Commit graph

490 commits

Author SHA1 Message Date
2396af5c51
mimir: NVIDIA tweaks 2024-05-17 22:27:46 +02:00
f268b9d170
loki: Use Vulkan renderer for wlroots 2024-05-17 22:27:21 +02:00
08083a7bc7
coredns: DynamicUser services apparently don't have access to the tailscale socket 2024-05-08 18:36:37 +02:00
6ff1d74b7b
coredns: Use the local Tailscale daemon 2024-05-08 18:34:41 +02:00
25b8b4ff5b
blocky: Remove unused hostnames 2024-05-08 18:32:07 +02:00
919825f721
coredns: Update Tailscale auth key 2024-05-08 18:31:39 +02:00
469f9e2b35
blocky: Handle TailScale IPv6 range 2024-05-08 18:11:17 +02:00
dd9108be8b
coredns: Update vendor hash 2024-05-08 17:17:41 +02:00
86d99c9095
valkyrie: Configure promtail for unbound 2024-05-08 16:50:40 +02:00
34b5e5f21b
valkyrie: Configure promtail 2024-05-08 15:55:00 +02:00
c20c3e53a6
mimir: Switch back to sway 2024-05-07 08:47:08 +02:00
0556eb3672
k3s-test: Deploy over Tailscale 2024-04-30 10:25:47 +02:00
8d6f89dcd8
odin: Set Loki configuration for Incus 2024-04-26 13:29:05 +02:00
8d4f5cdb2d
odin: Enable prometheus node exporter and promtail 2024-04-26 11:58:54 +02:00
721e35fde9
saga: Remove obsolete options from config 2024-04-26 11:41:43 +02:00
768c8bf57f
saga: Add Loki and Promtail 2024-04-26 11:28:35 +02:00
f8fa1e3915
neo: Back to connecting sliding-sync on localhost 2024-04-26 09:03:51 +02:00
3638fc6f85
heimdall: Add m.identity_server to Matrix well-known config 2024-04-26 08:47:19 +02:00
5d0f4f4e4b
dendrite: Enable MSCs for threads and peeking 2024-04-26 08:46:46 +02:00
67325f6bd3
neo: Configure sliding sync server to use external matrix server address 2024-04-25 20:44:58 +02:00
aaa7456bfe
dendrite: Explicitly set config version 2024-04-25 13:02:10 +02:00
350ed60806
dendrite: Configure x-forwarded-for header 2024-04-24 20:32:12 +02:00
05eabe012b
matrix-sliding-sync: Communicate over loopback 2024-04-24 20:05:01 +02:00
9eac47f684
dendrite: Clean up config 2024-04-24 17:53:35 +02:00
de16b8c700
heimdall: forward all requests to dendrite 2024-04-24 17:53:16 +02:00
625b975884
dendrite: Maybe use server_name without subdomain 2024-04-24 16:47:21 +02:00
5a4daa1aa5
dendrite: Enable debug logging 2024-04-24 16:34:58 +02:00
8ac6f9a4c1
neo: Bind matrix-sliding-sync to 0.0.0.0 2024-04-24 15:37:02 +02:00
2142c7f275
heimdall: Add sliding sync server to matrix client well-known 2024-04-24 15:36:38 +02:00
f9c318a042
dendrite: Reduce max open connections 2024-04-24 15:12:58 +02:00
7ed141d52e
postgresql: Create roles 2024-04-24 15:11:52 +02:00
6f424db18b
dendrite: Don't escape $CREDENTIALS_DIRECTORY? 2024-04-24 15:09:04 +02:00
a33318c725
dendrite: Use alternate syntax for connection string 2024-04-24 15:07:40 +02:00
065838d865
dendrite: Set media_api base_path 2024-04-24 15:06:42 +02:00
e532ad8538
dendrite: Use LoadCredential to load private key 2024-04-24 15:06:40 +02:00
848b227880
machines: Remove obsolete attrs 2024-04-24 14:46:47 +02:00
51e4a3adc5
Add neo, a Matrix server 2024-04-24 14:46:45 +02:00
7fa8cb1b01
heimdall: Split caddy config into separate file and add dendrite config 2024-04-24 13:58:04 +02:00
1737374346
valkyrie: Let coredns handle all domains 2024-04-23 19:47:48 +02:00
23e1a21429
valkyrie: Route Tailscale hosts through coredns 2024-04-23 19:31:04 +02:00
4a624b20cb
valkyrie: Set HOME variable in coredns service env 2024-04-23 17:04:08 +02:00
f5009b1ca1
valkyrie: Set coredns vendorHash 2024-04-23 16:32:01 +02:00
a8b3e5e860
sunshine: It's in nixos now 2024-04-23 16:31:37 +02:00
eb403e3ee3
valkyrie: Add coredns to handle tailscale hosts 2024-04-22 17:49:39 +02:00
8e8678120b
Add initial config for river 2024-04-22 17:42:31 +02:00
10252c50e7
heimdall: Use default method of TLS certificate handling 2024-04-16 21:47:37 +02:00
266be843bf
Use preconfigured caddy with cloudflare plugin 2024-04-16 19:53:46 +02:00
b4dfe3bcb4
heimdall: Add proxy for external access to gitea 2024-04-16 19:52:25 +02:00
b1284141ef
k3s-test: Re-enabled container tag 2024-04-15 17:29:43 +02:00
