zentralwerk/network
zentralwerk
/
network
12
4
Fork 2
Code Issues 4 Pull Requests 1 Releases Wiki Activity
1,735 Commits 8 Branches 0 Tags 2.6 MiB
Commit Graph

519 Commits

Author SHA1 Message Date
Astro 7f3124b530 pkgs: readability 2022-06-01 01:07:44 +02:00
Astro dd3b956ef4 nix/pkgs: reduce memory hogging by not catching misbuilt openwrt images 2022-05-31 21:57:43 +02:00
Astro e05e9d43cd pkgs: remove all-rootfs to avoid huge evaluations 2022-05-31 20:39:21 +02:00
Astro 3ce7ee7411 pkgs/openwrt/uci-config: add /etc/collectd.conf 2022-05-27 02:08:03 +02:00
Astro 1854ec5819 openwrt-images: add uci-config 2022-05-27 01:37:03 +02:00
Astro 52dbdc237a pkgs/ap: remove dead code 2022-05-05 22:34:17 +02:00
Astro 4b09601419 pkgs/openwrt-images: refactor, embed hostName in extraImageName 2022-04-30 02:55:01 +02:00
Astro 7a00fd74cf pkgs/openwrt-images: add support for legacy devices 2022-04-30 01:31:56 +02:00
Astro d54bb4f871 lib.getOpenwrtModel: update to newer model naming scheme 2022-04-29 00:54:08 +02:00
Astro f9ce07f65e add nix-openwrt-imagebuilder 2022-04-29 00:49:45 +02:00
Astro 598388d428 wlan5-roof: lower mtu 2022-04-04 20:18:46 +02:00
Astro 4625eef8cb nixos-module/container/dns: remove IFD for obtaining serial 
now 100% IFD free
 2022-03-26 04:07:00 +01:00
Astro 2de02cc5bb *.nix: remove unused code 2022-03-22 18:13:17 +01:00
Astro e16be776bb nixos-module/container/dhcp-server: change RPi4 tftp server from netboot to nix-build 2022-03-22 18:11:04 +01:00
Astro a43c8e99b6 nixos-module/container/{dhcp-server,netboot}: prepare rpi4 netboot 2022-03-13 22:43:43 +01:00
Astro bdca123b99 vpn-gw: init 2022-03-01 22:51:31 +01:00
Astro 674cd3bfa2 pkgs/ap: add ${hostName} to exceptions 2022-02-10 18:52:43 +01:00
Astro 4c8de9acd4 ap59: deploy to switch-b2 2022-02-05 00:33:09 +01:00
Astro 833803a255 pkgs/dns-slaves: fix allow-query address match list 2022-01-25 01:24:03 +01:00
Astro b393efecf7 lib/dns: exclude ipv6 ctx yggdrasil 2022-01-25 01:07:17 +01:00
Astro 7acff4cf8e pkgs/vlan-report: add 2022-01-24 21:04:11 +01:00
Astro 7b80560aed pkgs/switches/*: don't configure null vlans 2022-01-19 17:18:46 +01:00
Ehmry - b75633566d yggdrasil: remove pantoto peering 
Peer instead from the pantoto side.
