zentralwerk/network
zentralwerk/network
12
4
Fork 2
Code Issues 3 Pull Requests 1 Releases Wiki Activity
1,090 Commits 9 Branches 0 Tags 2.6 MiB
b87b73d358
Commit Graph

201 Commits

Author SHA1 Message Date
Astro
187c657080 nixos-module/container/dns: add ipv4 reverse zones 2021-05-03 02:15:27 +02:00
Astro
8c896c31b8 nixos-module/container/dns: init 2021-05-03 01:26:57 +02:00
Astro
c15f716dd1 nixos-module/container/bird: fix ospf priority 2021-05-02 20:01:59 +02:00
Astro
f99d05c42d nixos-module/container/bird: become designated router for ospf instances when adveritising upstream 2021-05-02 19:52:00 +02:00
Astro
df5fee8f69 nixos-module/container/bird: style 2021-05-02 19:51:48 +02:00
Astro
93d312c26c nixos-module/server/lxc-containers: switch back to using ConditionPathExists 
much more graceful to systemd
 2021-05-01 03:07:28 +02:00
Astro
aa5c7377c7 nixos-module/server/lxc-containers: add restart on failed reload 2021-05-01 03:04:14 +02:00
Astro
03f755f841 nixos-module/container/upstream: provide NAT6 with noNat.subnets6 2021-05-01 01:14:54 +02:00
Astro
38da586d49 nixos-module/container/bird: disable ospfv3 auth again for ZW6_upstream* 
upstream2 is still not migrated
 2021-05-01 00:55:41 +02:00
Astro
d72789c35a /nixos-module/container/bird: use ospf instances not areas for sharing upstream 2021-04-30 23:55:16 +02:00
Astro
003a948ce2 lib/config: remove ospf.networks[46] 2021-04-30 23:37:53 +02:00
Astro
268e16999f nixos-module/container/bird: remove useless network declarations 2021-04-30 23:35:54 +02:00
Astro
eda2bc3b55 nixos-module/container/bird: simplify filters 2021-04-30 23:02:31 +02:00
Astro
692e12f07d nixos-module/container/bird: start using multiple ospf instances 2021-04-30 22:39:56 +02:00
Astro
1f06e90cfc nixos-module/defaults: enable boot.tmpOnTmpfs 2021-04-30 22:39:24 +02:00
Astro
5c8fa22ca8 nixos-module/server/lxc-containers: add prebuilt containers 2021-04-30 22:38:57 +02:00
Astro
2f02f474b9 flake.nix: switch zentralwerk-network-key input from nix to master branch 2021-04-30 18:39:41 +02:00
Astro
6b6f3d5598 nixos-module/container/bird: simplify filter operations 2021-04-30 00:16:00 +02:00
Astro
67acfb140b nix/nixos-module/container/anon: change wireguardMark to an actually unused value 2021-04-29 23:26:58 +02:00
Astro
8b59a9a921 lib/config/legacy: setup allowedUpstreams for many containers 2021-04-29 23:09:13 +02:00
Astro
c4fe62ebeb nixos-module/container/bird: export default routes on upstream*/anon* 2021-04-29 22:47:44 +02:00
Astro
0350826bc5 nixos-module/container/{anon,bird}: route wireguard with policy routing over default routes learned from OSPF 2021-04-29 22:46:03 +02:00
Astro
a467699f48 libx/config/default: remove dup warnings output 2021-04-29 22:43:46 +02:00
Astro
1330ba94d2 ap.sh: copy to nix/, change ping addr to mgmt-gw 2021-04-29 02:38:11 +02:00
Astro
257e6686b9 nixos-module/container/bird: implement upstream failover 2021-04-29 01:44:48 +02:00
Astro
ce49c22d2e pkgs/device-templates: make executable and wrap scripts 2021-04-29 01:39:21 +02:00
Astro
02de036ba7 nixos-module/container/upstream: update DHCPv6PrefixDelegation configuration 2021-04-29 01:34:33 +02:00
Astro
c6d2879d93 lib/config/default: fix warnings 2021-04-29 01:34:05 +02:00
Astro
60758b448a nix/pkgs: add ap_install_collectd.sh 2021-04-25 23:53:38 +02:00
