|
efe6bf342a
|
nixos-module/*/network: enable LLDP
|
2021-06-14 22:00:06 +02:00 |
|
|
ff6933fa1a
|
nixos-module/network: disable IPv6AcceptRA by default
|
2021-06-14 21:56:58 +02:00 |
|
|
58047f565e
|
nixos-module/server/lxc-containers: check and shorten ifnames more
|
2021-06-09 21:37:21 +02:00 |
|
|
e192781d2a
|
nixos-module/defaults: enable unstable zfs
|
2021-06-09 18:43:40 +02:00 |
|
|
ee0c996ddc
|
nix/lib/dns: update to up4 ipv6 addrs
|
2021-06-02 20:07:56 +02:00 |
|
|
45174545f2
|
nixos-module/container/bird: disable radvd in c3d2-gw{1,2}
|
2021-06-02 20:02:31 +02:00 |
|
|
aba5796a57
|
IPv6 renumbering
|
2021-06-02 19:56:24 +02:00 |
|
|
9c485db8c3
|
partially revert ec5bed6
speedtest-cli is already installed by ../defaults.nix
|
2021-06-01 19:28:42 +02:00 |
|
Daniel Poelzleithner
|
ec5bed6e65
|
Add more packages, speedtest-cli on upstreams
|
2021-05-31 13:44:28 +02:00 |
|
|
8b2d329067
|
nixos-module/container/bird: fix syntax
|
2021-05-31 01:03:51 +02:00 |
|
|
ac4b28f1e3
|
nixos-module/server/server2: modprobe pppoe
|
2021-05-31 00:51:14 +02:00 |
|
|
bd795b270a
|
nixos-module/container/upstream/pppoe: init
|
2021-05-31 00:41:38 +02:00 |
|
|
b87b73d358
|
nixos-module/server/lxc-containers: update permissions
|
2021-05-31 00:40:19 +02:00 |
|
|
24b36568ca
|
options: add physicalInterfaces
|
2021-05-31 00:06:56 +02:00 |
|
|
280292b631
|
nixos-module/container/bird: enable radvd for c3d2-gw*
|
2021-05-28 16:49:36 +02:00 |
|
|
762a9df69c
|
nixos-module/collectd: add execUser workaround
|
2021-05-28 02:02:21 +02:00 |
|
|
9e16a4284f
|
nixos-module/collectd/default: fix user
|
2021-05-27 03:47:14 +02:00 |
|
|
4f42b64b18
|
nixos-module/collectd/default: fix user
|
2021-05-27 03:41:22 +02:00 |
|
|
31334c4149
|
nixos-module/collectd/default: rm TODO
|
2021-05-27 03:40:56 +02:00 |
|
|
92f3be552d
|
nixos-module/collectd/default: restore ping plugin
|
2021-05-27 03:25:45 +02:00 |
|
|
74dc00961b
|
nixos-module/container/bird: enable authentication for OSPFv3
|
2021-05-27 02:14:26 +02:00 |
|
|
97bd7bc7d5
|
nixos-module/server/lxc-containers: revert lxc to 4.0.6
|
2021-05-27 01:54:54 +02:00 |
|
|
5267e4ab32
|
nixos-module/container/anon: fix wireguard network
|
2021-05-27 00:19:04 +02:00 |
|
|
51df2155de
|
dnscache: update unbound settings for nixos-21.05
|
2021-05-26 23:32:11 +02:00 |
|
|
ef371b32c4
|
nixos-module/collectd: add starlink-stats
|
2021-05-23 23:16:28 +02:00 |
|
|
e6ba05d34c
|
nixos-module/defaults: install speedtest-cli
|
2021-05-23 22:45:07 +02:00 |
|
|
cfb062063a
|
nixos-module/container/upstream: fix DHCP for upstream3, upstream4
|
2021-05-22 01:19:16 +02:00 |
|
|
33a4e65f69
|
nixos-module/container/upstream: catch failures
|
2021-05-14 18:56:38 +02:00 |
|
|
b23b687dfb
|
nixos-module/container/upstream: add proper networking.nat.extraStopCommands