 2022-01-18 23:35:48 +01:00
Astro b7ebd3ccdf pkgs/ap: fix uciDeleteAll param to reset wifi-ifaces 2022-01-18 22:19:49 +01:00
Astro 6a8feb82db pkgs/ap_install_collectd.sh: fix shabang 2022-01-18 21:22:27 +01:00
Astro e6651c440d pkgs/ap: don't install wifi-on-link.sh on ap58 2022-01-18 21:21:45 +01:00
Astro 01933d17ca pkgs/switches/shared: fix for nullable vlan 2022-01-18 21:11:00 +01:00
Astro 77c0477bd0 vxlan over wireless: fix 2022-01-18 21:06:02 +01:00
Astro 2789589c25 vxlan over wireless: get to work 2022-01-18 03:50:43 +01:00
Astro 1327680612 vxlan over wireless: first try 2022-01-18 01:05:16 +01:00
Astro 4bb8fe46e2 yggdrasil: change listening port to 1337 
1/tcp didn't work :(
 2022-01-14 20:37:42 +01:00
Astro b50a051904 yggdrasil: don't listen on ipv4 and fail 2022-01-14 19:30:29 +01:00
Astro 64ee9d06bb yggdrasil: listen, add port forwarding on upstream4+upstream1 2022-01-14 19:23:03 +01:00
Ehmry - 4bf0e2bf33 yggdrasil: reconfigure peers 2022-01-14 00:54:33 +01:00
Astro 6cc02abdb8 yggdrasil: properly add a static key 2022-01-13 23:40:43 +01:00
Astro 792426f22c nixos-module/container/yggdrasil: enable NAT66 2022-01-13 20:34:01 +01:00
Ehmry - 0e3921d126 Yggdrasil: enable IPv6 forwarding 2022-01-13 20:24:38 +01:00
Astro d8bd90e049 yggdrasil: prepare container deployment 2022-01-13 20:17:50 +01:00
Ehmry - 29c74782c7 Add yggdrasil container 2022-01-13 19:49:33 +01:00
Astro 806820950f nixos-module/container/bird: fix direct interfaces 2022-01-11 23:57:35 +01:00
Astro 343fe8c429 nixos-module/defaults: remove journalbeat 
the service caused excessive disk write traffic, and the target greylog
server is overloaded anyway.
 2022-01-11 22:16:53 +01:00
Astro e1bceca9ab nix/nixos-module/container/wireguard: rename file from anon.nix 2022-01-11 20:02:25 +01:00
Astro 53cd892531 nixos-module/container/bird: advertise upstream local subnet into ospf 2022-01-11 20:00:07 +01:00
Astro 3c44eeaab1 lib/config/options: move host wireguard setting to interface entries 2022-01-11 19:58:50 +01:00
Astro c58ee2dc9f pkgs/network-cypher-graphs: fix import-network-graphs 2022-01-10 01:51:22 +01:00
Astro 287dc1be75 pkgs/network-cypher-graphs: let import-network-graphs produce just a script 2022-01-09 02:59:15 +01:00
Winzlieb - 1f2cbd03b8 adding cypher graph generation utitlies 2021-12-28 18:43:42 +01:00
Astro a474577abd Revert "nix/nixos-module/defaults: use non-nft iptables-legacy for migration" 
This reverts commit 48b050b283.
 2021-12-11 00:51:05 +01:00
Astro 48b050b283 nix/nixos-module/defaults: use non-nft iptables-legacy for migration 2021-12-10 22:56:43 +01:00
Astro 7ac993f61e nixos-module/server/lxc-containers: fix scope 2021-11-20 22:10:35 +01:00
Astro 9900b9af5e pkgs/network-graphs: remove debug output 2021-11-20 00:44:21 +01:00
Astro 8d671d8dee nixos-module/server/lxc-containers: resolve lxc interface name issue by ensuring the type key comes first 
it took very long to find this
 2021-11-20 00:43:32 +01:00
Astro eb6e47e505 nixos-module/server/network: enable STP and decrease forward_delay for bridges 2021-11-18 22:54:33 +01:00
Astro 14ddaeba45 nixos-module/network: configure addresses for all net interfaces 2021-11-18 21:36:57 +01:00
Astro f3e8c5398d pkgs: add all-rootfs 2021-11-18 20:41:06 +01:00
Astro abb226bc5a server1, server2: allow building with zfs support 2021-11-18 20:39:52 +01:00
