Magic_RB
|
0adf0a25f2
|
Fixop provisioning support in Grafana module
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-02 14:45:05 +02:00 |
|
Magic_RB
|
59f2848e1b
|
Add non reload option to envoy
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-02 14:44:42 +02:00 |
|
Magic_RB
|
460b4e1ddc
|
Add amd support to xorg module
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-02 14:44:29 +02:00 |
|
Magic_RB
|
afa6ce6247
|
Fix hostapd mac address passwords
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-02 14:44:15 +02:00 |
|
Magic_RB
|
19fb889ade
|
Enable fwupd and emergency on omen
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-02 14:44:07 +02:00 |
|
Magic_RB
|
30ba25f277
|
Enable InfluxDB provider and provision Grafana
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-02 14:41:55 +02:00 |
|
Magic_RB
|
0804d717fc
|
consul on blowhole change loglevel go INFO
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-23 23:23:06 +02:00 |
|
Magic_RB
|
22a76d6274
|
Fix klipper envoy tokens on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-16 11:57:22 +02:00 |
|
Magic_RB
|
a4dc73f311
|
Repin nixpkgs for hashicorp things
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-16 11:47:53 +02:00 |
|
Magic_RB
|
eec8f409d6
|
Don't block outgoing DoT traffic, iifname doesn't work in output
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-04 00:41:25 +02:00 |
|
Magic_RB
|
d2374ad9f6
|
Revert "Add codespace container"
This reverts commit 48066a7e0d .
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 18:40:20 +02:00 |
|
Magic_RB
|
48066a7e0d
|
Add codespace container
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 18:37:57 +02:00 |
|
Magic_RB
|
41874fde15
|
Disable NVidia modeset on omen as it causes failed suspends
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 18:06:16 +02:00 |
|
Magic_RB
|
8e3b1fc69d
|
Add monitoring container PoC
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 17:54:35 +02:00 |
|
Magic_RB
|
a38cad8913
|
Add more GPG related things to recovery USB
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 17:45:43 +02:00 |
|
Magic_RB
|
8b5c787b8a
|
Move klipper into NixOS container
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 17:45:14 +02:00 |
|
Magic_RB
|
dfe57b87da
|
Fix hostapd with per mac address psk
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 13:23:10 +02:00 |
|
Magic_RB
|
0a356cb01a
|
Update mark to be RAIDed on ZFS
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 12:41:58 +02:00 |
|
Magic_RB
|
f8bbdc9a54
|
Use tf in blowhole uterranix config
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 02:12:16 +02:00 |
|
Magic_RB
|
cdc6d1b263
|
Use nixpkgs-hashicorp for vault and vault-agent
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 02:11:08 +02:00 |
|
Magic_RB
|
566db22374
|
Fix internal nomad interface on toothpick to wg
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:35:33 +02:00 |
|
Magic_RB
|
283ef1c1be
|
Improve hashicorp-envoy module
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:35:18 +02:00 |
|
Magic_RB
|
48920aae1a
|
Set password for root user
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:33:45 +02:00 |
|
Magic_RB
|
ba73eb214f
|
Switch nixinate host to domain for blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:33:20 +02:00 |
|
Magic_RB
|
0bd739cab7
|
Add watchdog to blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:32:57 +02:00 |
|
Magic_RB
|
0328cac478
|
Fix ipv6 issues on blowhole which break adb
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:32:36 +02:00 |
|
Magic_RB
|
661c32b1fe
|
Remove 25565 from allowed ports on deck
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:32:01 +02:00 |
|
Magic_RB
|
a55613fefa
|
Add tmpfiles configuration to hashicorp-vault-agent on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:31:37 +02:00 |
|
Magic_RB
|
807f776c35
|
Add new uterranix config
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:29:47 +02:00 |
|
Magic_RB
|
1877d128b3
|
Add domain for influx
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:28:33 +02:00 |
|
Magic_RB
|
0bd14910e3
|
Fix consul and nomad reload on toothpick
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:28:14 +02:00 |
|
Magic_RB
|
3f7585af77
|
Use specific nixpkgs pin for Hashicorp stuff
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:26:58 +02:00 |
|
Magic_RB
|
2fffbad037
|
minor formatting
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-03-28 12:26:21 +02:00 |
|
Magic_RB
|
eae03c9699
|
fix DNS
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-03-28 00:06:49 +02:00 |
