Astro
|
6e2d4c9d0c
|
pkgs/switches/junos: remove useless toString
|
2022-06-27 03:04:54 +02:00 |
Astro
|
d7381816f7
|
pkgs/switches/junos: fix access bonds
|
2022-06-27 03:01:47 +02:00 |
Astro
|
ce61ff7f20
|
pkgs/switches/junos: fix root ssh-rsa
|
2022-06-27 01:22:17 +02:00 |
Astro
|
fec671f093
|
switch-b3: replace switch-b1/b2
|
2022-06-27 01:04:44 +02:00 |
Astro
|
675c549095
|
nixos-module/collectd: fix
|
2022-06-24 00:05:54 +02:00 |
Astro
|
a9e617cd63
|
nixos-module/collectd: let collectd start after dhcpd4
|
2022-06-24 00:04:41 +02:00 |
Astro
|
10b8faeb23
|
pkgs/device-templates: exclude all ap* from all-device-scripts
|
2022-06-23 23:20:18 +02:00 |
Astro
|
604b2d3a7a
|
pkgs/switches/linksys-srw2048: fix isBond
|
2022-06-23 19:40:25 +02:00 |
Astro
|
04721fc1b6
|
pkgs/switches/linksys-srw2048: just remove all vlans for non-trunked bonds
|
2022-06-23 19:22:42 +02:00 |
Astro
|
f58ff9584a
|
Revert "pkgs/switches/linksys-srw2048: always clear vlan config"
This reverts commit 22aa149f3d .
|
2022-06-23 19:19:09 +02:00 |
Astro
|
22aa149f3d
|
pkgs/switches/linksys-srw2048: always clear vlan config
|
2022-06-23 19:12:02 +02:00 |
Astro
|
90cd903381
|
pkgs/switches/linksys-srw2048: implement bonded non-trunked ports
|
2022-06-23 19:07:54 +02:00 |
Astro
|
fd6b70d89c
|
pkgs/openwrt: ignore sysupgrade exit code in sshScript
|
2022-06-23 18:14:27 +02:00 |
Astro
|
ad02ac3975
|
pkgs/openwrt: add modelPackages for tplink_archer-c7-v2, ubnt_unifiac-lite
|
2022-06-23 18:08:59 +02:00 |
Astro
|
bc764e2526
|
pkgs/openwrt: switch sshScript to installing the image
|
2022-06-23 18:08:41 +02:00 |
Astro
|
942d6a45dc
|
pkgs/openwrt/uci-config: reenable wifi-on-link.sh cronjob
|
2022-06-23 16:58:53 +02:00 |
Astro
|
b32f23c318
|
pkgs/openwrt: init modelPackages with "tplink_archer-c7-v5"
|
2022-06-23 16:58:17 +02:00 |
Astro
|
03c2b37596
|
nixos-module/server: remove outdated nixpkgs-master overwrite for collectd
|
2022-06-21 23:39:47 +02:00 |
Astro
|
966442a327
|
nixos-module/container/dhcp-server: change rpi tftp server to nfsroot
|
2022-06-21 23:10:18 +02:00 |
Astro
|
aa0ffa8aa2
|
lib/config: update extraArgs to _module.args
|
2022-06-21 17:05:48 +02:00 |
Astro
|
d88d57cde6
|
nixos-module/collectd: allow access to dhcpd4 StateDirectory
|
2022-06-20 01:20:26 +02:00 |
Astro
|
7344fa925f
|
nixos-module/collectd/dhcpcount.rb: fix path to dhcpd.leases
|
2022-06-20 01:06:54 +02:00 |
Astro
|
a0eb8a5f82
|
nixos-module/defaults: pin kernelPackage to 5.17 for zfs build compatibility
|
2022-06-10 20:05:19 +02:00 |
Astro
|
6f8dfc8859
|
config: remove upstream1 and upstream2 entirely
|
2022-06-10 18:55:25 +02:00 |
Astro
|
22e4e19a5b
|
nixos-module/container/upstream/pppoe: add clamp-mss-to-pmtu for IPv6
|
2022-06-10 01:15:22 +02:00 |
Astro
|
7f3124b530
|
pkgs: readability
|
2022-06-01 01:07:44 +02:00 |
Astro
|
dd3b956ef4
|
nix/pkgs: reduce memory hogging by not catching misbuilt openwrt images
|
2022-05-31 21:57:43 +02:00 |
Astro
|
e05e9d43cd
|
pkgs: remove all-rootfs to avoid huge evaluations
|
2022-05-31 20:39:21 +02:00 |
Astro
|
3ce7ee7411
|
pkgs/openwrt/uci-config: add /etc/collectd.conf
|
2022-05-27 02:08:03 +02:00 |
Astro
|
1854ec5819
|
openwrt-images: add uci-config
|
2022-05-27 01:37:03 +02:00 |
Astro
|
52dbdc237a
|
pkgs/ap: remove dead code
|
2022-05-05 22:34:17 +02:00 |
Astro
|
4b09601419
|
pkgs/openwrt-images: refactor, embed hostName in extraImageName
|
2022-04-30 02:55:01 +02:00 |
Astro
|
7a00fd74cf
|
pkgs/openwrt-images: add support for legacy devices
|
2022-04-30 01:31:56 +02:00 |
Astro
|
d54bb4f871
|
lib.getOpenwrtModel: update to newer model naming scheme
|
2022-04-29 00:54:08 +02:00 |
Astro
|
f9ce07f65e
|
add nix-openwrt-imagebuilder
|
2022-04-29 00:49:45 +02:00 |
Astro
|
598388d428
|
wlan5-roof: lower mtu
|
2022-04-04 20:18:46 +02:00 |
Astro