Astro 19674ea461 nixos-module/container/bird: revert to somewhat larger ospf intervals 2021-11-18 17:10:36 +01:00
Astro f7dabd8e2d nixos-module/server/lxc-container: split container build and activation phases 2021-11-18 16:58:32 +01:00
Astro 3902efd3f3 nix/pkgs/subnetplan: use colspan 2021-11-18 04:17:10 +01:00
Astro f98412346e nix/pkgs/subnetplan: cap max_prefix at 64 2021-11-18 00:06:44 +01:00
Astro 557f63b7c1 nix/pkgs/subnetplan: init 2021-11-17 23:57:16 +01:00
Astro 15f7687d92 nixos-module/container/bird: drastically reduce ospf intervals 2021-11-15 23:23:38 +01:00
Astro ab199ec19e nix/pkgs: fix switch-to-production 2021-11-15 21:56:16 +01:00
Astro 2808bebffc lib/config/options: add duplicate vlan check 2021-11-15 21:30:38 +01:00
Astro 21fe4f2503 lib/config/options: add duplicate address checks and fix them 2021-11-14 01:41:19 +01:00
Astro 624f2e38f6 nixos-module/container/upstream/pppoe: fix user option 2021-11-13 03:23:45 +01:00
Astro bcf60d2a5b config: remove automatic config subnet4Len, subnet4Net 2021-11-13 02:53:54 +01:00
Astro 32c0def45b config: nixify everything 2021-11-13 01:23:23 +01:00
Astro 6446c6b8a3 pkgs/ap: update ap_install_collectd.sh hint 2021-11-12 18:11:28 +01:00
Astro ba94f712c1 pkgs/ap: fix wifi-iface 2021-11-11 17:49:29 +01:00
Daniel Poelzleithner 7f800810ad fix missing string conversation 2021-11-10 22:58:17 +01:00
Daniel Poelzleithner cbf226f3a5 add mon alias entries to ceph cluster 2021-11-10 22:54:03 +01:00
Astro f41c7d37e2 lib/config: move _ceph-mon._tcp srv record from server7 to server5 2021-11-10 20:55:39 +01:00
Astro 245cbcfc10 nix/config: add cluster _ceph-mon._tcp SRV records 2021-11-10 20:13:05 +01:00
Astro 01f37cec9f lib/dns: add extraRecords 2021-11-10 20:12:45 +01:00
Astro f14c6ff200 pkgs/ap: catch failing service stop 2021-11-10 16:38:49 +01:00
Astro d9443fc374 pkgs/ap: uci delete silently and don't abort 2021-11-09 21:16:53 +01:00
Astro 311df51820 pkgs/ap: don't use uci batch 
was hiding which command produced an error
 2021-11-09 21:10:56 +01:00
Astro b8b4995433 pkgs/ap: delete unused networks 2021-11-09 21:07:37 +01:00
Astro 25217f0b82 pkgs/ap: move uciDeleteAll outside `uci batch` 2021-11-09 20:31:46 +01:00
Astro bade3d54c6 pkgs/device-templates: rename device-scripts to .sh for `nix run .#...` 2021-11-09 16:47:48 +01:00
Astro 733f04258d pkgs/network-graphs: add up* to physical-graph 2021-11-07 03:21:39 +01:00
Astro f0c5f1d398 lib/config/legacy: reflect the actual topology 2021-11-07 02:55:44 +01:00
Astro 71675556f2 lib/config: implement assertions and warnings 2021-11-07 02:43:56 +01:00
Astro 4080368927 pkgs/switches: sort output stably 2021-11-07 02:22:24 +01:00
Astro 8fc0567204 pkgs/switches: fixes 2021-11-07 02:21:48 +01:00
Astro 5c074bb051 pkgs/ap: fix multiple issues 2021-11-07 00:23:21 +01:00
Astro db4d075af2 pkgs/network-graphs: don't use callPackage as it breaks the flake 2021-11-07 00:05:55 +01:00
Astro 40e8b351d5 pkgs/ap.nix: migrate template to nix 2021-11-06 22:57:12 +01:00
Astro f156ab6f05 pkgs/network-graphs: init 2021-11-06 19:48:46 +01:00
Astro ecf1b3afca pkgs/switches/linksys-srw2048: enable jumbo-frame 
Attention: @poelzi
 2021-11-06 03:38:57 +01:00
Astro 001aaecf3a lib/config/options: rewrite getHostLinkNetworks et al 2021-11-06 03:38:01 +01:00
Astro 7834d64e27 lib/config/legacy: treat single eth0 as wan port 2021-11-06 03:36:55 +01:00
