Commit graph

114 commits

Author SHA1 Message Date
Magic_RB 519d7b3841
Fill out omen, toothpick and heater
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-16 16:08:01 +02:00
Magic_RB b673fb12c1
Clean out the repository
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-06-10 10:34:14 +02:00
Magic_RB 8ce216d3f3
Add second DoH endpoint to proxy
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 16:14:30 +02:00
Magic_RB 6fdfe3511a
Rename stubby to dnscrypt-proxy2 in nftables comment on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 12:51:14 +02:00
Magic_RB 1b63b0aa1a
Allow containers in Nomad to reach Nomad
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 12:50:39 +02:00
Magic_RB 6bab5c1707
Switch out stubby for dnscrypt-proxy2
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 12:48:13 +02:00
Magic_RB 2b707885ab
Fixup klipper container
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 12:47:48 +02:00
Magic_RB 602b194cf8
Fix restarting of monitoring proxies by vault-agent
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 12:47:20 +02:00
Magic_RB 6f2ed9250a
Fix vault-agent restart on blowhole breaking klipper
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 12:46:56 +02:00
Magic_RB a34b2e3c7b
Reenable primeOffload on omen
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 12:46:43 +02:00
Magic_RB d8dce01fc1
Add nomad and matrix to internal DNS
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-28 12:46:27 +02:00
Magic_RB 9bd3b12c4a
Increase watchdog times on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-03 12:12:47 +02:00
Magic_RB eaa22d8e4c
Take logs from Docker
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-03 12:12:13 +02:00
Magic_RB 9a50d57305
Include extra labels in Docker from Nomad
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-03 12:11:43 +02:00
Magic_RB afa6ce6247
Fix hostapd mac address passwords
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-02 14:44:15 +02:00
Magic_RB 19fb889ade
Enable fwupd and emergency on omen
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-02 14:44:07 +02:00
Magic_RB 30ba25f277
Enable InfluxDB provider and provision Grafana
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-05-02 14:41:55 +02:00
Magic_RB 0804d717fc
consul on blowhole change loglevel go INFO
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-23 23:23:06 +02:00
Magic_RB 22a76d6274
Fix klipper envoy tokens on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-16 11:57:22 +02:00
Magic_RB a4dc73f311
Repin nixpkgs for hashicorp things
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-16 11:47:53 +02:00
Magic_RB eec8f409d6
Don't block outgoing DoT traffic, iifname doesn't work in output
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-04 00:41:25 +02:00
Magic_RB d2374ad9f6
Revert "Add codespace container"
This reverts commit 48066a7e0d.

Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 18:40:20 +02:00
Magic_RB 48066a7e0d
Add codespace container
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 18:37:57 +02:00
Magic_RB 41874fde15
Disable NVidia modeset on omen as it causes failed suspends
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 18:06:16 +02:00
Magic_RB 8e3b1fc69d
Add monitoring container PoC
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 17:54:35 +02:00
Magic_RB a38cad8913
Add more GPG related things to recovery USB
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 17:45:43 +02:00
Magic_RB 8b5c787b8a
Move klipper into NixOS container
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 17:45:14 +02:00
Magic_RB dfe57b87da
Fix hostapd with per mac address psk
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 13:23:10 +02:00
Magic_RB f8bbdc9a54
Use tf in blowhole uterranix config
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 02:12:16 +02:00
Magic_RB cdc6d1b263
Use nixpkgs-hashicorp for vault and vault-agent
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 02:11:08 +02:00
Magic_RB 566db22374
Fix internal nomad interface on toothpick to wg
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:35:33 +02:00
Magic_RB ba73eb214f
Switch nixinate host to domain for blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:33:20 +02:00
Magic_RB 0bd739cab7
Add watchdog to blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:32:57 +02:00
Magic_RB 0328cac478
Fix ipv6 issues on blowhole which break adb
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:32:36 +02:00
Magic_RB 661c32b1fe
Remove 25565 from allowed ports on deck
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:32:01 +02:00
Magic_RB a55613fefa
Add tmpfiles configuration to hashicorp-vault-agent on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:31:37 +02:00
Magic_RB 807f776c35
Add new uterranix config
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:29:47 +02:00
Magic_RB 1877d128b3
Add domain for influx
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:28:33 +02:00
Magic_RB 0bd14910e3
Fix consul and nomad reload on toothpick
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:28:14 +02:00
Magic_RB 3f7585af77
Use specific nixpkgs pin for Hashicorp stuff
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:26:58 +02:00
Magic_RB 2fffbad037
minor formatting
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-28 12:26:21 +02:00
Magic_RB eae03c9699
fix DNS
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-28 00:06:49 +02:00
Magic_RB 27f1978d23
Make module imports in blowhole relative
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-06 00:32:20 +01:00
Magic_RB bbe1a2a6ad
Move secrets templates out of vault-agent module
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-06 00:30:29 +01:00
Magic_RB abad79541e
Simplify DNS zones
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-06 00:29:03 +01:00
Magic_RB a0a3ae2656
Get rid off the wireguard RestartSec hack
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-02-19 01:11:03 +01:00
Magic_RB f923362537
Update inputs
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-02-19 01:03:49 +01:00
Magic_RB ceb38b807f
omen: fix network manager dispatcher scripts
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-02-16 14:47:04 +01:00
Magic_RB 084eb2edb6
fixup network mounting on omen
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-02-16 14:46:20 +01:00
Magic_RB 648e6cf8c1
basic hostap config
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-02-14 20:18:11 +01:00