|
Magic_RB
|
8bbce49068
|
Disable Serokell cache temporarily
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-03-10 00:16:55 +01:00 |
|
Magic_RB
|
00773af3d3
|
Add option to disable hot restart support in envoy
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-03-07 23:40:00 +01:00 |
|
Magic_RB
|
5532262053
|
Fix telegraf module
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-03-07 23:36:15 +01:00 |
|
Magic_RB
|
dd2a8accba
|
Redo envoy module to be standalone
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-03-07 23:36:02 +01:00 |
|
Magic_RB
|
27f1978d23
|
Make module imports in blowhole relative
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-03-06 00:32:20 +01:00 |
|
Magic_RB
|
25a8e23045
|
Add new public modules: grafana, envoy, telegraf
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-03-06 00:31:31 +01:00 |
|
Magic_RB
|
bbe1a2a6ad
|
Move secrets templates out of vault-agent module
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-03-06 00:30:29 +01:00 |
|
Magic_RB
|
f39cea90f2
|
add dontUseConfig to hashicorp for config less things
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-03-06 00:29:58 +01:00 |
|
Magic_RB
|
abad79541e
|
Simplify DNS zones
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-03-06 00:29:03 +01:00 |
|
Magic_RB
|
e16e3fb2f5
|
Rebind omen key again according to upstream
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-26 15:41:58 +01:00 |
|
Magic_RB
|
a0a3ae2656
|
Get rid off the wireguard RestartSec hack
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-19 01:11:03 +01:00 |
|
Magic_RB
|
f923362537
|
Update inputs
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-19 01:03:49 +01:00 |
|
Magic_RB
|
ceb38b807f
|
omen: fix network manager dispatcher scripts
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-16 14:47:04 +01:00 |
|
Magic_RB
|
084eb2edb6
|
fixup network mounting on omen
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-16 14:46:20 +01:00 |
|
Magic_RB
|
648e6cf8c1
|
basic hostap config
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-14 20:18:11 +01:00 |
|
Magic_RB
|
87d0a38d52
|
switch from antiquotation in roots to concatanation
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-14 15:28:51 +01:00 |
|
Magic_RB
|
dac0d1a8da
|
Update the kernel on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-10 00:34:17 +01:00 |
|
Magic_RB
|
b9056bc6c1
|
omen: mount the volumes exported from blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-10 00:32:41 +01:00 |
|
Magic_RB
|
2942198a6f
|
Disable NVidia params on omen to increase stability
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-10 00:32:13 +01:00 |
|
Magic_RB
|
5643d663cd
|
Allow mounting certain shares from omen
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-10 00:31:50 +01:00 |
|
Magic_RB
|
45df9165a1
|
Increase file limit for nfs-mountd
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-10 00:31:23 +01:00 |
|
Magic_RB
|
dd50adb45f
|
Switch to the 4port intel NIC
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-10 00:30:41 +01:00 |
|
Magic_RB
|
328c8b472c
|
Implement udp2tcp on/off based on WiFi network name
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-05 17:26:35 +01:00 |
|
Magic_RB
|
065bfdf651
|
Create secrets folder for vault-agent
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-02 19:00:04 +01:00 |
|
Magic_RB
|
103152b700
|
Fixup wireguard on UDP blocked networks
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-02 14:56:27 +01:00 |
|
Magic_RB
|
707716597a
|
Pin the registry on omen
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-02 10:19:00 +01:00 |
|
Magic_RB
|
6bafb7a736
|
Set minimum free space for ZFS ARC on omen
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-02 10:15:02 +01:00 |
|
Magic_RB
|
0f2139f5e5
|
Make a dummy interface on blowhole until I get a physical one
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-02 10:13:40 +01:00 |
|
Magic_RB
|
ef04a738ab
|
Pin Nomad network interface on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-02 10:13:15 +01:00 |
|
Magic_RB
|
47b1335adc
|
Fix font in xmobar and make fields fixed-width
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-02-02 10:08:37 +01:00 |
|
main
|
639e99f4c4
|
Add mine layout and bind omen control center key
Signed-off-by: main <magic_rb@redalder.org>
|
2023-01-15 01:19:19 +01:00 |
|
main
|
1abd585a78
|
Add a patch to omen's kernel which makes the control center key work
Signed-off-by: main <magic_rb@redalder.org>
|
2023-01-15 01:16:29 +01:00 |
|
main
|
5119e1b30b
|
mine layout
Signed-off-by: main <magic_rb@redalder.org>