|
4625eef8cb
|
nixos-module/container/dns: remove IFD for obtaining serial
now 100% IFD free
|
2022-03-26 04:07:00 +01:00 |
Astro
|
2de02cc5bb
|
*.nix: remove unused code
|
2022-03-22 18:13:17 +01:00 |
Astro
|
e16be776bb
|
nixos-module/container/dhcp-server: change RPi4 tftp server from netboot to nix-build
|
2022-03-22 18:11:04 +01:00 |
Astro
|
a43c8e99b6
|
nixos-module/container/{dhcp-server,netboot}: prepare rpi4 netboot
|
2022-03-13 22:43:43 +01:00 |
Astro
|
bdca123b99
|
vpn-gw: init
|
2022-03-01 22:51:31 +01:00 |
Astro
|
674cd3bfa2
|
pkgs/ap: add ${hostName} to exceptions
|
2022-02-10 18:52:43 +01:00 |
Astro
|
4c8de9acd4
|
ap59: deploy to switch-b2
|
2022-02-05 00:33:09 +01:00 |
Astro
|
833803a255
|
pkgs/dns-slaves: fix allow-query address match list
|
2022-01-25 01:24:03 +01:00 |
Astro
|
b393efecf7
|
lib/dns: exclude ipv6 ctx yggdrasil
|
2022-01-25 01:07:17 +01:00 |
Astro
|
7acff4cf8e
|
pkgs/vlan-report: add
|
2022-01-24 21:04:11 +01:00 |
Astro
|
7b80560aed
|
pkgs/switches/*: don't configure null vlans
|
2022-01-19 17:18:46 +01:00 |
Ehmry -
|
b75633566d
|
yggdrasil: remove pantoto peering
Peer instead from the pantoto side.
|
2022-01-18 23:35:48 +01:00 |
Astro
|
b7ebd3ccdf
|
pkgs/ap: fix uciDeleteAll param to reset wifi-ifaces
|
2022-01-18 22:19:49 +01:00 |
Astro
|
6a8feb82db
|
pkgs/ap_install_collectd.sh: fix shabang
|
2022-01-18 21:22:27 +01:00 |
Astro
|
e6651c440d
|
pkgs/ap: don't install wifi-on-link.sh on ap58
|
2022-01-18 21:21:45 +01:00 |
Astro
|
01933d17ca
|
pkgs/switches/shared: fix for nullable vlan
|
2022-01-18 21:11:00 +01:00 |
Astro
|
77c0477bd0
|
vxlan over wireless: fix
|
2022-01-18 21:06:02 +01:00 |
Astro
|
2789589c25
|
vxlan over wireless: get to work
|
2022-01-18 03:50:43 +01:00 |
Astro
|
1327680612
|
vxlan over wireless: first try
|
2022-01-18 01:05:16 +01:00 |
Astro
|
4bb8fe46e2
|
yggdrasil: change listening port to 1337
1/tcp didn't work :(
|
2022-01-14 20:37:42 +01:00 |
Astro
|
b50a051904
|
yggdrasil: don't listen on ipv4 and fail
|
2022-01-14 19:30:29 +01:00 |
Astro
|
64ee9d06bb
|
yggdrasil: listen, add port forwarding on upstream4+upstream1
|
2022-01-14 19:23:03 +01:00 |
Ehmry -
|
4bf0e2bf33
|
yggdrasil: reconfigure peers
|
2022-01-14 00:54:33 +01:00 |
Astro
|
6cc02abdb8
|
yggdrasil: properly add a static key
|
2022-01-13 23:40:43 +01:00 |
Astro
|
792426f22c
|
nixos-module/container/yggdrasil: enable NAT66
|
2022-01-13 20:34:01 +01:00 |
Ehmry -
|
0e3921d126
|
Yggdrasil: enable IPv6 forwarding
|
2022-01-13 20:24:38 +01:00 |
Astro
|
d8bd90e049
|
yggdrasil: prepare container deployment
|
2022-01-13 20:17:50 +01:00 |
Ehmry -
|
29c74782c7
|
Add yggdrasil container
|
2022-01-13 19:49:33 +01:00 |
Astro
|
806820950f
|
nixos-module/container/bird: fix direct interfaces
|
2022-01-11 23:57:35 +01:00 |
Astro
|
343fe8c429
|
nixos-module/defaults: remove journalbeat
the service caused excessive disk write traffic, and the target greylog
server is overloaded anyway.
|
2022-01-11 22:16:53 +01:00 |
Astro
|
e1bceca9ab
|
nix/nixos-module/container/wireguard: rename file from anon.nix
|
2022-01-11 20:02:25 +01:00 |
Astro
|
53cd892531
|
nixos-module/container/bird: advertise upstream local subnet into ospf
|
2022-01-11 20:00:07 +01:00 |
Astro
|
3c44eeaab1
|
lib/config/options: move host wireguard setting to interface entries
|
2022-01-11 19:58:50 +01:00 |
Astro
|
c58ee2dc9f
|
pkgs/network-cypher-graphs: fix import-network-graphs
|
2022-01-10 01:51:22 +01:00 |
Astro
|
287dc1be75
|
pkgs/network-cypher-graphs: let import-network-graphs produce just a script
|
2022-01-09 02:59:15 +01:00 |
Winzlieb -
|
1f2cbd03b8
|
adding cypher graph generation utitlies
|
2021-12-28 18:43:42 +01:00 |
Astro
|
a474577abd
|
Revert "nix/nixos-module/defaults: use non-nft iptables-legacy for migration"
This reverts commit 48b050b283 .
