|
|
77c0477bd0
|
vxlan over wireless: fix
|
2022-01-18 21:06:02 +01:00 |
|
|
|
2789589c25
|
vxlan over wireless: get to work
|
2022-01-18 03:50:43 +01:00 |
|
|
|
1327680612
|
vxlan over wireless: first try
|
2022-01-18 01:05:16 +01:00 |
|
|
|
4bb8fe46e2
|
yggdrasil: change listening port to 1337
1/tcp didn't work :(
|
2022-01-14 20:37:42 +01:00 |
|
|
|
b50a051904
|
yggdrasil: don't listen on ipv4 and fail
|
2022-01-14 19:30:29 +01:00 |
|
|
|
64ee9d06bb
|
yggdrasil: listen, add port forwarding on upstream4+upstream1
|
2022-01-14 19:23:03 +01:00 |
|
|
|
4bf0e2bf33
|
yggdrasil: reconfigure peers
|
2022-01-14 00:54:33 +01:00 |
|
|
|
6cc02abdb8
|
yggdrasil: properly add a static key
|
2022-01-13 23:40:43 +01:00 |
|
|
|
792426f22c
|
nixos-module/container/yggdrasil: enable NAT66
|
2022-01-13 20:34:01 +01:00 |
|
|
|
0e3921d126
|
Yggdrasil: enable IPv6 forwarding
|
2022-01-13 20:24:38 +01:00 |
|
|
|
d8bd90e049
|
yggdrasil: prepare container deployment
|
2022-01-13 20:17:50 +01:00 |
|
|
|
29c74782c7
|
Add yggdrasil container
|
2022-01-13 19:49:33 +01:00 |
|
|
|
806820950f
|
nixos-module/container/bird: fix direct interfaces
|
2022-01-11 23:57:35 +01:00 |
|
|
|
343fe8c429
|
nixos-module/defaults: remove journalbeat
the service caused excessive disk write traffic, and the target greylog
server is overloaded anyway.
|
2022-01-11 22:16:53 +01:00 |
|
|
|
e1bceca9ab
|
nix/nixos-module/container/wireguard: rename file from anon.nix
|
2022-01-11 20:02:25 +01:00 |
|
|
|
53cd892531
|
nixos-module/container/bird: advertise upstream local subnet into ospf
|
2022-01-11 20:00:07 +01:00 |
|
|
|
3c44eeaab1
|
lib/config/options: move host wireguard setting to interface entries
|
2022-01-11 19:58:50 +01:00 |
|
|
|
c58ee2dc9f
|
pkgs/network-cypher-graphs: fix import-network-graphs
|
2022-01-10 01:51:22 +01:00 |
|
|
|
287dc1be75
|
pkgs/network-cypher-graphs: let import-network-graphs produce just a script
|
2022-01-09 02:59:15 +01:00 |
|
|
|
1f2cbd03b8
|
adding cypher graph generation utitlies
|
2021-12-28 18:43:42 +01:00 |
|
|
|
a474577abd
|
Revert "nix/nixos-module/defaults: use non-nft iptables-legacy for migration"
This reverts commit 48b050b283.
|
2021-12-11 00:51:05 +01:00 |
|
|
|
48b050b283
|
nix/nixos-module/defaults: use non-nft iptables-legacy for migration
|
2021-12-10 22:56:43 +01:00 |
|
|
|
7ac993f61e
|
nixos-module/server/lxc-containers: fix scope
|
2021-11-20 22:10:35 +01:00 |
|
|
|
9900b9af5e
|
pkgs/network-graphs: remove debug output
|
2021-11-20 00:44:21 +01:00 |
|
|
|
8d671d8dee
|
nixos-module/server/lxc-containers: resolve lxc interface name issue by ensuring the type key comes first
it took very long to find this
|
2021-11-20 00:43:32 +01:00 |
|
|
|
eb6e47e505
|
nixos-module/server/network: enable STP and decrease forward_delay for bridges
|
2021-11-18 22:54:33 +01:00 |
|
|
|
14ddaeba45
|
nixos-module/network: configure addresses for all net interfaces
|
2021-11-18 21:36:57 +01:00 |
|
|
|
f3e8c5398d
|
pkgs: add all-rootfs
|
2021-11-18 20:41:06 +01:00 |
|
|
|
abb226bc5a
|
server1, server2: allow building with zfs support
|
2021-11-18 20:39:52 +01:00 |
|
|
|
19674ea461
|
nixos-module/container/bird: revert to somewhat larger ospf intervals
|
2021-11-18 17:10:36 +01:00 |
|
|
|
f7dabd8e2d
|
nixos-module/server/lxc-container: split container build and activation phases
|
2021-11-18 16:58:32 +01:00 |
|
|
