|
8b537059af
|
read: Update deploy address
|
2024-07-15 23:59:48 +02:00 |
|
|
97c80dac0d
|
read(caddy): fix proxy address
|
2024-07-15 23:59:14 +02:00 |
|
|
ecdf88bb32
|
read: Increase net.core.rmem_max and net.core.wmem_max
|
2024-07-15 23:57:32 +02:00 |
|
|
1ee0e5255e
|
valkyrie(coredns): Put zone files in /etc/coredns so reloading should work
|
2024-07-15 23:53:39 +02:00 |
|
|
f7f49cca18
|
valkyrie(coredns): Add read.datarift.nl
|
2024-07-15 23:47:42 +02:00 |
|
|
35a39995fc
|
read: init container
|
2024-07-15 23:41:19 +02:00 |
|
|
3628e8804a
|
valkyrie(coredns): Add record for Unifi Cloud Gateway
|
2024-07-15 20:18:16 +02:00 |
|
|
327849bfd4
|
unifi: Remove commented out stuff
|
2024-07-09 21:34:00 +02:00 |
|
|
edc756dfbf
|
loki: Remove obsolete hosts file
|
2024-07-09 21:33:42 +02:00 |
|
|
392b347591
|
Change all sha256 attributes to SRI-hashes
|
2024-07-09 21:33:26 +02:00 |
|
|
c7becc45e7
|
loki: Enable iwd
|
2024-07-08 14:32:20 +02:00 |
|
|
02d7f4b661
|
valkyrie: Disable kea
|
2024-07-08 14:32:10 +02:00 |
|
|
6216d24827
|
valkyrie(blocky): block polyfill.io
|
2024-07-05 19:29:38 +02:00 |
|
|
aa700320ec
|
Packages are being moved out of the gnome scope
For now, gnome-calculator and nautilus are relevant here.
gnome-keyring too, but that needs to be updated in home-manager.
|
2024-07-05 13:32:36 +02:00 |
|
|
4f557c87c0
|
valkyrie(coredns): Make coredns output less
|
2024-07-04 15:07:10 +02:00 |
|
|
60db9ba22b
|
Fix typo in tailscale.zone
|
2024-07-04 14:30:12 +02:00 |
|
|
bfd306b9d2
|
valkyrie(coredns): Stop using coredns-tailscale due to issues
|
2024-07-03 15:49:22 +02:00 |
|
|
36a1d89286
|
blocky: Add AdAway and crypto miners
|
2024-07-03 14:27:25 +02:00 |
|
|
76c0d66046
|
heimdall: Add caddy configuration for boskma.frl root
|
2024-06-27 14:57:56 +02:00 |
|
|
7f2b8af0f5
|
loki: Rename wghorus to horus0
|
2024-06-27 14:57:45 +02:00 |
|
|
31ad79b1b9
|
hardware.opengl was renamed to hardware.graphics
|
2024-06-24 14:26:50 +02:00 |
|
|
e6a5aeda29
|
coredns: Update TS_AUTHKEY
|
2024-06-17 15:03:14 +02:00 |
|
|
118683b9ca
|
valkyrie: Add caddy as proxy for blocky API to enable HTTPS
|
2024-06-17 12:07:40 +02:00 |
|
|
1c4b501c33
|
kea: Configure Unifi address DHCP option
|
2024-06-17 10:41:36 +02:00 |
|
|
2c8a3cacd5
|
proxy: Disable logrotate config check service
|
2024-06-13 16:07:08 +02:00 |
|