|
2021-12-11 00:51:05 +01:00 |
Astro
|
48b050b283
|
nix/nixos-module/defaults: use non-nft iptables-legacy for migration
|
2021-12-10 22:56:43 +01:00 |
Astro
|
7ac993f61e
|
nixos-module/server/lxc-containers: fix scope
|
2021-11-20 22:10:35 +01:00 |
Astro
|
9900b9af5e
|
pkgs/network-graphs: remove debug output
|
2021-11-20 00:44:21 +01:00 |
Astro
|
8d671d8dee
|
nixos-module/server/lxc-containers: resolve lxc interface name issue by ensuring the type key comes first
it took very long to find this
|
2021-11-20 00:43:32 +01:00 |
Astro
|
eb6e47e505
|
nixos-module/server/network: enable STP and decrease forward_delay for bridges
|
2021-11-18 22:54:33 +01:00 |
Astro
|
14ddaeba45
|
nixos-module/network: configure addresses for all net interfaces
|
2021-11-18 21:36:57 +01:00 |
Astro
|
f3e8c5398d
|
pkgs: add all-rootfs
|
2021-11-18 20:41:06 +01:00 |
Astro
|
abb226bc5a
|
server1, server2: allow building with zfs support
|
2021-11-18 20:39:52 +01:00 |
Astro
|
19674ea461
|
nixos-module/container/bird: revert to somewhat larger ospf intervals
|
2021-11-18 17:10:36 +01:00 |
Astro
|
f7dabd8e2d
|
nixos-module/server/lxc-container: split container build and activation phases
|
2021-11-18 16:58:32 +01:00 |
Astro
|
3902efd3f3
|
nix/pkgs/subnetplan: use colspan
|
2021-11-18 04:17:10 +01:00 |
Astro
|
f98412346e
|
nix/pkgs/subnetplan: cap max_prefix at 64
|
2021-11-18 00:06:44 +01:00 |
Astro
|
557f63b7c1
|
nix/pkgs/subnetplan: init
|
2021-11-17 23:57:16 +01:00 |
Astro
|
15f7687d92
|
nixos-module/container/bird: drastically reduce ospf intervals
|
2021-11-15 23:23:38 +01:00 |
Astro
|
ab199ec19e
|
nix/pkgs: fix switch-to-production
|
2021-11-15 21:56:16 +01:00 |
Astro
|
2808bebffc
|
lib/config/options: add duplicate vlan check
|
2021-11-15 21:30:38 +01:00 |
Astro
|
21fe4f2503
|
lib/config/options: add duplicate address checks and fix them
|
2021-11-14 01:41:19 +01:00 |
Astro
|
624f2e38f6
|
nixos-module/container/upstream/pppoe: fix user option
|
2021-11-13 03:23:45 +01:00 |
Astro
|
bcf60d2a5b
|
config: remove automatic config subnet4Len, subnet4Net
|
2021-11-13 02:53:54 +01:00 |
Astro
|
32c0def45b
|
config: nixify everything
|
2021-11-13 01:23:23 +01:00 |
Astro
|
6446c6b8a3
|
pkgs/ap: update ap_install_collectd.sh hint
|
2021-11-12 18:11:28 +01:00 |
Astro
|
ba94f712c1
|
pkgs/ap: fix wifi-iface
|
2021-11-11 17:49:29 +01:00 |
Daniel Poelzleithner
|
7f800810ad
|
fix missing string conversation
|
2021-11-10 22:58:17 +01:00 |
Daniel Poelzleithner
|
cbf226f3a5
|
add mon alias entries to ceph cluster
|
2021-11-10 22:54:03 +01:00 |
Astro
|
f41c7d37e2
|
lib/config: move _ceph-mon._tcp srv record from server7 to server5
|
2021-11-10 20:55:39 +01:00 |
Astro
|
245cbcfc10
|
nix/config: add cluster _ceph-mon._tcp SRV records
|
2021-11-10 20:13:05 +01:00 |
Astro
|
01f37cec9f
|
lib/dns: add extraRecords
|
2021-11-10 20:12:45 +01:00 |
Astro
|
f14c6ff200
|
pkgs/ap: catch failing service stop
|
2021-11-10 16:38:49 +01:00 |
Astro
|
d9443fc374
|
pkgs/ap: uci delete silently and don't abort
|
2021-11-09 21:16:53 +01:00 |
Astro
|
311df51820
|
pkgs/ap: don't use uci batch
was hiding which command produced an error
|
2021-11-09 21:10:56 +01:00 |
Astro
|
b8b4995433
|
pkgs/ap: delete unused networks
|
2021-11-09 21:07:37 +01:00 |
Astro
|
25217f0b82
|
pkgs/ap: move uciDeleteAll outside `uci batch`
|
2021-11-09 20:31:46 +01:00 |
Astro
|
bade3d54c6
|
pkgs/device-templates: rename device-scripts to .sh for `nix run .#...`
|
2021-11-09 16:47:48 +01:00 |
Astro
|
733f04258d
|
pkgs/network-graphs: add up* to physical-graph
|
2021-11-07 03:21:39 +01:00 |
Astro
|
f0c5f1d398
|
lib/config/legacy: reflect the actual topology
|
2021-11-07 02:55:44 +01:00 |
Astro
|
71675556f2
|
lib/config: implement assertions and warnings
|
2021-11-07 02:43:56 +01:00 |
Astro
|
4080368927
|
pkgs/switches: sort output stably
|
2021-11-07 02:22:24 +01:00 |
Astro
|
8fc0567204
|
pkgs/switches: fixes
|
2021-11-07 02:21:48 +01:00 |
