magic_rb
2bf58cabcf
hela: switch to stable nixpkgs
...
The really complex nftable rules I have seem to not work or worse, segfault with nftables 1.09 which is the version in
`nixpkgs-stable`. Therefore we need to pull in 1.10 from `nixpkgs-unstable` for now.
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-10-02 02:36:47 +02:00
magic_rb
63d0544407
hela: allow forwarding from dmz
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-10-02 02:36:11 +02:00
magic_rb
9e5403d774
Get very initial AP up
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-09-20 22:00:22 +02:00
magic_rb
8cffa82a38
Update ifstate to the latest version
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-09-20 21:25:15 +02:00
magic_rb
933fdad596
Fix the MTU being incorrect.
...
some servers which send big packets, like `cache.nixos.org` would not be able to
respond without this change.
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-09-20 21:24:20 +02:00
magic_rb
49fea0bdf2
Setup VSCode in ANP devbox
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-09-18 00:44:35 +02:00
magic_rb
8965d75a04
Setup ANP container
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-09-17 23:11:24 +02:00
magic_rb
f8023c8d72
Omen things
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-09-11 21:03:03 +02:00
magic_rb
f9cef34606
Update containers
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-09-09 00:45:30 +02:00
magic_rb
0a8aa984d1
Update nixpkgs
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-09-08 23:52:50 +02:00
magic_rb
8298fd15fe
omen: bump NVidia proprietary and switch to 6.10 for nouveau
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-09-04 23:22:09 +02:00
magic_rb
c234160635
Border router, hela
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-09-04 22:39:43 +02:00
magic_rb
f4092bd8fa
Bump secret
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-22 13:10:54 +02:00
magic_rb
89096c4503
Fix Gitea using port 3000 instead of 80 for its public URL
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-18 12:15:30 +02:00
magic_rb
e02bfd5d16
Redirect gitea.redalder.org
to git.redalder.org
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-17 21:42:20 +02:00
magic_rb
32d914917b
Disable Gitea HTTP git
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-17 20:58:51 +02:00
magic_rb
3190036265
Don't attempt to forward into {git,gitea}.redalder.org over SSH
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-17 20:56:33 +02:00
magic_rb
0061de839c
Properly route through Forgejo's SSH port
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-17 20:44:44 +02:00
magic_rb
86108e7a8e
Allow access to Forgejo's SSH port
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-17 19:51:43 +02:00
magic_rb
9aa238d306
Add generic worker cache config
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-16 21:48:11 +02:00
magic_rb
5986393062
Hide firefox's toolbar
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-16 12:13:10 +02:00
magic_rb
4435cdfec7
Move out custom kernels and uboots into overlays
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 22:21:42 +02:00
magic_rb
70c66054e9
Add a cache config to synapse
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 18:07:30 +02:00
magic_rb
d4e2c4f658
Delete microvm-extras*
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 17:40:47 +02:00
magic_rb
4c4ff44081
Add s0ix-test
script
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 16:38:10 +02:00
magic_rb
828a7b9bab
Update README.md with *some* docs
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 16:27:37 +02:00
magic_rb
a48b29e79f
Export README.org
to README.md
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 16:07:39 +02:00
magic_rb
b3dbefd5e1
Expose tests from flake
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 16:02:56 +02:00
magic_rb
5df7a0d2b1
Add netnsIf
module
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 16:02:45 +02:00
magic_rb
28c7791aba
Add notnft
module which understands multiple namespaces
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 16:00:32 +02:00
magic_rb
0e7389fcbd
More network test work
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 15:59:24 +02:00
magic_rb
e0cc1a7efe
Switch to NVidia open module on omen
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 15:58:37 +02:00
magic_rb
1c47abb07f
Allow LUKS discards on omen
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 15:58:25 +02:00
magic_rb
50db2c9279
Further inkbook
efforts
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 15:58:02 +02:00
magic_rb
0055c2263a
Allow uk3s
to contact Vault
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 15:57:30 +02:00
magic_rb
2c0626fbd2
ifstate: fix module ordering and expose module as part of flake
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 15:57:02 +02:00
magic_rb
35222b4676
Fix OpenBao integration with k3s
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 15:56:30 +02:00
magic_rb
d89034edb9
Fix Gitea not reading secrets properly
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 15:55:59 +02:00
magic_rb
f106d88896
Bump NixNG
and uk3s.nix
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-14 15:55:29 +02:00
magic_rb
7047adf03e
Enable Kubernetes auth method in Vault
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-11 12:25:22 +02:00
magic_rb
a05beda2c4
Pass SSH into Gitea through Istio
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-08-11 12:24:57 +02:00
magic_rb
5f23a4ab6a
Add rclone
secret module
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-29 15:26:52 +02:00
magic_rb
dffc262334
Extract percept
to https://codeberg.org/magic_rb/percept
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-25 15:01:00 +02:00
magic_rb
cc362a70e4
Add NixOS tests test
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-25 14:50:50 +02:00
magic_rb
5243055605
Add Serve.hs
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-25 14:45:05 +02:00
magic_rb
beea8e6a73
Add HTTP server capabilities
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-24 23:23:26 +02:00
magic_rb
6b3ba18d70
Make buildbot-nix
workers secret, actually secret, duh
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-24 21:31:21 +02:00
magic_rb
5d0680c9fb
Add undo-tree
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-24 21:31:03 +02:00
magic_rb
e6da7b7257
Bump Emacs packages
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-24 21:30:53 +02:00
magic_rb
82c4836c49
Add percept
to all workstations
...
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-07-24 21:30:29 +02:00