|
3625092420
|
Add proxy entry for today's garfield comic
|
2024-06-13 16:07:07 +02:00 |
|
|
762b6c45cc
|
odin: Add consoledash user that starts glances
|
2024-06-12 21:43:29 +02:00 |
|
|
a771537a65
|
nix-common: Add option for gc interval
|
2024-06-12 21:42:01 +02:00 |
|
|
8ab3ae5a5c
|
minio: Add caddy-proxy
|
2024-06-12 21:18:25 +02:00 |
|
|
c6bd6f90d9
|
nix-cache: Use caddy-proxy module
|
2024-06-12 20:56:52 +02:00 |
|
|
3b322619e5
|
mimir: Switch back to greetd
|
2024-06-12 17:00:07 +02:00 |
|
|
5376c91f35
|
coredns: Split TailScale blocks for datarift.nl and everything else
|
2024-06-11 15:49:18 +02:00 |
|
|
a8d7a0ea35
|
odin: Add iperf3
|
2024-06-11 15:26:14 +02:00 |
|
|
29627df807
|
gitea: Switch to caddy-proxy module
|
2024-06-10 11:32:11 +02:00 |
|
|
b232f0a2c8
|
saga: Add caddy
|
2024-06-10 11:28:28 +02:00 |
|
|
b5f62be6a3
|
valkyrie: Update DNS config so tailscale plugin is used on tailscale
|
2024-06-08 17:36:11 +02:00 |
|
|
5ba0e9d754
|
machines: Remove 'container' tag from unifi
|
2024-06-08 16:48:29 +02:00 |
|
|
3e26d1851c
|
mimir: Switch to regreet
|
2024-06-08 16:03:24 +02:00 |
|
|
cef6158ca7
|
anyrun: Update module attribute
|
2024-06-08 16:01:48 +02:00 |
|
|
1438fdcff0
|
Also use old TailScale IPv6 range
|
2024-06-04 11:01:45 +02:00 |
|
|
4482c9fa5f
|
valkyrie: Disable blocky cache
|
2024-06-04 10:42:06 +02:00 |
|
|
3b85c2866b
|
meili: init
|
2024-06-04 10:34:30 +02:00 |
|
|
f5723fb0ce
|
loki: Enable river system-wide so it gets picked up by display managers
|
2024-06-04 09:43:10 +02:00 |
|
|
5bf48d0618
|
loki: Update wireguard config to new config format
|
2024-06-04 09:42:34 +02:00 |
|
|
ed8dcd8c82
|
kea: Subnet IDs are now mandatory
|
2024-06-03 12:20:16 +02:00 |
|
|
1b17429c02
|
loki: Trying regreet again, remove some long time disabled attrs
|
2024-06-03 12:19:21 +02:00 |
|
|
766712f7e7
|
Update systemd route configuration
|
2024-06-03 11:12:33 +02:00 |
|
|
2d7e2e9150
|
valkyrie: Update TailScale auth key for coredns
|
2024-06-03 11:11:32 +02:00 |
|
|
ba990dbc8b
|
loki: Enable programs.appimage, programs.ryzen-monitor-ng
|
2024-06-03 11:10:59 +02:00 |
|
|
85e3f362c0
|
Explicitly accept IPv6 Router Advertisements
|
2024-05-29 19:50:40 +02:00 |
|
|
cb7a2cd4bc
|
Let's roll our own coredns package
With blackjack and hoo...
Uhm, working plugins. Yes, working plugins. Definitely.