|
3902efd3f3
|
nix/pkgs/subnetplan: use colspan
|
2021-11-18 04:17:10 +01:00 |
|
|
|
f98412346e
|
nix/pkgs/subnetplan: cap max_prefix at 64
|
2021-11-18 00:06:44 +01:00 |
|
|
|
557f63b7c1
|
nix/pkgs/subnetplan: init
|
2021-11-17 23:57:16 +01:00 |
|
|
|
15f7687d92
|
nixos-module/container/bird: drastically reduce ospf intervals
|
2021-11-15 23:23:38 +01:00 |
|
|
|
ab199ec19e
|
nix/pkgs: fix switch-to-production
|
2021-11-15 21:56:16 +01:00 |
|
|
|
2808bebffc
|
lib/config/options: add duplicate vlan check
|
2021-11-15 21:30:38 +01:00 |
|
|
|
21fe4f2503
|
lib/config/options: add duplicate address checks and fix them
|
2021-11-14 01:41:19 +01:00 |
|
|
|
624f2e38f6
|
nixos-module/container/upstream/pppoe: fix user option
|
2021-11-13 03:23:45 +01:00 |
|
|
|
bcf60d2a5b
|
config: remove automatic config subnet4Len, subnet4Net
|
2021-11-13 02:53:54 +01:00 |
|
|
|
32c0def45b
|
config: nixify everything
|
2021-11-13 01:23:23 +01:00 |
|
|
|
6446c6b8a3
|
pkgs/ap: update ap_install_collectd.sh hint
|
2021-11-12 18:11:28 +01:00 |
|
|
|
ba94f712c1
|
pkgs/ap: fix wifi-iface
|
2021-11-11 17:49:29 +01:00 |
|
Daniel Poelzleithner
|
7f800810ad
|
fix missing string conversation
|
2021-11-10 22:58:17 +01:00 |
|
Daniel Poelzleithner
|
cbf226f3a5
|
add mon alias entries to ceph cluster
|
2021-11-10 22:54:03 +01:00 |
|
|
|
f41c7d37e2
|
lib/config: move _ceph-mon._tcp srv record from server7 to server5
|
2021-11-10 20:55:39 +01:00 |
|
|
|
245cbcfc10
|
nix/config: add cluster _ceph-mon._tcp SRV records
|
2021-11-10 20:13:05 +01:00 |
|
|
|
01f37cec9f
|
lib/dns: add extraRecords
|
2021-11-10 20:12:45 +01:00 |
|
|
|
f14c6ff200
|
pkgs/ap: catch failing service stop
|
2021-11-10 16:38:49 +01:00 |
|
|
|
d9443fc374
|
pkgs/ap: uci delete silently and don't abort
|
2021-11-09 21:16:53 +01:00 |
|
|
|
311df51820
|
pkgs/ap: don't use uci batch
was hiding which command produced an error
|
2021-11-09 21:10:56 +01:00 |
|
|
|
b8b4995433
|
pkgs/ap: delete unused networks
|
2021-11-09 21:07:37 +01:00 |
|
|
|
25217f0b82
|
pkgs/ap: move uciDeleteAll outside uci batch
|
2021-11-09 20:31:46 +01:00 |
|
|
|
bade3d54c6
|
pkgs/device-templates: rename device-scripts to .sh for nix run .#...
|
2021-11-09 16:47:48 +01:00 |
|
|
|
733f04258d
|
pkgs/network-graphs: add up* to physical-graph
|
2021-11-07 03:21:39 +01:00 |
|
|
|
f0c5f1d398
|
lib/config/legacy: reflect the actual topology
|
2021-11-07 02:55:44 +01:00 |
|
|
|
71675556f2
|
lib/config: implement assertions and warnings
|
2021-11-07 02:43:56 +01:00 |
|
|
|
4080368927
|
pkgs/switches: sort output stably
|
2021-11-07 02:22:24 +01:00 |
|
|
|
8fc0567204
|
pkgs/switches: fixes
|
2021-11-07 02:21:48 +01:00 |
|
|
|
5c074bb051
|
pkgs/ap: fix multiple issues
|
2021-11-07 00:23:21 +01:00 |
|
|
|
db4d075af2
|
pkgs/network-graphs: don't use callPackage as it breaks the flake
|
2021-11-07 00:05:55 +01:00 |
|
|
|
40e8b351d5
|
pkgs/ap.nix: migrate template to nix
|
2021-11-06 22:57:12 +01:00 |
|
|
|
f156ab6f05
|
pkgs/network-graphs: init
|
2021-11-06 19:48:46 +01:00 |
|
|
|
ecf1b3afca
|
pkgs/switches/linksys-srw2048: enable jumbo-frame
Attention: @poelzi
|
2021-11-06 03:38:57 +01:00 |
|
|
|
001aaecf3a
|
lib/config/options: rewrite getHostLinkNetworks et al
|
2021-11-06 03:38:01 +01:00 |
|
|
|
7834d64e27
|
lib/config/legacy: treat single eth0 as wan port
|
2021-11-06 03:36:55 +01:00 |
|
|
|
e975d78504
|