Astro
266fed1c13 nixos-module/container/dnscache: tuning 2021-04-15 00:27:23 +02:00
Astro
e79bb4e297 nixos-module/collectd: add unbound.rb 2021-04-15 00:24:38 +02:00
Astro
52cac17f16 nixos-module/container/dnscache: set tls-cert-bundle 2021-04-14 23:25:21 +02:00
Astro
b73e12e32b nixos-module/server/lxc-containers: fix hwaddr 2021-04-14 23:08:12 +02:00
Astro
405acaf875 nixos-module/container/dnscache: init 2021-04-14 23:07:27 +02:00
Astro
1ee38b50b0 nixos-module/firewall: add for mgmt-gw, priv13-gw 2021-04-14 20:04:28 +02:00
Astro
5aa53fbcb1 nixos-module/container/bird: add bgp configuration 2021-04-13 00:46:12 +02:00
Astro
aed29a54ce lib/config/options+legacy: add bgp 2021-04-13 00:11:42 +02:00
Astro
8013241d6c nixos-module/container/defaults: disable openssh 2021-04-12 23:40:17 +02:00
Astro
7e776b2dbf nixos-module/collectd: don't invoke hostname in dhcpcount.rb 2021-04-12 23:36:41 +02:00
Astro
1a8b4811f7 nix/nixos-module/collectd: add dhcpcount.rb 2021-04-12 23:32:21 +02:00
Astro
4ef98c986c nixos-module/container/defaults: disable nix-daemon.socket 
should quelch a warning
 2021-04-12 22:35:34 +02:00
Astro
f583833645 lib/config/options: fix isRouter logic 2021-04-12 22:35:02 +02:00
Astro
b243297760 pkgs/default.nix: rm dead code 2021-04-12 21:22:16 +02:00
Astro
cdd97678c1 nixos-module/container/bird: bump radv lifetime up to 10min 2021-04-12 21:18:18 +02:00
Astro
a5e036397c nixos-module/server/qemu: increase nix-daemon LimitNOFILE 
workaround
 2021-04-12 21:12:03 +02:00
Astro
51460ad776 nix/nixos-module/server/qemu: move stuff here 2021-04-11 02:02:15 +02:00
Astro
0eabf2dbf6 doc 2021-04-11 02:02:15 +02:00
Astro
010a5cfb97 lib/config/options: make isRouter depend on having an ipv4 address in core 
prevents server2 from becoming a router
 2021-04-11 02:02:15 +02:00
Astro
6eb8a1d24f lib/config/options: remove wg from interfaces 2021-04-11 02:02:15 +02:00
Astro
25be18358f nixos-module/container/bird: add gatewayNet workaound for cls-gw 2021-04-11 02:02:15 +02:00
Astro
58dccf697f netmasks.nix: turn into code 2021-04-11 02:02:15 +02:00
Astro
df32c2c7f3 nixos-module/network: doc, style 2021-04-11 02:02:15 +02:00
Astro
b0611efc57 doc 2021-04-11 02:02:15 +02:00
Astro
a2ac282c60 nixos-module/defaults: install iptables, conntrack-tools 2021-04-11 02:02:15 +02:00
Astro
ec6d26ab08 s/forwardedPorts/forwardPorts/ 2021-04-11 02:02:15 +02:00
Astro
d820cdffd3 server2: add updateMicrocode 2021-04-11 02:02:15 +02:00
Astro
8bdeedea9a nixos-module/container/upstream: style 2021-04-11 02:02:15 +02:00
Astro
9615317bf6 nixos-module/container/upstream: enable dhcpv6 prefix delegation 2021-04-11 02:02:15 +02:00
Astro
0ea6f38867 nixos-module/network: make IPForward depend on isRouter 2021-04-11 02:02:15 +02:00
Astro
1ddb9b6ac4 nixos-module/collectd: fix TypesDB syntax 2021-04-11 02:02:15 +02:00
Astro
d200cecb79 nixos-module/collectd: fix TypesDB 2021-04-11 02:02:15 +02:00
Astro
494715acfe nixos-module/collectd: fix TypesDB src 2021-04-11 02:02:15 +02:00
Astro
cc5222e85b nixos-module/collectd: install additional TypesDB 2021-04-11 02:02:15 +02:00
Astro
662261bbd9 nixos-module/container/bird: set radvd prefix 2021-04-11 02:02:15 +02:00
Astro
df4c9f35b3 legacy.nix: change gw4+gw6 to cls-gw 2021-04-11 02:02:15 +02:00