|
2024-05-29 19:50:20 +02:00 |
|
|
e1f59a5aa5
|
loki: river does not like the wlroots vulkan renderer :(
|
2024-05-21 21:27:53 +02:00 |
|
|
be78512192
|
coredns: Update vendorHash
|
2024-05-20 14:50:36 +02:00 |
|
|
e4002035d5
|
odin: Use Incus UI from nixpkgs
|
2024-05-20 14:32:52 +02:00 |
|
|
828a7c22bd
|
loki: Add post-build-hook to automatically upload matching packages
|
2024-05-20 14:21:13 +02:00 |
|
|
2396af5c51
|
mimir: NVIDIA tweaks
|
2024-05-17 22:27:46 +02:00 |
|
|
f268b9d170
|
loki: Use Vulkan renderer for wlroots
|
2024-05-17 22:27:21 +02:00 |
|
|
08083a7bc7
|
coredns: DynamicUser services apparently don't have access to the tailscale socket
|
2024-05-08 18:36:37 +02:00 |
|
|
6ff1d74b7b
|
coredns: Use the local Tailscale daemon
|
2024-05-08 18:34:41 +02:00 |
|
|
25b8b4ff5b
|
blocky: Remove unused hostnames
|
2024-05-08 18:32:07 +02:00 |
|
|
919825f721
|
coredns: Update Tailscale auth key
|
2024-05-08 18:31:39 +02:00 |
|
|
469f9e2b35
|
blocky: Handle TailScale IPv6 range
|
2024-05-08 18:11:17 +02:00 |
|
|
dd9108be8b
|
coredns: Update vendor hash
|
2024-05-08 17:17:41 +02:00 |
|
|
86d99c9095
|
valkyrie: Configure promtail for unbound
|
2024-05-08 16:50:40 +02:00 |
|
|
34b5e5f21b
|
valkyrie: Configure promtail
|
2024-05-08 15:55:00 +02:00 |
|
|
c20c3e53a6
|
mimir: Switch back to sway
|
2024-05-07 08:47:08 +02:00 |
|
|
0556eb3672
|
k3s-test: Deploy over Tailscale
|
2024-04-30 10:25:47 +02:00 |
|
|
8d6f89dcd8
|
odin: Set Loki configuration for Incus
|
2024-04-26 13:29:05 +02:00 |
|
|
8d4f5cdb2d
|
odin: Enable prometheus node exporter and promtail
|
2024-04-26 11:58:54 +02:00 |
|
|
721e35fde9
|
saga: Remove obsolete options from config
|
2024-04-26 11:41:43 +02:00 |
|
|
768c8bf57f
|
saga: Add Loki and Promtail
|
2024-04-26 11:28:35 +02:00 |
|
|
f8fa1e3915
|
neo: Back to connecting sliding-sync on localhost
|
2024-04-26 09:03:51 +02:00 |
|
|
3638fc6f85
|
heimdall: Add m.identity_server to Matrix well-known config
|
2024-04-26 08:47:19 +02:00 |
|
|
5d0f4f4e4b
|
dendrite: Enable MSCs for threads and peeking
|
2024-04-26 08:46:46 +02:00 |
|
|
67325f6bd3
|
neo: Configure sliding sync server to use external matrix server address
|
2024-04-25 20:44:58 +02:00 |
|
|
aaa7456bfe
|
dendrite: Explicitly set config version
|
2024-04-25 13:02:10 +02:00 |
|
|
350ed60806
|
dendrite: Configure x-forwarded-for header
|
2024-04-24 20:32:12 +02:00 |
|
|
05eabe012b
|
matrix-sliding-sync: Communicate over loopback
|
2024-04-24 20:05:01 +02:00 |
|
|
9eac47f684
|
dendrite: Clean up config
|
2024-04-24 17:53:35 +02:00 |
|
|
de16b8c700
|
heimdall: forward all requests to dendrite
|
2024-04-24 17:53:16 +02:00 |
|
|
625b975884
|
dendrite: Maybe use server_name without subdomain
|
2024-04-24 16:47:21 +02:00 |
|
|
5a4daa1aa5
|
dendrite: Enable debug logging
|
2024-04-24 16:34:58 +02:00 |
|
|
8ac6f9a4c1
|
neo: Bind matrix-sliding-sync to 0.0.0.0
|
2024-04-24 15:37:02 +02:00 |
|
|
2142c7f275
|
heimdall: Add sliding sync server to matrix client well-known
|
2024-04-24 15:36:38 +02:00 |
|
|
f9c318a042
|
dendrite: Reduce max open connections
|
2024-04-24 15:12:58 +02:00 |
|
|
7ed141d52e
|
postgresql: Create roles
|
2024-04-24 15:11:52 +02:00 |
|
|
6f424db18b
|
dendrite: Don't escape $CREDENTIALS_DIRECTORY?
