Commit graph

824 commits

Author SHA1 Message Date
Magic_RB a0ed91afec
use nixpkgs specific to armcord for armcord
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-16 11:55:28 +02:00
Magic_RB a4dc73f311
Repin nixpkgs for hashicorp things
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-16 11:47:53 +02:00
Magic_RB eec8f409d6
Don't block outgoing DoT traffic, iifname doesn't work in output
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-04 00:41:25 +02:00
Magic_RB 634dafdf5a
Attempt to make evaluation of hydraJobs not OOM...
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 18:45:12 +02:00
Magic_RB d2374ad9f6
Revert "Add codespace container"
This reverts commit 48066a7e0d.

Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 18:40:20 +02:00
Magic_RB 48066a7e0d
Add codespace container
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 18:37:57 +02:00
Magic_RB 41874fde15
Disable NVidia modeset on omen as it causes failed suspends
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 18:06:16 +02:00
Magic_RB 8e3b1fc69d
Add monitoring container PoC
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 17:54:35 +02:00
Magic_RB a38cad8913
Add more GPG related things to recovery USB
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 17:45:43 +02:00
Magic_RB 8b5c787b8a
Move klipper into NixOS container
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 17:45:14 +02:00
Magic_RB dfe57b87da
Fix hostapd with per mac address psk
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 13:23:10 +02:00
Magic_RB 0a356cb01a
Update mark to be RAIDed on ZFS
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 12:41:58 +02:00
Magic_RB f8bbdc9a54
Use tf in blowhole uterranix config
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 02:12:16 +02:00
Magic_RB 10295a67d1
Fix Consul backend in Vault
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 02:11:52 +02:00
Magic_RB cdc6d1b263
Use nixpkgs-hashicorp for vault and vault-agent
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 02:11:08 +02:00
Magic_RB 566db22374
Fix internal nomad interface on toothpick to wg
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:35:33 +02:00
Magic_RB 283ef1c1be
Improve hashicorp-envoy module
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:35:18 +02:00
Magic_RB 78de403577
Add patch to allow nulls vault terraform provider
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:34:18 +02:00
Magic_RB 48920aae1a
Set password for root user
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:33:45 +02:00
Magic_RB ba73eb214f
Switch nixinate host to domain for blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:33:20 +02:00
Magic_RB 0bd739cab7
Add watchdog to blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:32:57 +02:00
Magic_RB 0328cac478
Fix ipv6 issues on blowhole which break adb
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:32:36 +02:00
Magic_RB 661c32b1fe
Remove 25565 from allowed ports on deck
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:32:01 +02:00
Magic_RB a55613fefa
Add tmpfiles configuration to hashicorp-vault-agent on blowhole
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:31:37 +02:00
Magic_RB f1e1647626
Add uterranix app
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:31:00 +02:00
Magic_RB 807f776c35
Add new uterranix config
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:29:47 +02:00
Magic_RB 1877d128b3
Add domain for influx
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:28:33 +02:00
Magic_RB 0bd14910e3
Fix consul and nomad reload on toothpick
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:28:14 +02:00
Magic_RB e31acce1fd
Delete old Terraform files
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:27:48 +02:00
Magic_RB 3f7585af77
Use specific nixpkgs pin for Hashicorp stuff
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:26:58 +02:00
Magic_RB 13dc074960
gitignore .terraform .terraform.lock.hcl
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:25:38 +02:00
Magic_RB f74081c10a
Emacs: set all popups to motion mode by default
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-04-03 01:25:18 +02:00
Magic_RB 908b21b391
Disable script highlighting in org-mode
script highlighting completely breaks links...

Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-30 02:10:33 +02:00
Magic_RB 2fffbad037
minor formatting
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-28 12:26:21 +02:00
Magic_RB eae03c9699
fix DNS
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-28 00:06:49 +02:00
Magic_RB 8bbce49068
Disable Serokell cache temporarily
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-10 00:16:55 +01:00
Magic_RB 00773af3d3
Add option to disable hot restart support in envoy
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-07 23:40:00 +01:00
Magic_RB 5532262053
Fix telegraf module
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-07 23:36:15 +01:00
Magic_RB dd2a8accba
Redo envoy module to be standalone
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-07 23:36:02 +01:00
Magic_RB 27f1978d23
Make module imports in blowhole relative
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-06 00:32:20 +01:00
Magic_RB 25a8e23045
Add new public modules: grafana, envoy, telegraf
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-06 00:31:31 +01:00
Magic_RB bbe1a2a6ad
Move secrets templates out of vault-agent module
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-06 00:30:29 +01:00
Magic_RB f39cea90f2
add dontUseConfig to hashicorp for config less things
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-06 00:29:58 +01:00
Magic_RB abad79541e
Simplify DNS zones
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-03-06 00:29:03 +01:00
Magic_RB e16e3fb2f5
Rebind omen key again according to upstream
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-02-26 15:41:58 +01:00
Magic_RB c8f88104a3
IgnoreVerification in pantalaimon
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-02-25 23:58:22 +01:00
Magic_RB a0a3ae2656
Get rid off the wireguard RestartSec hack
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-02-19 01:11:03 +01:00
Magic_RB a8983f85bb
Don't include related messages in mu4e views
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-02-19 01:10:30 +01:00
Magic_RB f923362537
Update inputs
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-02-19 01:03:49 +01:00
Magic_RB 03e92c586d
add nomad-cluster vaut role in vault
Signed-off-by: Magic_RB <magic_rb@redalder.org>
2023-02-16 14:47:31 +01:00