Astro e975d78504 lib/config: add config.site.sshPubKeys 2021-11-04 19:17:57 +01:00
Astro 9852920ee8 nix/lib/config: begin treating aps as manageable switches 2021-11-04 19:17:31 +01:00
Astro 8acc37b5d5 lib/openwrt-models: add code to get port definitions 2021-11-03 23:21:43 +01:00
Astro 3072e1e78c pkgs/switches: switch from salt to nix 2021-11-03 01:09:22 +01:00
Astro f54fa47fd8 upstream4: add forwardPorts for jabber coturn 2021-10-18 03:32:50 +02:00
Astro 6b36f19af8 upstream: fix forwardPorts 2021-10-18 01:24:43 +02:00
Astro 4634b94199 upstream4: add forwardPorts for jabber 2021-10-18 01:21:28 +02:00
Astro 2c3c0fa13c upstream: disable NAT reflection for DNS port forwards 2021-10-16 23:56:32 +02:00
Astro 84810697d7 pkgs/dns-slaves: add allow-query { all; }; 2021-10-16 00:58:13 +02:00
Astro e904c12847 nixos-module/container/dns: add local ns.c3d2.de 2021-10-15 23:38:33 +02:00
Astro eae6cc680b nix: fix more names 2021-10-14 17:12:33 +02:00
Astro 0ca0a9e9fd nix: remove dangling `.ip4` 2021-10-14 17:10:11 +02:00
Astro de4b674091 nixos-module/defaults: fix syntax 2021-10-14 17:08:09 +02:00
Astro bd5ee9e7cd nixos-module/defaults: add journalbeat for central logging 2021-10-14 17:06:39 +02:00
Astro dd399d7871 lib/config/legacy: add bind to upstream4.forwardPorts 2021-10-14 17:05:05 +02:00
Astro 6da7456ba1 lib/config/legacy: increase readability of upstream4.forwardPorts 2021-10-14 17:03:49 +02:00
Astro a5cc429946 upstream4: add forwardPorts for mail 2021-10-02 00:48:32 +02:00
Astro e0d12435f0 upstream4: set gitea port forwarding to 22/tcp 2021-10-01 21:28:14 +02:00
Astro 2bae8c6785 Revert "upstream4: fix gitea port fwding" 
This reverts commit 61cfd3a313.
 2021-10-01 21:12:28 +02:00
Astro 61cfd3a313 upstream4: fix gitea port fwding 2021-10-01 20:51:04 +02:00
Astro 6245887f0f lib/config/legacy: add dacbert mac 2021-09-28 00:24:11 +02:00
Astro 44094c1346 pulsebert.hq.c3d2.de: change MAC address 2021-09-22 23:35:28 +02:00
Astro 5915d9a16a lib/config/options: doc 2021-09-19 02:18:17 +02:00
Astro df0bca25bb switch domainNames from zentralwerk.dn42 to zentralwerk.org 2021-09-16 19:26:03 +02:00
Astro 23190495ff upstream4: add port forwarding 2021-09-10 20:00:04 +02:00
Astro 04de05ce75 lib/config/options: add missing staticIpv4Address default 2021-09-07 00:11:28 +02:00
Astro 8b6c7578e8 nixos-module/container/upstream: remove a lot of stuff by using loopbackIPs for forwarded ports 2021-09-06 23:41:45 +02:00
Astro 48cbaf5f08 nixos-module/container/upstream: fix SNAT for forwarded ports 2021-09-06 23:19:08 +02:00
Astro 501f96a225 nixos-module/container/upstream: specify externalIP to use SNAT instead of MASQUERADE 2021-09-06 23:17:46 +02:00
Astro 1b4f761de8 nixos-module/container/upstream: fix SNAT by adding a staticIpv4Address option 2021-09-06 22:58:52 +02:00
Astro fd4c8ad65b nixos-module/container/upstream: do SNAT for forwarded ports 2021-09-06 22:11:39 +02:00
Astro 3be7beaf27 upstream4: add port forward 2222/tcp to gitea 2021-09-06 21:14:37 +02:00
Astro bc590bca8c upstream4: remove outdated port forwardings 2021-09-06 21:12:26 +02:00
Astro 1d94fb4094 nixos-module/server/defaults: install ipmitool 2021-08-25 17:01:30 +02:00
Astro 5a012418dc nixos-module/server/defaults: enable IPMI monitoring with collectd from nixpkgs-master 2021-08-25 16:48:04 +02:00