Astro
|
5c074bb051
|
pkgs/ap: fix multiple issues
|
2021-11-07 00:23:21 +01:00 |
Astro
|
db4d075af2
|
pkgs/network-graphs: don't use callPackage as it breaks the flake
|
2021-11-07 00:05:55 +01:00 |
Astro
|
40e8b351d5
|
pkgs/ap.nix: migrate template to nix
|
2021-11-06 22:57:12 +01:00 |
Astro
|
f156ab6f05
|
pkgs/network-graphs: init
|
2021-11-06 19:48:46 +01:00 |
Astro
|
ecf1b3afca
|
pkgs/switches/linksys-srw2048: enable jumbo-frame
Attention: @poelzi
|
2021-11-06 03:38:57 +01:00 |
Astro
|
001aaecf3a
|
lib/config/options: rewrite getHostLinkNetworks et al
|
2021-11-06 03:38:01 +01:00 |
Astro
|
7834d64e27
|
lib/config/legacy: treat single eth0 as wan port
|
2021-11-06 03:36:55 +01:00 |
Astro
|
e975d78504
|
lib/config: add config.site.sshPubKeys
|
2021-11-04 19:17:57 +01:00 |
Astro
|
9852920ee8
|
nix/lib/config: begin treating aps as manageable switches
|
2021-11-04 19:17:31 +01:00 |
Astro
|
8acc37b5d5
|
lib/openwrt-models: add code to get port definitions
|
2021-11-03 23:21:43 +01:00 |
Astro
|
3072e1e78c
|
pkgs/switches: switch from salt to nix
|
2021-11-03 01:09:22 +01:00 |
Astro
|
f54fa47fd8
|
upstream4: add forwardPorts for jabber coturn
|
2021-10-18 03:32:50 +02:00 |
Astro
|
6b36f19af8
|
upstream: fix forwardPorts
|
2021-10-18 01:24:43 +02:00 |
Astro
|
4634b94199
|
upstream4: add forwardPorts for jabber
|
2021-10-18 01:21:28 +02:00 |
Astro
|
2c3c0fa13c
|
upstream: disable NAT reflection for DNS port forwards
|
2021-10-16 23:56:32 +02:00 |
Astro
|
84810697d7
|
pkgs/dns-slaves: add allow-query { all; };
|
2021-10-16 00:58:13 +02:00 |
Astro
|
e904c12847
|
nixos-module/container/dns: add local ns.c3d2.de
|
2021-10-15 23:38:33 +02:00 |
Astro
|
eae6cc680b
|
nix: fix more names
|
2021-10-14 17:12:33 +02:00 |
Astro
|
0ca0a9e9fd
|
nix: remove dangling `.ip4`
|
2021-10-14 17:10:11 +02:00 |
Astro
|
de4b674091
|
nixos-module/defaults: fix syntax
|
2021-10-14 17:08:09 +02:00 |
Astro
|
bd5ee9e7cd
|
nixos-module/defaults: add journalbeat for central logging
|
2021-10-14 17:06:39 +02:00 |
Astro
|
dd399d7871
|
lib/config/legacy: add bind to upstream4.forwardPorts
|
2021-10-14 17:05:05 +02:00 |
Astro
|
6da7456ba1
|
lib/config/legacy: increase readability of upstream4.forwardPorts
|
2021-10-14 17:03:49 +02:00 |
Astro
|
a5cc429946
|
upstream4: add forwardPorts for mail
|
2021-10-02 00:48:32 +02:00 |
Astro
|
e0d12435f0
|
upstream4: set gitea port forwarding to 22/tcp
|
2021-10-01 21:28:14 +02:00 |
Astro
|
2bae8c6785
|
Revert "upstream4: fix gitea port fwding"
This reverts commit 61cfd3a313 .
|
2021-10-01 21:12:28 +02:00 |
Astro
|
61cfd3a313
|
upstream4: fix gitea port fwding
|
2021-10-01 20:51:04 +02:00 |
Astro
|
6245887f0f
|
lib/config/legacy: add dacbert mac
|
2021-09-28 00:24:11 +02:00 |
Astro
|
44094c1346
|
pulsebert.hq.c3d2.de: change MAC address
|
2021-09-22 23:35:28 +02:00 |
Astro
|
5915d9a16a
|
lib/config/options: doc
|
2021-09-19 02:18:17 +02:00 |
Astro
|
df0bca25bb
|
switch domainNames from zentralwerk.dn42 to zentralwerk.org
|
2021-09-16 19:26:03 +02:00 |
Astro
|
23190495ff
|
upstream4: add port forwarding
|
2021-09-10 20:00:04 +02:00 |
Astro
|
04de05ce75
|
lib/config/options: add missing staticIpv4Address default
|
2021-09-07 00:11:28 +02:00 |
Astro
|
8b6c7578e8
|
nixos-module/container/upstream: remove a lot of stuff by using loopbackIPs for forwarded ports
|
2021-09-06 23:41:45 +02:00 |
Astro
|
48cbaf5f08
|
nixos-module/container/upstream: fix SNAT for forwarded ports
|
2021-09-06 23:19:08 +02:00 |
Astro
|
501f96a225
|
nixos-module/container/upstream: specify externalIP to use SNAT instead of MASQUERADE
|
2021-09-06 23:17:46 +02:00 |
Astro
|
1b4f761de8
|
nixos-module/container/upstream: fix SNAT by adding a staticIpv4Address option
|
2021-09-06 22:58:52 +02:00 |
Astro
|
fd4c8ad65b
|
nixos-module/container/upstream: do SNAT for forwarded ports
|
2021-09-06 22:11:39 +02:00 |
Astro
|
3be7beaf27
|
upstream4: add port forward 2222/tcp to gitea
|