Astro
f5f62aa82a legacy.nix: remove server1 2021-04-11 02:02:15 +02:00
Astro
aba9251f80 nixos-module/collectd: init 2021-04-11 02:02:15 +02:00
Astro
d5f7aecba6 nixos-module/server/lxc-containers: use switch-to-configuration in ExecReload 2021-04-11 02:02:15 +02:00
Astro
421dba52fc nixos-module/defaults: remove nix.registry.zentralwerk-network 
this will be checked out locally
 2021-04-11 02:02:15 +02:00
Astro
79fa9127b7 nixos-module/container/bird: fix ospfv3 auth 2021-04-11 02:02:15 +02:00
Astro
fcc3fbaf52 nixos-module/container/upstream: fix nat 2021-04-11 02:02:15 +02:00
Astro
daa7bef9d5 nixos-module/container/bird: add radv 2021-04-11 02:02:15 +02:00
Astro
e9a2092608 nixos-module/defaults: prevent bond0 autocreation 2021-04-11 02:02:15 +02:00
Astro
498970035a nixos-module/defaults: install bmon 2021-04-11 02:02:15 +02:00
Astro
93115c048b nixos-module/container/anon: make shorter 2021-04-11 02:02:15 +02:00
Astro
69c2823694 nixos-module/container/bird: disable ospfv3 password for now 2021-04-11 02:02:15 +02:00
Astro
11d6a80317 nixos-module/network: enable forwarding 2021-04-11 02:02:15 +02:00
Astro
8807ce4435 nixos-module/container/anon: route 2021-04-11 02:02:15 +02:00
Astro
55fccbb4e0 nixos-module/container/anon: fix key service order 2021-04-11 02:02:15 +02:00
Astro
436ceab45e nixos-module/container/anon: setup shaping 2021-04-11 02:02:15 +02:00
Astro
0a03be1469 nixos-module/container/anon: setup wireguard 2021-04-11 02:02:15 +02:00
Astro
b81923a444 nixos-module/defaults: set kernel paremeters/version 2021-04-11 02:02:15 +02:00
Astro
bafa33b229 lxc-containers.nix: refactor with imperative build-container script 2021-04-11 02:02:15 +02:00
Astro
c015497773 nixos-module/container/anon: setup wireguard 2021-04-11 02:02:15 +02:00
Astro
dbe5a867a7 nixos-module/server/network: attach vlan interfaces to bridges 2021-04-11 02:02:15 +02:00
Astro
276bb732c7 nixos-module/server/network: disable all addresses on bridges to make networkd happy 2021-04-11 02:02:15 +02:00
Astro
7da882f324 nixos-module/server/network: enable proper lacp 2021-04-11 02:02:15 +02:00
Astro
9fe5709976 lxc-containers: add experimental lxc-reload on system change 2021-04-11 02:02:15 +02:00
Astro
fd8cb77b40 nixos-module/server/network: load iptables, open ssh 2021-04-11 02:02:15 +02:00
Astro
dde0533e90 nix/lib/config: fix net name 2021-04-11 02:02:15 +02:00
Astro
f173d13dd7 lxc-containers: wiggle dependency on network.target 2021-04-11 02:02:15 +02:00
Astro
54a061f565 lxc-containers.nix: rm outdated TODO 2021-04-11 02:02:15 +02:00
Astro
953e43fa4a nixos-module/container/mgmt-gw: init 2021-04-11 02:02:15 +02:00
Astro
afad6f46b8 nixos-module/container/defaults: disable nix-daemon 2021-04-11 02:02:15 +02:00
Astro
4e3fd3398b options.nix: set a default domainName 2021-04-11 02:02:15 +02:00
Astro
2e2d8c976d server2.nix: hack in 2021-04-11 02:02:15 +02:00
Astro
53cbe8e74b lxc-containers.nix: start with non-ephemeral rootfs 2021-04-11 02:02:15 +02:00
Astro
7615d4d8de nixos-module/container/upstream.nix: setup sched_cake 2021-04-11 02:02:15 +02:00
Astro
e9d4f1192f nixos-module/defaults.nix: disable documentation, add more systemPackages, optimize qemu settings 2021-04-11 02:02:15 +02:00
Astro
b5210fa37d options.nix: move domainName 2021-04-11 02:02:15 +02:00