|
2024-04-24 15:09:04 +02:00 |
|
|
a33318c725
|
dendrite: Use alternate syntax for connection string
|
2024-04-24 15:07:40 +02:00 |
|
|
065838d865
|
dendrite: Set media_api base_path
|
2024-04-24 15:06:42 +02:00 |
|
|
e532ad8538
|
dendrite: Use LoadCredential to load private key
|
2024-04-24 15:06:40 +02:00 |
|
|
848b227880
|
machines: Remove obsolete attrs
|
2024-04-24 14:46:47 +02:00 |
|
|
51e4a3adc5
|
Add neo, a Matrix server
|
2024-04-24 14:46:45 +02:00 |
|
|
7fa8cb1b01
|
heimdall: Split caddy config into separate file and add dendrite config
|
2024-04-24 13:58:04 +02:00 |
|
|
1737374346
|
valkyrie: Let coredns handle all domains
|
2024-04-23 19:47:48 +02:00 |
|
|
23e1a21429
|
valkyrie: Route Tailscale hosts through coredns
|
2024-04-23 19:31:04 +02:00 |
|
|
4a624b20cb
|
valkyrie: Set HOME variable in coredns service env
|
2024-04-23 17:04:08 +02:00 |
|
|
f5009b1ca1
|
valkyrie: Set coredns vendorHash
|
2024-04-23 16:32:01 +02:00 |
|
|
a8b3e5e860
|
sunshine: It's in nixos now
|
2024-04-23 16:31:37 +02:00 |
|
|
eb403e3ee3
|
valkyrie: Add coredns to handle tailscale hosts
|
2024-04-22 17:49:39 +02:00 |
|
|
8e8678120b
|
Add initial config for river
|
2024-04-22 17:42:31 +02:00 |
|
|
10252c50e7
|
heimdall: Use default method of TLS certificate handling
|
2024-04-16 21:47:37 +02:00 |
|
|
266be843bf
|
Use preconfigured caddy with cloudflare plugin
|
2024-04-16 19:53:46 +02:00 |
|
|
b4dfe3bcb4
|
heimdall: Add proxy for external access to gitea
|
2024-04-16 19:52:25 +02:00 |
|
|
b1284141ef
|
k3s-test: Re-enabled container tag
|
2024-04-15 17:29:43 +02:00 |
|
|
3d3b694527
|
Remove tags from k3s-test
|
2024-04-15 17:01:12 +02:00 |
|
|
193de35f12
|
proxy: Remove git
|
2024-04-15 16:29:53 +02:00 |
|
|
d9bd7d8586
|
caddy-proxy: Decouple configuration of virtualHosts from module
|
2024-04-10 22:19:33 +02:00 |
|
|
a304c7eb0e
|
mimir: Switch to swayfx
|
2024-04-05 13:15:40 +02:00 |
|
|
78121263ca
|
kea: Add reservation for Jetson Orin Nano devkit
|
2024-04-04 08:25:40 +02:00 |
|
|
ac990d6f31
|
gitea: Remove ssh_info from caddy
|
2024-03-29 08:28:56 +01:00 |
|
|
6161704d49
|
forgejo: Add rewrite for ssh_info to support git-repo
|
2024-03-28 16:04:38 +01:00 |
|
|
c2744ea1eb
|
sway: Make package configurable
|
2024-03-26 16:50:56 +01:00 |
|
|
423189ad19
|
valkyrie: Reorganize DNS entries
|
2024-03-22 09:59:35 +01:00 |
|
|
5e71ffe683
|
mimir: Change default route metric so LAN has priority over WLAN
|
2024-03-22 09:42:37 +01:00 |
|
|
b45a5bb689
|
odin: Add temporary patch for Coral driver (gasket)
|
2024-03-20 19:59:50 +01:00 |
|
|
36d0dc1fe0
|
kea: Add routers DHCP option
|
2024-03-17 09:28:22 +01:00 |
|
|
51672c186b
|
valkyrie: Open DNS and DHCP ports
|
2024-03-16 23:12:30 +01:00 |
|
|
f2ebda369a
|