Astro ee2db449fd nixos-module/server: unify server1 and server2 2021-08-21 00:04:28 +02:00
Astro 6166d1ee3b nixos-module/server/server1: init 2021-08-20 23:49:04 +02:00
Astro 5b27eb82ac config: add server1 to mainServers 2021-08-20 21:39:31 +02:00
Astro 30aa03f07f nixos-module/server/lxc-containers: make container startup conditional 
preparing for cold failover
 2021-08-20 21:39:00 +02:00
Astro 8434dcad0f ap.sh: configure local graylog target 
lefover
 2021-08-20 21:38:25 +02:00
Astro cf3d9b4891 config: don't use location to select server for lxc containers 2021-08-20 21:37:43 +02:00
Astro c2b1a2f183 nix/lib/dns: fix reverseZone6Size to /56 2021-08-13 01:18:59 +02:00
Astro 2059c22c98 c3d2: enable dyndns 2021-07-16 19:36:41 +02:00
Astro 440ec18e71 upstream4: add ssh port forwarding for leon's web-deploy 2021-07-16 19:36:13 +02:00
Astro dbca546593 nixos-module/server/lxc-containers: sysctl only when enabled 2021-07-14 19:01:24 +02:00
Astro 0cee77c2b4 nixos-module/container/dhcp-server: fix 2021-06-18 21:41:03 +02:00
Astro 7253ae6b17 nixos-module/container/dhcp-server: fix 2021-06-18 21:39:35 +02:00
Astro 13334f087c netboot: support efi netboot 2021-06-18 21:31:17 +02:00
Astro 0e07293692 nixos-module/container/netboot: switch from xinetd to atftpd 2021-06-18 20:45:52 +02:00
Astro 250089b22f nixos-module/server/lxc-containers: bump kernel limits 2021-06-18 20:20:04 +02:00
Astro 6b679e1b22 nixos-module/container/dhcp-server: fix next-server option 2021-06-18 20:13:07 +02:00
Astro 7d7c89ddb1 server2: disable vga modesetting 2021-06-18 20:09:22 +02:00
Astro a85c25b0e2 server2: openssh.permitRootLogin=prohibit-password 2021-06-18 19:59:09 +02:00
Astro 7c0205f47e netboot: init 2021-06-18 19:56:49 +02:00
Astro bde21798b5 c3d2: add fixed-hosts 2021-06-16 19:58:40 +02:00
Astro a896652436 lib/salt-support/expand-template: fix for nix/pkgs/ap.sh 2021-06-16 14:02:44 +02:00
Astro 0cdef19a7c nix/pkgs/ap.sh: fix switchnum 2021-06-16 13:49:55 +02:00
Astro efe6bf342a nixos-module/*/network: enable LLDP 2021-06-14 22:00:06 +02:00
Astro ff6933fa1a nixos-module/network: disable IPv6AcceptRA by default 2021-06-14 21:56:58 +02:00
Astro 6d0c99c6ce c3d2: enable dhcp 2021-06-09 22:11:46 +02:00
Astro 58047f565e nixos-module/server/lxc-containers: check and shorten ifnames more 2021-06-09 21:37:21 +02:00
Astro 46ca027d80 priv17-gw-up3: init 2021-06-09 21:28:54 +02:00
Astro e192781d2a nixos-module/defaults: enable unstable zfs 2021-06-09 18:43:40 +02:00
Astro 994b00bf96 pkgs/ap.sh: use dnscache 2021-06-07 02:17:15 +02:00
Astro 96da13020f allowedUpstreams: remove upstream2, use upstream1 for anon1 2021-06-02 23:45:10 +02:00
Astro 41a7f05c50 pkgs/dns-slaves: DRY masterAddrs 2021-06-02 23:44:02 +02:00
Astro ee0c996ddc nix/lib/dns: update to up4 ipv6 addrs 2021-06-02 20:07:56 +02:00
Astro 45174545f2 nixos-module/container/bird: disable radvd in c3d2-gw{1,2} 2021-06-02 20:02:31 +02:00
Astro aba5796a57 IPv6 renumbering 2021-06-02 19:56:24 +02:00
Astro 9c485db8c3 partially revert ec5bed6 
speedtest-cli is already installed by ../defaults.nix
 2021-06-01 19:28:42 +02:00
Astro 0cf9122ce0 upstream4: copy forwardPorts from upstream1 2021-06-01 19:27:00 +02:00
Daniel Poelzleithner ec5bed6e65 Add more packages, speedtest-cli on upstreams 2021-05-31 13:44:28 +02:00