2021-09-06 21:14:37 +02:00 |
Astro
|
bc590bca8c
|
upstream4: remove outdated port forwardings
|
2021-09-06 21:12:26 +02:00 |
Astro
|
1d94fb4094
|
nixos-module/server/defaults: install ipmitool
|
2021-08-25 17:01:30 +02:00 |
Astro
|
5a012418dc
|
nixos-module/server/defaults: enable IPMI monitoring with collectd from nixpkgs-master
|
2021-08-25 16:48:04 +02:00 |
Astro
|
ee2db449fd
|
nixos-module/server: unify server1 and server2
|
2021-08-21 00:04:28 +02:00 |
Astro
|
6166d1ee3b
|
nixos-module/server/server1: init
|
2021-08-20 23:49:04 +02:00 |
Astro
|
5b27eb82ac
|
config: add server1 to mainServers
|
2021-08-20 21:39:31 +02:00 |
Astro
|
30aa03f07f
|
nixos-module/server/lxc-containers: make container startup conditional
preparing for cold failover
|
2021-08-20 21:39:00 +02:00 |
Astro
|
8434dcad0f
|
ap.sh: configure local graylog target
lefover
|
2021-08-20 21:38:25 +02:00 |
Astro
|
cf3d9b4891
|
config: don't use location to select server for lxc containers
|
2021-08-20 21:37:43 +02:00 |
Astro
|
c2b1a2f183
|
nix/lib/dns: fix reverseZone6Size to /56
|
2021-08-13 01:18:59 +02:00 |
Astro
|
2059c22c98
|
c3d2: enable dyndns
|
2021-07-16 19:36:41 +02:00 |
Astro
|
440ec18e71
|
upstream4: add ssh port forwarding for leon's web-deploy
|
2021-07-16 19:36:13 +02:00 |
Astro
|
dbca546593
|
nixos-module/server/lxc-containers: sysctl only when enabled
|
2021-07-14 19:01:24 +02:00 |
Astro
|
0cee77c2b4
|
nixos-module/container/dhcp-server: fix
|
2021-06-18 21:41:03 +02:00 |
Astro
|
7253ae6b17
|
nixos-module/container/dhcp-server: fix
|
2021-06-18 21:39:35 +02:00 |
Astro
|
13334f087c
|
netboot: support efi netboot
|
2021-06-18 21:31:17 +02:00 |
Astro
|
0e07293692
|
nixos-module/container/netboot: switch from xinetd to atftpd
|
2021-06-18 20:45:52 +02:00 |
Astro
|
250089b22f
|
nixos-module/server/lxc-containers: bump kernel limits
|
2021-06-18 20:20:04 +02:00 |
Astro
|
6b679e1b22
|
nixos-module/container/dhcp-server: fix next-server option
|
2021-06-18 20:13:07 +02:00 |
Astro
|
7d7c89ddb1
|
server2: disable vga modesetting
|
2021-06-18 20:09:22 +02:00 |
Astro
|
a85c25b0e2
|
server2: openssh.permitRootLogin=prohibit-password
|
2021-06-18 19:59:09 +02:00 |
Astro
|
7c0205f47e
|
netboot: init
|
2021-06-18 19:56:49 +02:00 |
Astro
|
bde21798b5
|
c3d2: add fixed-hosts
|
2021-06-16 19:58:40 +02:00 |
Astro
|
a896652436
|
lib/salt-support/expand-template: fix for nix/pkgs/ap.sh
|
2021-06-16 14:02:44 +02:00 |
Astro
|
0cdef19a7c
|
nix/pkgs/ap.sh: fix switchnum
|
2021-06-16 13:49:55 +02:00 |
Astro
|
efe6bf342a
|
nixos-module/*/network: enable LLDP
|
2021-06-14 22:00:06 +02:00 |
Astro
|
ff6933fa1a
|
nixos-module/network: disable IPv6AcceptRA by default
|
2021-06-14 21:56:58 +02:00 |
Astro
|
6d0c99c6ce
|
c3d2: enable dhcp
|
2021-06-09 22:11:46 +02:00 |
Astro
|
58047f565e
|
nixos-module/server/lxc-containers: check and shorten ifnames more
|
2021-06-09 21:37:21 +02:00 |
Astro
|
46ca027d80
|
priv17-gw-up3: init
|
2021-06-09 21:28:54 +02:00 |
Astro
|
e192781d2a
|
nixos-module/defaults: enable unstable zfs
|
2021-06-09 18:43:40 +02:00 |
Astro
|
994b00bf96
|
pkgs/ap.sh: use dnscache
|
2021-06-07 02:17:15 +02:00 |
Astro
|
96da13020f
|
allowedUpstreams: remove upstream2, use upstream1 for anon1
|
2021-06-02 23:45:10 +02:00 |
Astro
|
41a7f05c50
|
pkgs/dns-slaves: DRY masterAddrs
|
2021-06-02 23:44:02 +02:00 |
Astro
|
ee0c996ddc
|
nix/lib/dns: update to up4 ipv6 addrs
|
2021-06-02 20:07:56 +02:00 |
Astro
|
45174545f2
|
nixos-module/container/bird: disable radvd in c3d2-gw{1,2}
|
2021-06-02 20:02:31 +02:00 |
Astro
|
aba5796a57
|
IPv6 renumbering
|
2021-06-02 19:56:24 +02:00 |
Astro
|
9c485db8c3
|
partially revert ec5bed6
speedtest-cli is already installed by ../defaults.nix
|
2021-06-01 19:28:42 +02:00 |
Astro
|
0cf9122ce0
|
upstream4: copy forwardPorts from upstream1
|
2021-06-01 19:27:00 +02:00 |
Daniel Poelzleithner
|
ec5bed6e65
|
Add more packages, speedtest-cli on upstreams
|
2021-05-31 13:44:28 +02:00 |