grafana: Add plugins, disable HTML sanitization
|
2024-03-16 23:06:01 +01:00 |
|
|
c757e6cfb0
|
unbound: Fix typo
|
2024-03-16 22:55:00 +01:00 |
|
|
20f61bf863
|
saga: Add kea and blocky to prometheus jobs
|
2024-03-16 22:49:45 +01:00 |
|
|
4d3767356e
|
kea: Disable Ubiquiti option for now
|
2024-03-16 22:46:16 +01:00 |
|
|
7f862cefb5
|
blocky: Fix typo
|
2024-03-16 22:46:09 +01:00 |
|
|
c6f9bd3de1
|
valkyrie: Switch from AdGuard Home to blocky (DNS) + kea (DHCP)
|
2024-03-16 22:36:09 +01:00 |
|
|
6b0da44e9c
|
caddy: Use correct HTTP status code
|
2024-03-14 10:06:53 +01:00 |
|
|
92efb754ff
|
gitea: Add caddy proxy
|
2024-03-14 09:19:40 +01:00 |
|
|
63d110acfe
|
heimdall: Switch to sudo-rs
|
2024-03-07 16:35:29 +01:00 |
|
|
e279ac6b65
|
heimdall: Use systemd-networkd
|
2024-03-07 16:35:16 +01:00 |
|
|
dcdc3bbb92
|
unbound: tweak settings
|
2024-03-06 08:18:14 +01:00 |
|
|
36a422f94b
|
saga: Add Keycloak login to Grafana
|
2024-02-29 23:14:56 +01:00 |
|
|
3e637b15c5
|
Clean up sops file
|
2024-02-29 14:25:29 +01:00 |
|
|
d0d9277387
|
saga: Add incus metrics
|
2024-02-29 14:25:23 +01:00 |
|
|
bdd51d8d89
|
loki: Disable post-build-hook
|
2024-02-28 23:41:59 +01:00 |
|
|
a285a2bc19
|
loki: filter horus_vcpkg from cache uploads
|
2024-02-28 22:50:35 +01:00 |
|
|
7506048118
|
nix-cache: Tweak settings
|
2024-02-28 22:50:23 +01:00 |
|
|
e04fb83881
|
valkyrie: Enable unbound prometheus exporter
|
2024-02-28 22:49:50 +01:00 |
|
|
5f866a8b98
|
saga: monitoring server
|
2024-02-28 22:49:27 +01:00 |
|
|
10bf3510be
|
mimir: Add iwd
|
2024-02-23 11:33:18 +01:00 |
|
|
2c9f3cc24d
|
frigate: 0.13.0 -> 0.13.2
/ check (push) Failing after 15m53s
|
2024-02-22 11:35:06 +01:00 |
|
|
28f24e94c3
|
forgejo: Reduce backup interval to twice per day
|
2024-02-22 11:33:52 +01:00 |
|
|
c93ea5370a
|
loki: Fix livebook
|
2024-02-09 20:38:40 +01:00 |
|
|
67b11ddbd7
|
proxy: Remove obsolete option
/ check (push) Has been cancelled
|
2024-02-07 08:38:44 +01:00 |
|
|
db197fcc9e
|
frigate: set PLUS_API_KEY env var
|
2024-02-07 08:37:48 +01:00 |
|
|
4cd0f83ce8
|
Run nixfmt
/ check (push) Failing after 2m46s
|
2024-02-05 11:46:52 +01:00 |
|
|
3594e5479d
|
frigate: Update to 0.13
/ check (push) Failing after 3m6s
|
2024-02-03 12:34:18 +01:00 |
|
|
c9f19d3ded
|
mimir: Enable envfs
|
2024-02-01 11:51:01 +01:00 |
|
|
875d4a97ea
|
loki: Re-enable envfs, rtl88x2bu
|
2024-01-30 20:59:27 +01:00 |
|
|
6a5938be3f
|
forgejo: Explicitly enable cron, set actions runner log level
|
2024-01-29 10:28:13 +01:00 |
|
|
24c40e685e
|
Delete obsolete machine config
|
2024-01-29 10:27:59 +01:00 |
|
|
70421d5ecb
|
Tell systemd to accept any connected interface as online
|
2024-01-29 10:27:21 +01:00 |
|
|
0272834fcc
|
machines: Disable thor
|
2024-01-25 12:39:16 +01:00 |
|