Commit graph

144 commits

Author SHA1 Message Date
Magic_RB c763d66183
Enable docker compat for podman on omen
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-07-18 11:45:37 +02:00
Magic_RB 686582722c
Fix wrong mount for vault on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-07-18 11:45:01 +02:00
Magic_RB 361e6b2065
Add ipmi_watchdog to blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-07-18 11:44:48 +02:00
Magic_RB cbc32aef09
Disable wlan on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-07-18 11:44:27 +02:00
Magic_RB f0cf4e1a54
Move Consul and Vault onto ZFS on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-07-10 23:36:07 +02:00
Magic_RB a5075271b4
Update inputs
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-07-10 23:35:56 +02:00
Magic_RB 9bc92124ed
Adjust firewall on blowhole to new motherboard
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-07-09 23:54:19 +02:00
Magic_RB de00d86dc4
Accept wireguard on the WAN interface
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-07-09 23:44:15 +02:00
Magic_RB 005cfe5eb1
Disable hostapd on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-28 21:53:17 +02:00
Magic_RB a64b46e61a
Make vault-agent not freak out on failed service restarts
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-28 21:52:45 +02:00
Magic_RB 06d8b381c4
Remove udp2tcp
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-28 14:46:42 +02:00
Magic_RB eb1dc094f1
More Wireguard
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-28 14:45:27 +02:00
Magic_RB 39742dc4a2
Mark camera mount as nofail
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-28 14:25:51 +02:00
Magic_RB e73ff8a96a
Remove wacky NAS mounts, they're handled by ZFS natively now
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-28 14:25:16 +02:00
Magic_RB 8cfde06cdd
Switch jellyfin to a host volume and add new share for media
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-28 14:25:00 +02:00
Magic_RB 004cfb039b
Harden blowhole agains sealed Vault
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-28 14:23:08 +02:00
Magic_RB 8b2321dde4
Reenable emulated systems on omen
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-28 14:22:27 +02:00
Magic_RB a96f79171a
Fix bluetooth not working on omen properly
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-28 14:22:11 +02:00
Magic_RB b0eaa7929d
Wireguard
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-28 14:21:54 +02:00
Magic_RB 8fb752ae01
Initial altra configuration
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-28 14:17:17 +02:00
Magic_RB b1cafd8f81
Fix Docker DNS on toothpick
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-22 17:19:47 +02:00
Magic_RB 134082a1da
Fix mainsail http path
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-19 02:40:50 +02:00
Magic_RB 9c0c892050
Fix blowhole nomad network
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-19 02:05:35 +02:00
Magic_RB c38b7e1918
Allow communication between containers
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-19 01:10:07 +02:00
Magic_RB ca2f480255
Fix incorrect flake host
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-19 00:55:05 +02:00
Magic_RB 637dc2877f
Permit unsupported envoy version
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-19 00:30:07 +02:00
Magic_RB de385c1d60
Fix nomad on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-18 23:20:10 +02:00
Magic_RB 64db0229c0
Fix failed evaluation without secrets in blowhole/firewall.nix
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-18 20:08:35 +02:00
Magic_RB 3b5a09f9cb
Enable the extension of lib
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-18 20:07:47 +02:00
Magic_RB fed32ecfca Possibly functional blowhole configuration
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-16 16:08:09 +02:00
Magic_RB 519d7b3841
Fill out omen, toothpick and heater
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-16 16:08:01 +02:00
Magic_RB b673fb12c1
Clean out the repository
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-10 10:34:14 +02:00
Magic_RB 8ce216d3f3
Add second DoH endpoint to proxy
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 16:14:30 +02:00
Magic_RB 6fdfe3511a
Rename stubby to dnscrypt-proxy2 in nftables comment on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 12:51:14 +02:00
Magic_RB 1b63b0aa1a
Allow containers in Nomad to reach Nomad
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 12:50:39 +02:00
Magic_RB 6bab5c1707
Switch out stubby for dnscrypt-proxy2
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 12:48:13 +02:00
Magic_RB 2b707885ab
Fixup klipper container
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 12:47:48 +02:00
Magic_RB 602b194cf8
Fix restarting of monitoring proxies by vault-agent
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 12:47:20 +02:00
Magic_RB 6f2ed9250a
Fix vault-agent restart on blowhole breaking klipper
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 12:46:56 +02:00
Magic_RB a34b2e3c7b
Reenable primeOffload on omen
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 12:46:43 +02:00
Magic_RB d8dce01fc1
Add nomad and matrix to internal DNS
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 12:46:27 +02:00
Magic_RB 9bd3b12c4a
Increase watchdog times on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-03 12:12:47 +02:00
Magic_RB eaa22d8e4c
Take logs from Docker
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-03 12:12:13 +02:00
Magic_RB 9a50d57305
Include extra labels in Docker from Nomad
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-03 12:11:43 +02:00
Magic_RB afa6ce6247
Fix hostapd mac address passwords
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-02 14:44:15 +02:00
Magic_RB 19fb889ade
Enable fwupd and emergency on omen
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-02 14:44:07 +02:00
Magic_RB 30ba25f277
Enable InfluxDB provider and provision Grafana
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-02 14:41:55 +02:00
Magic_RB 0804d717fc
consul on blowhole change loglevel go INFO
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-23 23:23:06 +02:00
Magic_RB 22a76d6274
Fix klipper envoy tokens on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-16 11:57:22 +02:00
Magic_RB a4dc73f311
Repin nixpkgs for hashicorp things
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-16 11:47:53 +02:00