|
2021-05-14 18:37:45 +02:00 |
|
|
5d97e85bf6
|
nixos-module/container/dns: add ns.spaceboyz.net over dn42 to slaves
|
2021-05-07 17:38:23 +02:00 |
|
|
90c9c9dd13
|
nixos-module/container/dns: set notify-source for zone xfer
|
2021-05-06 18:00:47 +02:00 |
|
|
27571cff72
|
nixos-module/container/dns, pkgs/dns-slaves: add explicit addresses for zone xfers
|
2021-05-06 17:52:49 +02:00 |
|
|
4d41e241b3
|
lib/dns: refactor localZones
|
2021-05-06 16:25:10 +02:00 |
|
|
4bb81fe044
|
nixos-module/container/dns: must use extraOptions
|
2021-05-06 15:51:58 +02:00 |
|
|
a9abf3d365
|
nixos-module/container/dns: create initial records in dynamic zones
|
2021-05-06 15:46:37 +02:00 |
|
|
8bc0ce6e15
|
nixos-module/container/dns: allow underscores in dynamic hostnames
|
2021-05-06 15:46:16 +02:00 |
|
|
e141a0fc5a
|
nixos-module/defaults: install iftop
|
2021-05-06 03:27:35 +02:00 |
|
|
fd267085bc
|
nixos-module/container/{dns, dhcp-server}: implement internal ipv4 dyndns
|
2021-05-06 03:22:18 +02:00 |
|
|
bc61849e4d
|
nixos-module/network: try to make resolv.conf more compatible
|
2021-05-06 02:30:44 +02:00 |
|
|
4402d724bb
|
nixos-module/container/anon: make nat, iproute2 config optional
|
2021-05-06 01:09:09 +02:00 |
|
|
0aa4169dcb
|
nixos-module/container/anon: make core flags optional
|
2021-05-06 01:08:01 +02:00 |
|
|
01f3685d9b
|
nixos-module/server/lxc-containers: add shortenNetName
|
2021-05-06 00:50:24 +02:00 |
|
|
5bda3ab775
|
nixos-module/defaults: let journald log to volatile storage
|
2021-05-06 00:45:18 +02:00 |
|
|
16d60e0dd3
|
nixos-module/container/dnscache: fix local forward-zones
|
2021-05-06 00:43:37 +02:00 |
|
|
c70cb80a78
|
nixos-module/container/dnscache: remove more domain-insecure definitions
|
2021-05-06 00:43:28 +02:00 |
|
|
b2e8fab30e
|
nixos-module/container/dnscache: disable c3d2 reverse zone
|
2021-05-05 23:28:26 +02:00 |
|
|
1eeb24a2e2
|
nixos-module/container/dnscache: use all the dn42 ns
|
2021-05-05 23:21:33 +02:00 |
|
|
911cd33a1c
|
nixos-module/container/dnscache: extend domain-insecure, remove all local-zone
|
2021-05-05 23:21:12 +02:00 |
|
|
a45fb3c484
|
nixos-module/container/dnscache: use data from config.site.dns.localZones
|
2021-05-05 23:20:39 +02:00 |
|
|
b800691dad
|
nixos-module/container/dns: factor zones out into config.site.dns.localZones
|
2021-05-05 23:19:41 +02:00 |
|
|
20c8821823
|
nixos-module/container/bird: don't redistribute bgp into ospf
|
2021-05-05 21:01:23 +02:00 |
|
|
bf0a185ed5
|
nixos-module/server/lxc-containers: decrease RestartSec
|
2021-05-05 20:23:56 +02:00 |
|
|
5f8203d901
|
nixos-module/container/bird: add check-upstream services
|
2021-05-05 17:35:44 +02:00 |
|
|
d89c373dfe
|
nixos-module/container/dns: add ipv6 reverse zones
|
2021-05-03 03:44:00 +02:00 |
