54:42 +01:00 |
|
|
9275bb8cc3
|
ap10: remove Ebs 2000
|
2022-02-10 18:42:27 +01:00 |
|
|
efcfbca81f
|
ap: move priv21 to ap59
|
2022-02-10 18:39:56 +01:00 |
|
|
8f94df65f1
|
ap10: remove Ebs 2000
|
2022-02-10 18:35:46 +01:00 |
|
|
825e76a979
|
switch-a2: add dumb switch
|
2022-02-05 00:51:02 +01:00 |
|
|
4c8de9acd4
|
ap59: deploy to switch-b2
|
2022-02-05 00:33:09 +01:00 |
|
|
ed126b2ff5
|
ap59: prepare
|
2022-02-04 19:50:30 +01:00 |
|
|
c39dcecbdc
|
up4: update forwardedPorts for dn42
|
2022-01-25 21:41:27 +01:00 |
|
|
766a2db2d2
|
switch-dach: update links with actually used ports
|
2022-01-24 21:48:01 +01:00 |
|
|
6710caf248
|
ap33: fix uplink
|
2022-01-24 21:45:38 +01:00 |
|
|
9b736fe518
|
switch: properly reflect the saal situation
|
2022-01-24 21:39:50 +01:00 |
|
|
e6651c440d
|
pkgs/ap: don't install wifi-on-link.sh on ap58
|
2022-01-18 21:21:45 +01:00 |
|
|
2789589c25
|
vxlan over wireless: get to work
|
2022-01-18 03:50:43 +01:00 |
|
|
1327680612
|
vxlan over wireless: first try
|
2022-01-18 01:05:16 +01:00 |
|
|
5f675b13d2
|
config/net/priv: fix priv43
|
2022-01-17 21:35:00 +01:00 |
|
|
cbe473a497
|
config/net: prepare priv42
|
2022-01-17 21:32:45 +01:00 |
|
|
4bb8fe46e2
|
yggdrasil: change listening port to 1337
1/tcp didn't work :(
|
2022-01-14 20:37:42 +01:00 |
|
|
64ee9d06bb
|
yggdrasil: listen, add port forwarding on upstream4+upstream1
|
2022-01-14 19:23:03 +01:00 |
|
|
4ed6a4f1d3
|
config/net/yggdrasil: change allowedUpstreams order
|
2022-01-14 19:21:28 +01:00 |
|
|
6cc02abdb8
|
yggdrasil: properly add a static key
|
2022-01-13 23:40:43 +01:00 |
|
|
1f96222c4d
|
c3d2-gw3: add a hosts6.yggdrasil address
|
2022-01-13 20:43:03 +01:00 |
|
|
33d0c8ea58
|
c3d2-gw3: add subnets6.yggdrasil
|
2022-01-13 20:35:16 +01:00 |
|
|
0585961c81
|
config/net/yggdrasil: don't prebuild
|
2022-01-13 20:22:42 +01:00 |
|
|
d8bd90e049
|
yggdrasil: prepare container deployment
|
2022-01-13 20:17:50 +01:00 |
|
|
382d5fd7d9
|
config/net/upstream: literalize/doc port forwardings
|
2022-01-12 00:16:46 +01:00 |
|
|
552a6a3fa8
|
config/net/upstream: add port forwarding 45000/tcp
|
2022-01-12 00:09:46 +01:00 |
|
|
5e816a3c1b
|
config/net/cluster: bridge vlan priv31 to cluster servers
|
2022-01-11 23:13:24 +01:00 |
|
|
d453e48a94
|
config/net/cluster: make unused hosts6 addresses more consistent
|
2022-01-11 23:12:43 +01:00 |
|
|
fbd5394f28
|
config/net/cluster: reorder hosts
|
2022-01-11 23:07:38 +01:00 |
|
|
0a8a85a6d8
|
secrets-production.nix.gpg: update
|
2022-01-11 20:28:10 +01:00 |
|
|
3c44eeaab1
|
lib/config/options: move host wireguard setting to interface entries
|
2022-01-11 19:58:50 +01:00 |
|
|
cffdd7bbd7
|
serv: add host blogs
|
2021-12-23 23:44:33 +01:00 |
|
Daniel Poelzleithner
|
2720d3d9ac
|
add portforwarding
|
2021-12-06 11:07:04 +01:00 |
|
|
2ee670c779
|
config/server: set gw4 and gw6
|
2021-11-18 21:53:24 +01:00 |
|
|
ba6948cec7
|
config/net/core: remove server1 and server2
|
2021-11-18 21:33:16 +01:00 |
|
|
906c91ed9a
|
config/switch: doc server1 ports
|
2021-11-18 20:39:32 +01:00 |
|
|
32bd35265e
|
config/switch: cleanup
|
2021-11-18 17:32:55 +01:00 |
|
|
9c63bd996f
|
config/net/serv: enlarge subnet4 from /26 to /25
|
2021-11-18 16:49:12 +01:00 |
|
|
7c9c6c4a9e
|
config/net/priv: cleanup
|
2021-11-16 00:21:37 +01:00 |
|
|
76086449dd
|
config: mkdir net
|
2021-11-15 21:24:44 +01:00 |
|
|
b9920ce76b
|
config/cluster: bring back cephMonServers extraRecords
|
2021-11-15 03:38:46 +01:00 |
|
|
97c2b819a8
|
config/switch: cleanup
|
2021-11-15 03:33:22 +01:00 |
|
|
e56014dae9
|
config/serv: add more ipv6 addrs
|
2021-11-15 03:32:10 +01:00 |
|
|
21fe4f2503
|
lib/config/options: add duplicate address checks and fix them
|
2021-11-14 01:41:19 +01:00 |
|
|
90142a2b6e
|
config/cluster: cleanup
|
2021-11-14 01:41:02 +01:00 |
|
|
e2580e78fd
|
config/serv: cleanup
|
2021-11-13 03:18:30 +01:00 |
|
|
81b901715a
|
config/secrets: doc
|
2021-11-13 02:56:23 +01:00 |
|
|
bcf60d2a5b
|
config: remove automatic config subnet4Len, subnet4Net
|
2021-11-13 02:53:54 +01:00 |
|
|
8c31e2d643
|
config/c3d2: cleanup
|
2021-11-13 02:53:12 +01:00 |
|
|
84e166fc47
|
config/server: derive bridge interfaces from containers
|
2021-11-13 02:40:56 +01:00 |
|
|
32db7a7d23
|
config/secrets: replace stub for easier diffing with legacy version
|
2021-11-13 01:44:26 +01:00 |
|
|
5f14ca3c46
|
config: split into many files
|
2021-11-13 01:44:14 +01:00 |
|
|
32c0def45b
|
config: nixify everything
|
2021-11-13 01:23:23 +01:00 |
|