|
2023-01-09 13:07:05 +01:00 |
|
main
|
b1381511dd
|
Setup static IP support in dhcpd
Signed-off-by: main <magic_rb@redalder.org>
|
2022-12-21 23:19:13 +01:00 |
|
main
|
2852b5f562
|
Downgrade kernel of blowhole, nfsd use-after-free
Signed-off-by: main <magic_rb@redalder.org>
|
2022-12-21 23:18:45 +01:00 |
|
main
|
0756c15c56
|
Move bind directory to somewhere persistent
Fixs bind breaking on reboot, according to
https://github.com/NixOS/nixpkgs/issues/204391
Signed-off-by: main <magic_rb@redalder.org>
|
2022-12-18 23:48:43 +01:00 |
|
main
|
240d6de3e8
|
Unblock YouTube, I think I solved my addiction but I need it for music
Signed-off-by: main <magic_rb@redalder.org>
|
2022-12-18 23:26:18 +01:00 |
|
main
|
3e23308bf3
|
Fix Wireguard not being brought up after boot due to DNS failure
Signed-off-by: main <magic_rb@redalder.org>
|
2022-12-18 22:27:17 +01:00 |
|
main
|
a8cd87e72f
|
Move mounts into secret :)
Signed-off-by: main <magic_rb@redalder.org>
|
2022-12-11 14:11:18 +01:00 |
|
main
|
2d3fe86f3f
|
Open port 80 on blowhole to vpn
Signed-off-by: main <magic_rb@redalder.org>
|
2022-12-07 23:01:44 +01:00 |
|
main
|
2f818f2963
|
Hopefully make the relmount happen on boot on blowhole
Signed-off-by: main <magic_rb@redalder.org>
|
2022-12-03 16:47:33 +01:00 |
|
main
|
6cb4ed2050
|
Enable sshdEmacs for blowhole
Signed-off-by: main <magic_rb@redalder.org>
|
2022-12-03 16:47:18 +01:00 |
|
main
|
7ecbeb6c98
|
Improvements to UDP blockade bypass
Signed-off-by: main <magic_rb@redalder.org>
|
2022-12-02 18:58:03 +01:00 |
|
Magic_RB
|
e9a6573a4e
|
Add media bind mounts
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2022-11-30 23:05:52 +01:00 |
|
main
|
b2ed5e07bc
|
Add a udp2tcp udp blocking bypass
Signed-off-by: main <magic_rb@redalder.org>
|
2022-11-28 16:41:33 +01:00 |
|
main
|
03c3647edf
|
Add secret override to tweedledee and tweedledum
Signed-off-by: main <magic_rb@redalder.org>
|
2022-11-28 01:35:45 +01:00 |
|
main
|
99eaf02dfb
|
Make toothpick behave closer to blowhole
Signed-off-by: main <magic_rb@redalder.org>
|
2022-11-28 01:35:33 +01:00 |
|
main
|
6f63c57842
|
Add htop to VPSs
Signed-off-by: main <magic_rb@redalder.org>
|
2022-11-28 01:35:20 +01:00 |
|
main
|
debb9342cf
|
Enable zswap
Signed-off-by: main <magic_rb@redalder.org>
|
2022-11-27 20:29:18 +01:00 |
|
main
|
c7ed3a9471
|
Fix secret-lib
Signed-off-by: main <magic_rb@redalder.org>
|
2022-11-27 20:29:05 +01:00 |
|
main
|
4154559032
|
Fix GRUB installation
Signed-off-by: main <magic_rb@redalder.org>
|
2022-11-27 20:22:12 +01:00 |
|
main
|
51c3c162bc
|
Fix wireguard failing to start due to DNS being late
Signed-off-by: main <magic_rb@redalder.org>
|
2022-11-27 20:21:53 +01:00 |
|
main
|
0bff5525dd
|
Use latest compatible ZFS Linux for heater
Signed-off-by: main <magic_rb@redalder.org>
|
2022-11-23 20:49:16 +01:00 |
|
main
|
8b700b61cc
|
Make sure everything evaluates and builds even without secrets
Signed-off-by: main <magic_rb@redalder.org>
|
2022-11-23 20:48:59 +01:00 |
|
main
|
b55540049e
|
Add manpages to workstations
Signed-off-by: main <magic_rb@redalder.org>
|
2022-11-03 07:19:39 +01:00 |
|
Magic_RB
|
98da1998a6
|
Disable containerd on toothpick
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2022-11-03 00:24:03 +01:00 |
|
Magic_RB
|
3a100a4d52
|
Disable containerd on workstations
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2022-11-03 00:23:51 +01:00 |
|
Magic_RB
|
07e2de6840
|
Don't restart Hashicorp services if they change
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2022-11-03 00:20:52 +01:00 |
|
Magic_RB
|
dccb75934a
|
Get rid of containerd on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2022-10-30 15:45:41 +01:00 |
|
Magic_RB
|
cf77bf433f
|
utillinux -> util-linux
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2022-10-30 15:28:04 +01:00 |
|
Magic_RB
|
b8ac2fce89
|
Switch to stable Nix
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2022-10-30 15:27:47 +01:00 |
|
main
|
8f713ccc5b
|
Add PostgreSQL for Matrix
Signed-off-by: main <magic_rb@redalder.org>
|
2022-10-30 15:13:02 +01:00 |
|
main
|
cc3eaff12f
|
Add database for home assistant
Signed-off-by: main <magic_rb@redalder.org>
|
2022-10-27 13:27:21 +02:00 |
|
main
|
60086123f3
|
Add Nomad-Docker Nix integration
Signed-off-by: main <magic_rb@redalder.org>
|
2022-10-27 13:23:08 +02:00 |
|
main
|
b12b58fb5d
|
Disable syncthing in omen
Signed-off-by: main <magic_rb@redalder.org>
|
2022-10-22 16:15:10 +02:00 |
|
Magic_RB
|
6425857776
|
Setup acme.sh for Vault
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2022-10-11 07:55:42 +02:00 |
|