|
|
187c657080
|
nixos-module/container/dns: add ipv4 reverse zones
|
2021-05-03 02:15:27 +02:00 |
|
|
8c896c31b8
|
nixos-module/container/dns: init
|
2021-05-03 01:26:57 +02:00 |
|
|
c15f716dd1
|
nixos-module/container/bird: fix ospf priority
|
2021-05-02 20:01:59 +02:00 |
|
|
f99d05c42d
|
nixos-module/container/bird: become designated router for ospf instances when adveritising upstream
|
2021-05-02 19:52:00 +02:00 |
|
|
df5fee8f69
|
nixos-module/container/bird: style
|
2021-05-02 19:51:48 +02:00 |
|
|
93d312c26c
|
nixos-module/server/lxc-containers: switch back to using ConditionPathExists
much more graceful to systemd
|
2021-05-01 03:07:28 +02:00 |
|
|
aa5c7377c7
|
nixos-module/server/lxc-containers: add restart on failed reload
|
2021-05-01 03:04:14 +02:00 |
|
|
03f755f841
|
nixos-module/container/upstream: provide NAT6 with noNat.subnets6
|
2021-05-01 01:14:54 +02:00 |
|
|
38da586d49
|
nixos-module/container/bird: disable ospfv3 auth again for ZW6_upstream*
upstream2 is still not migrated
|
2021-05-01 00:55:41 +02:00 |
|
|
d72789c35a
|
/nixos-module/container/bird: use ospf instances not areas for sharing upstream
|
2021-04-30 23:55:16 +02:00 |
|
|
268e16999f
|
nixos-module/container/bird: remove useless network declarations
|
2021-04-30 23:35:54 +02:00 |
|
|
eda2bc3b55
|
nixos-module/container/bird: simplify filters
|
2021-04-30 23:02:31 +02:00 |
|
|
692e12f07d
|
nixos-module/container/bird: start using multiple ospf instances
|
2021-04-30 22:39:56 +02:00 |
|
|
1f06e90cfc
|
nixos-module/defaults: enable boot.tmpOnTmpfs
|
2021-04-30 22:39:24 +02:00 |
|
|
5c8fa22ca8
|
nixos-module/server/lxc-containers: add prebuilt containers
|
2021-04-30 22:38:57 +02:00 |
|
|
2f02f474b9
|
flake.nix: switch zentralwerk-network-key input from nix to master branch
|
2021-04-30 18:39:41 +02:00 |
|
|
6b6f3d5598
|
nixos-module/container/bird: simplify filter operations
|
2021-04-30 00:16:00 +02:00 |
|
|
67acfb140b
|
nix/nixos-module/container/anon: change wireguardMark to an actually unused value
|
2021-04-29 23:26:58 +02:00 |
|
|
c4fe62ebeb
|
nixos-module/container/bird: export default routes on upstream*/anon*
|
2021-04-29 22:47:44 +02:00 |
|
|
0350826bc5
|
nixos-module/container/{anon,bird}: route wireguard with policy routing over default routes learned from OSPF
|
2021-04-29 22:46:03 +02:00 |
|
|
257e6686b9
|
nixos-module/container/bird: implement upstream failover
|
2021-04-29 01:44:48 +02:00 |
|
|
02de036ba7
|
nixos-module/container/upstream: update DHCPv6PrefixDelegation configuration
|
2021-04-29 01:34:33 +02:00 |
|
|
266fed1c13
|
nixos-module/container/dnscache: tuning
|
2021-04-15 00:27:23 +02:00 |
|
|
e79bb4e297
|
nixos-module/collectd: add unbound.rb
|
2021-04-15 00:24:38 +02:00 |
|
|
52cac17f16
|
nixos-module/container/dnscache: set tls-cert-bundle