Astro
|
8b2d329067
|
nixos-module/container/bird: fix syntax
|
2021-05-31 01:03:51 +02:00 |
Astro
|
ac4b28f1e3
|
nixos-module/server/server2: modprobe pppoe
|
2021-05-31 00:51:14 +02:00 |
Astro
|
bd795b270a
|
nixos-module/container/upstream/pppoe: init
|
2021-05-31 00:41:38 +02:00 |
Astro
|
b87b73d358
|
nixos-module/server/lxc-containers: update permissions
|
2021-05-31 00:40:19 +02:00 |
Astro
|
24b36568ca
|
options: add physicalInterfaces
|
2021-05-31 00:06:56 +02:00 |
Astro
|
280292b631
|
nixos-module/container/bird: enable radvd for c3d2-gw*
|
2021-05-28 16:49:36 +02:00 |
Astro
|
762a9df69c
|
nixos-module/collectd: add execUser workaround
|
2021-05-28 02:02:21 +02:00 |
Astro
|
78e528d024
|
duplicate c3d2-gw into c3d2-gw{1,2,3}
|
2021-05-27 15:17:45 +02:00 |
Astro
|
9e16a4284f
|
nixos-module/collectd/default: fix user
|
2021-05-27 03:47:14 +02:00 |
Astro
|
4f42b64b18
|
nixos-module/collectd/default: fix user
|
2021-05-27 03:41:22 +02:00 |
Astro
|
31334c4149
|
nixos-module/collectd/default: rm TODO
|
2021-05-27 03:40:56 +02:00 |
Astro
|
92f3be552d
|
nixos-module/collectd/default: restore ping plugin
|
2021-05-27 03:25:45 +02:00 |
Astro
|
57df325207
|
allowedUpstreams: add anon1 everywhere
because ipv4/ipv6 are configured together but switch independently,
anon1 can be working when upstream* has broken ipv6.
|
2021-05-27 03:01:09 +02:00 |
Astro
|
74dc00961b
|
nixos-module/container/bird: enable authentication for OSPFv3
|
2021-05-27 02:14:26 +02:00 |
Astro
|
97bd7bc7d5
|
nixos-module/server/lxc-containers: revert lxc to 4.0.6
|
2021-05-27 01:54:54 +02:00 |
Astro
|
5267e4ab32
|
nixos-module/container/anon: fix wireguard network
|
2021-05-27 00:19:04 +02:00 |
Astro
|
51df2155de
|
dnscache: update unbound settings for nixos-21.05
|
2021-05-26 23:32:11 +02:00 |
Astro
|
14f377248b
|
pkgs/starlink: fix convert.rb
|
2021-05-23 23:28:09 +02:00 |
Astro
|
ef371b32c4
|
nixos-module/collectd: add starlink-stats
|
2021-05-23 23:16:28 +02:00 |
Astro
|
e6ba05d34c
|
nixos-module/defaults: install speedtest-cli
|
2021-05-23 22:45:07 +02:00 |
Astro
|
cfb062063a
|
nixos-module/container/upstream: fix DHCP for upstream3, upstream4
|
2021-05-22 01:19:16 +02:00 |
Astro
|
68afa61ca1
|
lxc-containers: prepare upstream3, upstream4
|
2021-05-22 01:02:01 +02:00 |
Astro
|
33a4e65f69
|
nixos-module/container/upstream: catch failures
|
2021-05-14 18:56:38 +02:00 |
Astro
|
b23b687dfb
|
nixos-module/container/upstream: add proper networking.nat.extraStopCommands
|
2021-05-14 18:37:45 +02:00 |
Astro
|
5d97e85bf6
|
nixos-module/container/dns: add ns.spaceboyz.net over dn42 to slaves
|
2021-05-07 17:38:23 +02:00 |
Astro
|
73868f2f34
|
lib/dns: fix reverseZones4 to be complete
|
2021-05-07 17:37:52 +02:00 |
Astro
|
90c9c9dd13
|
nixos-module/container/dns: set notify-source for zone xfer
|
2021-05-06 18:00:47 +02:00 |
Astro
|
27571cff72
|
nixos-module/container/dns, pkgs/dns-slaves: add explicit addresses for zone xfers
|
2021-05-06 17:52:49 +02:00 |
Astro
|
88e67c827b
|
pkgs/dns-slaves: init
|
2021-05-06 17:42:26 +02:00 |
Astro
|
4d41e241b3
|
lib/dns: refactor localZones
|
2021-05-06 16:25:10 +02:00 |
Astro
|
4bb81fe044
|
nixos-module/container/dns: must use extraOptions
|
2021-05-06 15:51:58 +02:00 |
Astro
|
a9abf3d365
|
nixos-module/container/dns: create initial records in dynamic zones
|
2021-05-06 15:46:37 +02:00 |
Astro
|
8bc0ce6e15
|
nixos-module/container/dns: allow underscores in dynamic hostnames
|
2021-05-06 15:46:16 +02:00 |
Astro
|
3e2d8ef2fc
|
lib/config: enable site.net.pub.dynamicDomain
|
2021-05-06 15:01:39 +02:00 |
Astro
|
e141a0fc5a
|
nixos-module/defaults: install iftop
|
2021-05-06 03:27:35 +02:00 |
Astro
|
fd267085bc
|
nixos-module/container/{dns, dhcp-server}: implement internal ipv4 dyndns
|
2021-05-06 03:22:18 +02:00 |
Astro
|
bc61849e4d
|
nixos-module/network: try to make resolv.conf more compatible
|
2021-05-06 02:30:44 +02:00 |
Astro
|
0d25ccf0da