lib/config: add config.site.sshPubKeys
|
2021-11-04 19:17:57 +01:00 |
|
|
|
9852920ee8
|
nix/lib/config: begin treating aps as manageable switches
|
2021-11-04 19:17:31 +01:00 |
|
|
|
8acc37b5d5
|
lib/openwrt-models: add code to get port definitions
|
2021-11-03 23:21:43 +01:00 |
|
|
|
3072e1e78c
|
pkgs/switches: switch from salt to nix
|
2021-11-03 01:09:22 +01:00 |
|
|
|
f54fa47fd8
|
upstream4: add forwardPorts for jabber coturn
|
2021-10-18 03:32:50 +02:00 |
|
|
|
6b36f19af8
|
upstream: fix forwardPorts
|
2021-10-18 01:24:43 +02:00 |
|
|
|
4634b94199
|
upstream4: add forwardPorts for jabber
|
2021-10-18 01:21:28 +02:00 |
|
|
|
2c3c0fa13c
|
upstream: disable NAT reflection for DNS port forwards
|
2021-10-16 23:56:32 +02:00 |
|
|
|
84810697d7
|
pkgs/dns-slaves: add allow-query { all; };
|
2021-10-16 00:58:13 +02:00 |
|
|
|
e904c12847
|
nixos-module/container/dns: add local ns.c3d2.de
|
2021-10-15 23:38:33 +02:00 |
|
|
|
eae6cc680b
|
nix: fix more names
|
2021-10-14 17:12:33 +02:00 |
|
|
|
0ca0a9e9fd
|
nix: remove dangling .ip4
|
2021-10-14 17:10:11 +02:00 |
|
|
|
de4b674091
|
nixos-module/defaults: fix syntax
|
2021-10-14 17:08:09 +02:00 |
|
|
|
bd5ee9e7cd
|
nixos-module/defaults: add journalbeat for central logging
|
2021-10-14 17:06:39 +02:00 |
|
|
|
dd399d7871
|
lib/config/legacy: add bind to upstream4.forwardPorts
|
2021-10-14 17:05:05 +02:00 |
|
|
|
6da7456ba1
|
lib/config/legacy: increase readability of upstream4.forwardPorts
|
2021-10-14 17:03:49 +02:00 |
|
|
|
a5cc429946
|
upstream4: add forwardPorts for mail
|
2021-10-02 00:48:32 +02:00 |
|
|
|
e0d12435f0
|
upstream4: set gitea port forwarding to 22/tcp
|
2021-10-01 21:28:14 +02:00 |
|
|
|
2bae8c6785
|
Revert "upstream4: fix gitea port fwding"
This reverts commit 61cfd3a313.
|
2021-10-01 21:12:28 +02:00 |
|
|
|
61cfd3a313
|
upstream4: fix gitea port fwding
|
2021-10-01 20:51:04 +02:00 |
|
|
|
6245887f0f
|
lib/config/legacy: add dacbert mac
|
2021-09-28 00:24:11 +02:00 |
|
|
|
44094c1346
|
pulsebert.hq.c3d2.de: change MAC address
|
2021-09-22 23:35:28 +02:00 |
|
|
|
5915d9a16a
|
lib/config/options: doc
|
2021-09-19 02:18:17 +02:00 |
|
|
|
df0bca25bb
|
switch domainNames from zentralwerk.dn42 to zentralwerk.org
|
2021-09-16 19:26:03 +02:00 |
|
|
|
23190495ff
|
upstream4: add port forwarding
|
2021-09-10 20:00:04 +02:00 |
|
|
|
04de05ce75
|
lib/config/options: add missing staticIpv4Address default
|
2021-09-07 00:11:28 +02:00 |
|
|
|
8b6c7578e8
|
nixos-module/container/upstream: remove a lot of stuff by using loopbackIPs for forwarded ports
|
2021-09-06 23:41:45 +02:00 |
|
|
|
48cbaf5f08
|
nixos-module/container/upstream: fix SNAT for forwarded ports
|
2021-09-06 23:19:08 +02:00 |
|
|
|
501f96a225
|
nixos-module/container/upstream: specify externalIP to use SNAT instead of MASQUERADE
|
2021-09-06 23:17:46 +02:00 |
|
|
|
1b4f761de8
|
nixos-module/container/upstream: fix SNAT by adding a staticIpv4Address option
|
2021-09-06 22:58:52 +02:00 |
|
|
|
fd4c8ad65b
|
nixos-module/container/upstream: do SNAT for forwarded ports
|
2021-09-06 22:11:39 +02:00 |
|
|
|
3be7beaf27
|
upstream4: add port forward 2222/tcp to gitea
|
2021-09-06 21:14:37 +02:00 |
|
|
|
bc590bca8c
|
upstream4: remove outdated port forwardings
|
2021-09-06 21:12:26 +02:00 |
|
|
|
1d94fb4094
|
nixos-module/server/defaults: install ipmitool
|
2021-08-25 17:01:30 +02:00 |
|