|
2021-04-14 23:25:21 +02:00 |
|
|
b73e12e32b
|
nixos-module/server/lxc-containers: fix hwaddr
|
2021-04-14 23:08:12 +02:00 |
|
|
405acaf875
|
nixos-module/container/dnscache: init
|
2021-04-14 23:07:27 +02:00 |
|
|
1ee38b50b0
|
nixos-module/firewall: add for mgmt-gw, priv13-gw
|
2021-04-14 20:04:28 +02:00 |
|
|
5aa53fbcb1
|
nixos-module/container/bird: add bgp configuration
|
2021-04-13 00:46:12 +02:00 |
|
|
8013241d6c
|
nixos-module/container/defaults: disable openssh
|
2021-04-12 23:40:17 +02:00 |
|
|
7e776b2dbf
|
nixos-module/collectd: don't invoke hostname in dhcpcount.rb
|
2021-04-12 23:36:41 +02:00 |
|
|
1a8b4811f7
|
nix/nixos-module/collectd: add dhcpcount.rb
|
2021-04-12 23:32:21 +02:00 |
|
|
4ef98c986c
|
nixos-module/container/defaults: disable nix-daemon.socket
should quelch a warning
|
2021-04-12 22:35:34 +02:00 |
|
|
cdd97678c1
|
nixos-module/container/bird: bump radv lifetime up to 10min
|
2021-04-12 21:18:18 +02:00 |
|
|
a5e036397c
|
nixos-module/server/qemu: increase nix-daemon LimitNOFILE
workaround
|
2021-04-12 21:12:03 +02:00 |
|
|
51460ad776
|
nix/nixos-module/server/qemu: move stuff here
|
2021-04-11 02:02:15 +02:00 |
|
|
0eabf2dbf6
|
doc
|
2021-04-11 02:02:15 +02:00 |
|
|
25be18358f
|
nixos-module/container/bird: add gatewayNet workaound for cls-gw
|
2021-04-11 02:02:15 +02:00 |
|
|
df32c2c7f3
|
nixos-module/network: doc, style
|
2021-04-11 02:02:15 +02:00 |
|
|
b0611efc57
|
doc
|
2021-04-11 02:02:15 +02:00 |
|
|
a2ac282c60
|
nixos-module/defaults: install iptables, conntrack-tools
|
2021-04-11 02:02:15 +02:00 |
|
|
ec6d26ab08
|
s/forwardedPorts/forwardPorts/
|
2021-04-11 02:02:15 +02:00 |
|
|
d820cdffd3
|
server2: add updateMicrocode
|
2021-04-11 02:02:15 +02:00 |
|
|
8bdeedea9a
|
nixos-module/container/upstream: style
|
2021-04-11 02:02:15 +02:00 |
|
|
9615317bf6
|
nixos-module/container/upstream: enable dhcpv6 prefix delegation
|
2021-04-11 02:02:15 +02:00 |
|
|
0ea6f38867
|
nixos-module/network: make IPForward depend on isRouter
|
2021-04-11 02:02:15 +02:00 |
|
|
1ddb9b6ac4
|
nixos-module/collectd: fix TypesDB syntax
|
2021-04-11 02:02:15 +02:00 |
|
|
d200cecb79
|
nixos-module/collectd: fix TypesDB
|
2021-04-11 02:02:15 +02:00 |
|
|
494715acfe
|
nixos-module/collectd: fix TypesDB src
|
2021-04-11 02:02:15 +02:00 |
|
|
cc5222e85b
|
nixos-module/collectd: install additional TypesDB
|
2021-04-11 02:02:15 +02:00 |
|
|
662261bbd9
|
nixos-module/container/bird: set radvd prefix
|
2021-04-11 02:02:15 +02:00 |
|
|
aba9251f80
|
nixos-module/collectd: init
|
2021-04-11 02:02:15 +02:00 |
|
|
d5f7aecba6
|
nixos-module/server/lxc-containers: use switch-to-configuration in ExecReload
|
2021-04-11 02:02:15 +02:00 |
|
|
421dba52fc
|
nixos-module/defaults: remove nix.registry.zentralwerk-network