|
nix/key: add dyndnsKey
|
2021-05-06 02:05:26 +02:00 |
Astro
|
4402d724bb
|
nixos-module/container/anon: make nat, iproute2 config optional
|
2021-05-06 01:09:09 +02:00 |
Astro
|
0aa4169dcb
|
nixos-module/container/anon: make core flags optional
|
2021-05-06 01:08:01 +02:00 |
Astro
|
01f3685d9b
|
nixos-module/server/lxc-containers: add shortenNetName
|
2021-05-06 00:50:24 +02:00 |
Astro
|
5bda3ab775
|
nixos-module/defaults: let journald log to volatile storage
|
2021-05-06 00:45:18 +02:00 |
Astro
|
16d60e0dd3
|
nixos-module/container/dnscache: fix local forward-zones
|
2021-05-06 00:43:37 +02:00 |
Astro
|
c70cb80a78
|
nixos-module/container/dnscache: remove more domain-insecure definitions
|
2021-05-06 00:43:28 +02:00 |
Astro
|
b2e8fab30e
|
nixos-module/container/dnscache: disable c3d2 reverse zone
|
2021-05-05 23:28:26 +02:00 |
Astro
|
1eeb24a2e2
|
nixos-module/container/dnscache: use all the dn42 ns
|
2021-05-05 23:21:33 +02:00 |
Astro
|
911cd33a1c
|
nixos-module/container/dnscache: extend domain-insecure, remove all local-zone
|
2021-05-05 23:21:12 +02:00 |
Astro
|
a45fb3c484
|
nixos-module/container/dnscache: use data from config.site.dns.localZones
|
2021-05-05 23:20:39 +02:00 |
Astro
|
b800691dad
|
nixos-module/container/dns: factor zones out into config.site.dns.localZones
|
2021-05-05 23:19:41 +02:00 |
Astro
|
20c8821823
|
nixos-module/container/bird: don't redistribute bgp into ospf
|
2021-05-05 21:01:23 +02:00 |
Astro
|
bf0a185ed5
|
nixos-module/server/lxc-containers: decrease RestartSec
|
2021-05-05 20:23:56 +02:00 |
Astro
|
5f8203d901
|
nixos-module/container/bird: add check-upstream services
|
2021-05-05 17:35:44 +02:00 |
Astro
|
d89c373dfe
|
nixos-module/container/dns: add ipv6 reverse zones
|
2021-05-03 03:44:00 +02:00 |
Astro
|
187c657080
|
nixos-module/container/dns: add ipv4 reverse zones
|
2021-05-03 02:15:27 +02:00 |
Astro
|
8c896c31b8
|
nixos-module/container/dns: init
|
2021-05-03 01:26:57 +02:00 |
Astro
|
c15f716dd1
|
nixos-module/container/bird: fix ospf priority
|
2021-05-02 20:01:59 +02:00 |
Astro
|
f99d05c42d
|
nixos-module/container/bird: become designated router for ospf instances when adveritising upstream
|
2021-05-02 19:52:00 +02:00 |
Astro
|
df5fee8f69
|
nixos-module/container/bird: style
|
2021-05-02 19:51:48 +02:00 |
Astro
|
93d312c26c
|
nixos-module/server/lxc-containers: switch back to using ConditionPathExists
much more graceful to systemd
|
2021-05-01 03:07:28 +02:00 |
Astro
|
aa5c7377c7
|
nixos-module/server/lxc-containers: add restart on failed reload
|
2021-05-01 03:04:14 +02:00 |
Astro
|
03f755f841
|
nixos-module/container/upstream: provide NAT6 with noNat.subnets6
|
2021-05-01 01:14:54 +02:00 |
Astro
|
38da586d49
|
nixos-module/container/bird: disable ospfv3 auth again for ZW6_upstream*
upstream2 is still not migrated
|
2021-05-01 00:55:41 +02:00 |
Astro
|
d72789c35a
|
/nixos-module/container/bird: use ospf instances not areas for sharing upstream
|
2021-04-30 23:55:16 +02:00 |
Astro
|
003a948ce2
|
lib/config: remove ospf.networks[46]
|
2021-04-30 23:37:53 +02:00 |
Astro
|
268e16999f
|
nixos-module/container/bird: remove useless network declarations
|
2021-04-30 23:35:54 +02:00 |
Astro
|
eda2bc3b55
|
nixos-module/container/bird: simplify filters
|
2021-04-30 23:02:31 +02:00 |
Astro
|
692e12f07d
|
nixos-module/container/bird: start using multiple ospf instances
|
2021-04-30 22:39:56 +02:00 |
Astro
|
1f06e90cfc
|
nixos-module/defaults: enable boot.tmpOnTmpfs
|
2021-04-30 22:39:24 +02:00 |
Astro
|
5c8fa22ca8
|
nixos-module/server/lxc-containers: add prebuilt containers
|
2021-04-30 22:38:57 +02:00 |
Astro
|
2f02f474b9
|
flake.nix: switch zentralwerk-network-key input from nix to master branch
|
2021-04-30 18:39:41 +02:00 |
Astro
|
6b6f3d5598
|
nixos-module/container/bird: simplify filter operations
|
2021-04-30 00:16:00 +02:00 |
Astro
|
67acfb140b
|
nix/nixos-module/container/anon: change wireguardMark to an actually unused value
