Magic_RB
|
64db0229c0
|
Fix failed evaluation without secrets in blowhole/firewall.nix
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-06-18 20:08:35 +02:00 |
|
Magic_RB
|
3b5a09f9cb
|
Enable the extension of lib
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-06-18 20:07:47 +02:00 |
|
Magic_RB
|
fed32ecfca
|
Possibly functional blowhole configuration
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-06-16 16:08:09 +02:00 |
|
Magic_RB
|
519d7b3841
|
Fill out omen, toothpick and heater
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-06-16 16:08:01 +02:00 |
|
Magic_RB
|
b673fb12c1
|
Clean out the repository
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-06-10 10:34:14 +02:00 |
|
Magic_RB
|
dfed19f455
|
Enable wireplumber
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-28 19:09:04 +02:00 |
|
Magic_RB
|
8ce216d3f3
|
Add second DoH endpoint to proxy
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-28 16:14:30 +02:00 |
|
Magic_RB
|
6fdfe3511a
|
Rename stubby to dnscrypt-proxy2 in nftables comment on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-28 12:51:14 +02:00 |
|
Magic_RB
|
1b63b0aa1a
|
Allow containers in Nomad to reach Nomad
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-28 12:50:39 +02:00 |
|
Magic_RB
|
6bab5c1707
|
Switch out stubby for dnscrypt-proxy2
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-28 12:48:13 +02:00 |
|
Magic_RB
|
2b707885ab
|
Fixup klipper container
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-28 12:47:48 +02:00 |
|
Magic_RB
|
602b194cf8
|
Fix restarting of monitoring proxies by vault-agent
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-28 12:47:20 +02:00 |
|
Magic_RB
|
6f2ed9250a
|
Fix vault-agent restart on blowhole breaking klipper
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-28 12:46:56 +02:00 |
|
Magic_RB
|
a34b2e3c7b
|
Reenable primeOffload on omen
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-28 12:46:43 +02:00 |
|
Magic_RB
|
d8dce01fc1
|
Add nomad and matrix to internal DNS
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-28 12:46:27 +02:00 |
|
Magic_RB
|
937479dbba
|
xorg: reenable primeSync on nvidia and enable disableWhileTyping
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-28 12:45:57 +02:00 |
|
Magic_RB
|
556ecef190
|
Switch omen's kernel
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-28 12:45:25 +02:00 |
|
Magic_RB
|
9bd3b12c4a
|
Increase watchdog times on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-03 12:12:47 +02:00 |
|
Magic_RB
|
eaa22d8e4c
|
Take logs from Docker
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-03 12:12:13 +02:00 |
|
Magic_RB
|
9a50d57305
|
Include extra labels in Docker from Nomad
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-03 12:11:43 +02:00 |
|
Magic_RB
|
0adf0a25f2
|
Fixop provisioning support in Grafana module
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-02 14:45:05 +02:00 |
|
Magic_RB
|
59f2848e1b
|
Add non reload option to envoy
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-02 14:44:42 +02:00 |
|
Magic_RB
|
460b4e1ddc
|
Add amd support to xorg module
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-02 14:44:29 +02:00 |
|
Magic_RB
|
afa6ce6247
|
Fix hostapd mac address passwords
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-02 14:44:15 +02:00 |
|
Magic_RB
|
19fb889ade
|
Enable fwupd and emergency on omen
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-02 14:44:07 +02:00 |
|
Magic_RB
|
30ba25f277
|
Enable InfluxDB provider and provision Grafana
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-05-02 14:41:55 +02:00 |
|
Magic_RB
|
0804d717fc
|
consul on blowhole change loglevel go INFO
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-23 23:23:06 +02:00 |
|
Magic_RB
|
22a76d6274
|
Fix klipper envoy tokens on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-16 11:57:22 +02:00 |
|
Magic_RB
|
a4dc73f311
|
Repin nixpkgs for hashicorp things
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-16 11:47:53 +02:00 |
|
Magic_RB
|
eec8f409d6
|
Don't block outgoing DoT traffic, iifname doesn't work in output
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-04 00:41:25 +02:00 |
|
Magic_RB
|
d2374ad9f6
|
Revert "Add codespace container"
This reverts commit 48066a7e0d .
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 18:40:20 +02:00 |
|
Magic_RB
|
48066a7e0d
|
Add codespace container
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 18:37:57 +02:00 |
|
Magic_RB
|
41874fde15
|
Disable NVidia modeset on omen as it causes failed suspends
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 18:06:16 +02:00 |
|
Magic_RB
|
8e3b1fc69d
|
Add monitoring container PoC
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 17:54:35 +02:00 |
|
Magic_RB
|
a38cad8913
|
Add more GPG related things to recovery USB
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 17:45:43 +02:00 |
|
Magic_RB
|
8b5c787b8a
|
Move klipper into NixOS container
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 17:45:14 +02:00 |
|
Magic_RB
|
dfe57b87da
|
Fix hostapd with per mac address psk
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 13:23:10 +02:00 |
|
Magic_RB
|
0a356cb01a
|
Update mark to be RAIDed on ZFS
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 12:41:58 +02:00 |
|
Magic_RB
|
f8bbdc9a54
|
Use tf in blowhole uterranix config
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 02:12:16 +02:00 |
|
Magic_RB
|
cdc6d1b263
|
Use nixpkgs-hashicorp for vault and vault-agent
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 02:11:08 +02:00 |
|
Magic_RB
|
566db22374
|
Fix internal nomad interface on toothpick to wg
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:35:33 +02:00 |
|
Magic_RB
|
283ef1c1be
|
Improve hashicorp-envoy module
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:35:18 +02:00 |
|
Magic_RB
|
48920aae1a
|
Set password for root user
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:33:45 +02:00 |
|
Magic_RB
|
ba73eb214f
|
Switch nixinate host to domain for blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:33:20 +02:00 |
|
Magic_RB
|
0bd739cab7
|
Add watchdog to blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:32:57 +02:00 |
|
Magic_RB
|
0328cac478
|
Fix ipv6 issues on blowhole which break adb
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:32:36 +02:00 |
|
Magic_RB
|
661c32b1fe
|
Remove 25565 from allowed ports on deck
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:32:01 +02:00 |
|
Magic_RB
|
a55613fefa
|
Add tmpfiles configuration to hashicorp-vault-agent on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:31:37 +02:00 |
|
Magic_RB
|
807f776c35
|
Add new uterranix config
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:29:47 +02:00 |
|
Magic_RB
|
1877d128b3
|
Add domain for influx
Signed-off-by: Magic_RB <magic_rb@redalder.org>
|
2023-04-03 01:28:33 +02:00 |
|