this will be checked out locally
|
2021-04-11 02:02:15 +02:00 |
|
|
79fa9127b7
|
nixos-module/container/bird: fix ospfv3 auth
|
2021-04-11 02:02:15 +02:00 |
|
|
fcc3fbaf52
|
nixos-module/container/upstream: fix nat
|
2021-04-11 02:02:15 +02:00 |
|
|
daa7bef9d5
|
nixos-module/container/bird: add radv
|
2021-04-11 02:02:15 +02:00 |
|
|
e9a2092608
|
nixos-module/defaults: prevent bond0 autocreation
|
2021-04-11 02:02:15 +02:00 |
|
|
498970035a
|
nixos-module/defaults: install bmon
|
2021-04-11 02:02:15 +02:00 |
|
|
93115c048b
|
nixos-module/container/anon: make shorter
|
2021-04-11 02:02:15 +02:00 |
|
|
69c2823694
|
nixos-module/container/bird: disable ospfv3 password for now
|
2021-04-11 02:02:15 +02:00 |
|
|
11d6a80317
|
nixos-module/network: enable forwarding
|
2021-04-11 02:02:15 +02:00 |
|
|
8807ce4435
|
nixos-module/container/anon: route
|
2021-04-11 02:02:15 +02:00 |
|
|
55fccbb4e0
|
nixos-module/container/anon: fix key service order
|
2021-04-11 02:02:15 +02:00 |
|
|
436ceab45e
|
nixos-module/container/anon: setup shaping
|
2021-04-11 02:02:15 +02:00 |
|
|
0a03be1469
|
nixos-module/container/anon: setup wireguard
|
2021-04-11 02:02:15 +02:00 |
|
|
b81923a444
|
nixos-module/defaults: set kernel paremeters/version
|
2021-04-11 02:02:15 +02:00 |
|
|
bafa33b229
|
lxc-containers.nix: refactor with imperative build-container script
|
2021-04-11 02:02:15 +02:00 |
|
|
c015497773
|
nixos-module/container/anon: setup wireguard
|
2021-04-11 02:02:15 +02:00 |
|
|
dbe5a867a7
|
nixos-module/server/network: attach vlan interfaces to bridges
|
2021-04-11 02:02:15 +02:00 |
|
|
276bb732c7
|
nixos-module/server/network: disable all addresses on bridges to make networkd happy
|
2021-04-11 02:02:15 +02:00 |
|
|
7da882f324
|
nixos-module/server/network: enable proper lacp
|
2021-04-11 02:02:15 +02:00 |
|
|
9fe5709976
|
lxc-containers: add experimental lxc-reload on system change
|
2021-04-11 02:02:15 +02:00 |
|
|
fd8cb77b40
|
nixos-module/server/network: load iptables, open ssh
|
2021-04-11 02:02:15 +02:00 |
|
|
f173d13dd7
|
lxc-containers: wiggle dependency on network.target
|
2021-04-11 02:02:15 +02:00 |
|
|
54a061f565
|
lxc-containers.nix: rm outdated TODO
|
2021-04-11 02:02:15 +02:00 |
|
|
953e43fa4a
|
nixos-module/container/mgmt-gw: init
|
2021-04-11 02:02:15 +02:00 |
|
|
afad6f46b8
|
nixos-module/container/defaults: disable nix-daemon
|
2021-04-11 02:02:15 +02:00 |
|
|
2e2d8c976d
|
server2.nix: hack in
|
2021-04-11 02:02:15 +02:00 |
|
|
53cbe8e74b
|
lxc-containers.nix: start with non-ephemeral rootfs
|
2021-04-11 02:02:15 +02:00 |
|
|
7615d4d8de
|
nixos-module/container/upstream.nix: setup sched_cake
|
2021-04-11 02:02:15 +02:00 |
|
|
e9d4f1192f
|
nixos-module/defaults.nix: disable documentation, add more systemPackages, optimize qemu settings