|
2021-04-29 23:26:58 +02:00 |
Astro
|
8b59a9a921
|
lib/config/legacy: setup allowedUpstreams for many containers
|
2021-04-29 23:09:13 +02:00 |
Astro
|
c4fe62ebeb
|
nixos-module/container/bird: export default routes on upstream*/anon*
|
2021-04-29 22:47:44 +02:00 |
Astro
|
0350826bc5
|
nixos-module/container/{anon,bird}: route wireguard with policy routing over default routes learned from OSPF
|
2021-04-29 22:46:03 +02:00 |
Astro
|
a467699f48
|
libx/config/default: remove dup warnings output
|
2021-04-29 22:43:46 +02:00 |
Astro
|
1330ba94d2
|
ap.sh: copy to nix/, change ping addr to mgmt-gw
|
2021-04-29 02:38:11 +02:00 |
Astro
|
257e6686b9
|
nixos-module/container/bird: implement upstream failover
|
2021-04-29 01:44:48 +02:00 |
Astro
|
ce49c22d2e
|
pkgs/device-templates: make executable and wrap scripts
|
2021-04-29 01:39:21 +02:00 |
Astro
|
02de036ba7
|
nixos-module/container/upstream: update DHCPv6PrefixDelegation configuration
|
2021-04-29 01:34:33 +02:00 |
Astro
|
c6d2879d93
|
lib/config/default: fix warnings
|
2021-04-29 01:34:05 +02:00 |
Astro
|
60758b448a
|
nix/pkgs: add ap_install_collectd.sh
|
2021-04-25 23:53:38 +02:00 |
Astro
|
266fed1c13
|
nixos-module/container/dnscache: tuning
|
2021-04-15 00:27:23 +02:00 |
Astro
|
e79bb4e297
|
nixos-module/collectd: add unbound.rb
|
2021-04-15 00:24:38 +02:00 |
Astro
|
52cac17f16
|
nixos-module/container/dnscache: set tls-cert-bundle
|
2021-04-14 23:25:21 +02:00 |
Astro
|
b73e12e32b
|
nixos-module/server/lxc-containers: fix hwaddr
|
2021-04-14 23:08:12 +02:00 |
Astro
|
405acaf875
|
nixos-module/container/dnscache: init
|
2021-04-14 23:07:27 +02:00 |
Astro
|
1ee38b50b0
|
nixos-module/firewall: add for mgmt-gw, priv13-gw
|
2021-04-14 20:04:28 +02:00 |
Astro
|
5aa53fbcb1
|
nixos-module/container/bird: add bgp configuration
|
2021-04-13 00:46:12 +02:00 |
Astro
|
aed29a54ce
|
lib/config/options+legacy: add bgp
|
2021-04-13 00:11:42 +02:00 |
Astro
|
8013241d6c
|
nixos-module/container/defaults: disable openssh
|
2021-04-12 23:40:17 +02:00 |
Astro
|
7e776b2dbf
|
nixos-module/collectd: don't invoke `hostname` in dhcpcount.rb
|
2021-04-12 23:36:41 +02:00 |
Astro
|
1a8b4811f7
|
nix/nixos-module/collectd: add dhcpcount.rb
|
2021-04-12 23:32:21 +02:00 |
Astro
|
4ef98c986c
|
nixos-module/container/defaults: disable nix-daemon.socket
should quelch a warning
|
2021-04-12 22:35:34 +02:00 |
Astro
|
f583833645
|
lib/config/options: fix isRouter logic
|
2021-04-12 22:35:02 +02:00 |
Astro
|
b243297760
|
pkgs/default.nix: rm dead code
|
2021-04-12 21:22:16 +02:00 |
Astro
|
cdd97678c1
|
nixos-module/container/bird: bump radv lifetime up to 10min
|
2021-04-12 21:18:18 +02:00 |
Astro
|
a5e036397c
|
nixos-module/server/qemu: increase nix-daemon LimitNOFILE
workaround
|
2021-04-12 21:12:03 +02:00 |
Astro
|
51460ad776
|
nix/nixos-module/server/qemu: move stuff here
|
2021-04-11 02:02:15 +02:00 |
Astro
|
0eabf2dbf6
|
doc
|
2021-04-11 02:02:15 +02:00 |
Astro
|
010a5cfb97
|
lib/config/options: make isRouter depend on having an ipv4 address in core
prevents server2 from becoming a router
|
2021-04-11 02:02:15 +02:00 |
Astro
|
6eb8a1d24f
|
lib/config/options: remove wg from interfaces
|
2021-04-11 02:02:15 +02:00 |
Astro
|
25be18358f
|
nixos-module/container/bird: add gatewayNet workaound for cls-gw
|
2021-04-11 02:02:15 +02:00 |
Astro
|
58dccf697f
|
netmasks.nix: turn into code
|
2021-04-11 02:02:15 +02:00 |
Astro
|
df32c2c7f3
|
nixos-module/network: doc, style
|
2021-04-11 02:02:15 +02:00 |
Astro
|
b0611efc57
|
doc
|
2021-04-11 02:02:15 +02:00 |
Astro
|
a2ac282c60
|
nixos-module/defaults: install iptables, conntrack-tools
|
2021-04-11 02:02:15 +02:00 |
Astro
|
ec6d26ab08
|
s/forwardedPorts/forwardPorts/
|
2021-04-11 02:02:15 +02:00 |
Astro
|
d820cdffd3
|
server2: add updateMicrocode
|
2021-04-11 02:02:15 +02:00 |
Astro
|
8bdeedea9a
|
nixos-module/container/upstream: style
|
2021-04-11 02:02:15 +02:00 |