Astro 8b2d329067 nixos-module/container/bird: fix syntax 2021-05-31 01:03:51 +02:00
Astro ac4b28f1e3 nixos-module/server/server2: modprobe pppoe 2021-05-31 00:51:14 +02:00
Astro bd795b270a nixos-module/container/upstream/pppoe: init 2021-05-31 00:41:38 +02:00
Astro b87b73d358 nixos-module/server/lxc-containers: update permissions 2021-05-31 00:40:19 +02:00
Astro 24b36568ca options: add physicalInterfaces 2021-05-31 00:06:56 +02:00
Astro 280292b631 nixos-module/container/bird: enable radvd for c3d2-gw* 2021-05-28 16:49:36 +02:00
Astro 762a9df69c nixos-module/collectd: add execUser workaround 2021-05-28 02:02:21 +02:00
Astro 78e528d024 duplicate c3d2-gw into c3d2-gw{1,2,3} 2021-05-27 15:17:45 +02:00
Astro 9e16a4284f nixos-module/collectd/default: fix user 2021-05-27 03:47:14 +02:00
Astro 4f42b64b18 nixos-module/collectd/default: fix user 2021-05-27 03:41:22 +02:00
Astro 31334c4149 nixos-module/collectd/default: rm TODO 2021-05-27 03:40:56 +02:00
Astro 92f3be552d nixos-module/collectd/default: restore ping plugin 2021-05-27 03:25:45 +02:00
Astro 57df325207 allowedUpstreams: add anon1 everywhere 
because ipv4/ipv6 are configured together but switch independently,
anon1 can be working when upstream* has broken ipv6.
 2021-05-27 03:01:09 +02:00
Astro 74dc00961b nixos-module/container/bird: enable authentication for OSPFv3 2021-05-27 02:14:26 +02:00
Astro 97bd7bc7d5 nixos-module/server/lxc-containers: revert lxc to 4.0.6 2021-05-27 01:54:54 +02:00
Astro 5267e4ab32 nixos-module/container/anon: fix wireguard network 2021-05-27 00:19:04 +02:00
Astro 51df2155de dnscache: update unbound settings for nixos-21.05 2021-05-26 23:32:11 +02:00
Astro 14f377248b pkgs/starlink: fix convert.rb 2021-05-23 23:28:09 +02:00
Astro ef371b32c4 nixos-module/collectd: add starlink-stats 2021-05-23 23:16:28 +02:00
Astro e6ba05d34c nixos-module/defaults: install speedtest-cli 2021-05-23 22:45:07 +02:00
Astro cfb062063a nixos-module/container/upstream: fix DHCP for upstream3, upstream4 2021-05-22 01:19:16 +02:00
Astro 68afa61ca1 lxc-containers: prepare upstream3, upstream4 2021-05-22 01:02:01 +02:00
Astro 33a4e65f69 nixos-module/container/upstream: catch failures 2021-05-14 18:56:38 +02:00
Astro b23b687dfb nixos-module/container/upstream: add proper networking.nat.extraStopCommands 2021-05-14 18:37:45 +02:00
Astro 5d97e85bf6 nixos-module/container/dns: add ns.spaceboyz.net over dn42 to slaves 2021-05-07 17:38:23 +02:00
Astro 73868f2f34 lib/dns: fix reverseZones4 to be complete 2021-05-07 17:37:52 +02:00
Astro 90c9c9dd13 nixos-module/container/dns: set notify-source for zone xfer 2021-05-06 18:00:47 +02:00
Astro 27571cff72 nixos-module/container/dns, pkgs/dns-slaves: add explicit addresses for zone xfers 2021-05-06 17:52:49 +02:00
Astro 88e67c827b pkgs/dns-slaves: init 2021-05-06 17:42:26 +02:00
Astro 4d41e241b3 lib/dns: refactor localZones 2021-05-06 16:25:10 +02:00
Astro 4bb81fe044 nixos-module/container/dns: must use extraOptions 2021-05-06 15:51:58 +02:00
Astro a9abf3d365 nixos-module/container/dns: create initial records in dynamic zones 2021-05-06 15:46:37 +02:00
Astro 8bc0ce6e15 nixos-module/container/dns: allow underscores in dynamic hostnames 2021-05-06 15:46:16 +02:00
Astro 3e2d8ef2fc lib/config: enable site.net.pub.dynamicDomain 2021-05-06 15:01:39 +02:00
Astro e141a0fc5a nixos-module/defaults: install iftop 2021-05-06 03:27:35 +02:00