|
2021-04-11 02:02:15 +02:00 |
|
|
b5210fa37d
|
options.nix: move domainName
|
2021-04-11 02:02:15 +02:00 |
|
|
c6de032ff3
|
nixos-module/container/upstream.nix: init dhcp, forwardedPorts
|
2021-04-11 02:02:15 +02:00 |
|
|
775b91fb18
|
dhcp-server.nix: add fixed-hosts
|
2021-04-11 02:02:15 +02:00 |
|
|
df3ef74862
|
nixos-module/container/dhcp-server.nix: init
|
2021-04-11 02:02:15 +02:00 |
|
|
c34e2e72c2
|
nix/pkgs: build *-vm packages
|
2021-04-11 02:02:15 +02:00 |
|
|
a9336c4513
|
lxc-containers.nix: s/stdenv.shell/runtimeShell/
|
2021-04-11 02:02:15 +02:00 |
|
|
ea515088b3
|
lxc-containers.nix: get working
|
2021-04-11 02:02:15 +02:00 |
|
|
9afc25d6c3
|
nixos-module/defaults.nix: add more tools
|
2021-04-11 02:02:15 +02:00 |
|
|
37dd4550bb
|
nixos-modules/server/lxc-containers.nix: build rootfs before starting container
|
2021-04-11 02:02:15 +02:00 |
|
|
2c9d5c085a
|
nixos-module/defaults: setup nix.registry
|
2021-04-11 02:02:15 +02:00 |
|
|
8a5f17806d
|
nixos-module/network.nix: fix gw4
|
2021-04-11 02:02:15 +02:00 |
|
|
58f8441a1e
|
nixos-module/defaults: set system.stateVersion
|
2021-04-11 02:02:15 +02:00 |
|
|
260bc3aeb5
|
nixos-module/container/bird.nix: init for ospf
|
2021-04-11 02:02:15 +02:00 |
|
|
704f007ae5
|
nixos-module/network.nix: configure host IP
|
2021-04-11 02:02:15 +02:00 |
|
|
46c16e4413
|
lxc-containers.nix: fix interface names
|
2021-04-11 02:02:15 +02:00 |
|
|
b570447d01
|
nix/lib/config: add hosts4/6 options
|
2021-04-11 02:02:15 +02:00 |
|
|
59c61fb42f
|
nixos-module/server/lxc-containers.nix: add systemd target
|
2021-04-11 02:02:15 +02:00 |
|
|
511b4df85e
|
nixos-module/network.nix: add defaults
|
2021-04-11 02:02:15 +02:00 |
|
|
7109ae50cb
|
server/network.nix: setup vlan/bridge infra
|
2021-04-11 02:02:15 +02:00 |
|
|
9d7d383740
|
nixos-module: mkdir server container
|
2021-04-11 02:02:15 +02:00 |
|
|
38c6344adf
|
rm obsolete comments
|
2021-04-11 02:02:15 +02:00 |
|
|
020e8c3af2
|
nix: put interfaces in options
|
2021-04-11 02:02:15 +02:00 |
|
|
465a316192
|
nixos-module/lxc-containers: begin netConfig
|
2021-04-11 02:02:15 +02:00 |
|
|
681ac0ab5d
|
move rootfs nixos-module to nix/pkgs
|
2021-04-11 02:02:15 +02:00 |
|
|
d1cca3b029
|
nixos-powered lxc container
|
2021-04-11 02:02:15 +02:00 |
|
|
c04ca49755
|
nix: fix infinite recursion by passing hostName as module arg
|
2021-04-11 02:02:15 +02:00 |
|
|
0a5ebd7f49
|
nixos-module: break by setting config
|
2021-04-11 02:02:15 +02:00 |
|
|
72830ddc21
|
Remove "rec" from flake output
|
2021-04-11 02:02:15 +02:00 |
|
|
a39bad4f85
|
nixosConfiguration with infinite recursion
|
2021-04-11 02:02:15 +02:00 |
|
|
171b213603
|
host roles
|
2021-04-11 02:02:15 +02:00 |
|
|
1119f72162
|
nix/nixos-modules -> nix/nixos-module
|
2021-04-11 02:02:15 +02:00 |
|