3d3b694527
Remove tags from k3s-test 2024-04-15 17:01:12 +02:00
193de35f12
proxy: Remove git 2024-04-15 16:29:53 +02:00
d9bd7d8586
caddy-proxy: Decouple configuration of virtualHosts from module 2024-04-10 22:19:33 +02:00
a304c7eb0e
mimir: Switch to swayfx 2024-04-05 13:15:40 +02:00
78121263ca
kea: Add reservation for Jetson Orin Nano devkit 2024-04-04 08:25:40 +02:00
ac990d6f31
gitea: Remove ssh_info from caddy 2024-03-29 08:28:56 +01:00
6161704d49
forgejo: Add rewrite for ssh_info to support git-repo 2024-03-28 16:04:38 +01:00
c2744ea1eb
sway: Make package configurable 2024-03-26 16:50:56 +01:00
423189ad19
valkyrie: Reorganize DNS entries 2024-03-22 09:59:35 +01:00
5e71ffe683
mimir: Change default route metric so LAN has priority over WLAN 2024-03-22 09:42:37 +01:00
b45a5bb689
odin: Add temporary patch for Coral driver (gasket) 2024-03-20 19:59:50 +01:00
36d0dc1fe0
kea: Add routers DHCP option 2024-03-17 09:28:22 +01:00
51672c186b
valkyrie: Open DNS and DHCP ports 2024-03-16 23:12:30 +01:00
f2ebda369a
grafana: Add plugins, disable HTML sanitization 2024-03-16 23:06:01 +01:00
c757e6cfb0
unbound: Fix typo 2024-03-16 22:55:00 +01:00
20f61bf863
saga: Add kea and blocky to prometheus jobs 2024-03-16 22:49:45 +01:00
4d3767356e
kea: Disable Ubiquiti option for now 2024-03-16 22:46:16 +01:00
7f862cefb5
blocky: Fix typo 2024-03-16 22:46:09 +01:00
c6f9bd3de1
valkyrie: Switch from AdGuard Home to blocky (DNS) + kea (DHCP) 2024-03-16 22:36:09 +01:00
6b0da44e9c
caddy: Use correct HTTP status code 2024-03-14 10:06:53 +01:00
92efb754ff
gitea: Add caddy proxy 2024-03-14 09:19:40 +01:00
63d110acfe
heimdall: Switch to sudo-rs 2024-03-07 16:35:29 +01:00
e279ac6b65
heimdall: Use systemd-networkd 2024-03-07 16:35:16 +01:00
dcdc3bbb92
unbound: tweak settings 2024-03-06 08:18:14 +01:00
36a422f94b
saga: Add Keycloak login to Grafana 2024-02-29 23:14:56 +01:00
3e637b15c5
Clean up sops file 2024-02-29 14:25:29 +01:00
d0d9277387
saga: Add incus metrics 2024-02-29 14:25:23 +01:00
bdd51d8d89
loki: Disable post-build-hook 2024-02-28 23:41:59 +01:00
a285a2bc19
loki: filter horus_vcpkg from cache uploads 2024-02-28 22:50:35 +01:00
7506048118
nix-cache: Tweak settings 2024-02-28 22:50:23 +01:00
e04fb83881
valkyrie: Enable unbound prometheus exporter 2024-02-28 22:49:50 +01:00
5f866a8b98
saga: monitoring server 2024-02-28 22:49:27 +01:00
10bf3510be
mimir: Add iwd 2024-02-23 11:33:18 +01:00
2c9f3cc24d
frigate: 0.13.0 -> 0.13.2
Some checks failed
/ check (push) Failing after 15m53s
2024-02-22 11:35:06 +01:00
28f24e94c3
forgejo: Reduce backup interval to twice per day 2024-02-22 11:33:52 +01:00
c93ea5370a
loki: Fix livebook 2024-02-09 20:38:40 +01:00
67b11ddbd7
proxy: Remove obsolete option
Some checks failed
/ check (push) Has been cancelled
2024-02-07 08:38:44 +01:00
db197fcc9e
frigate: set PLUS_API_KEY env var 2024-02-07 08:37:48 +01:00
4cd0f83ce8
Run nixfmt
Some checks failed
/ check (push) Failing after 2m46s
2024-02-05 11:46:52 +01:00
3594e5479d
frigate: Update to 0.13
Some checks failed
/ check (push) Failing after 3m6s
2024-02-03 12:34:18 +01:00
c9f19d3ded
mimir: Enable envfs 2024-02-01 11:51:01 +01:00
875d4a97ea
loki: Re-enable envfs, rtl88x2bu 2024-01-30 20:59:27 +01:00
6a5938be3f
forgejo: Explicitly enable cron, set actions runner log level 2024-01-29 10:28:13 +01:00
24c40e685e
Delete obsolete machine config 2024-01-29 10:27:59 +01:00
70421d5ecb
Tell systemd to accept any connected interface as online 2024-01-29 10:27:21 +01:00
0272834fcc
machines: Disable thor 2024-01-25 12:39:16 +01:00
fcf5583ef0
thor: Import anyrun home-manager module 2024-01-25 12:38:15 +01:00
4b4ace72b2
ci: Decommission in favour of forgejo actions 2024-01-24 18:17:47 +01:00
17057e1afe
gitea-runner: Init system 2024-01-24 17:11:53 +01:00
3428449501
odin: Fix incus OIDC issuer URL 2024-01-22 20:30:43 +01:00
7e3c07ff1b
unifi: Wait on any interface to be online 2024-01-22 20:30:20 +01:00
1e6a46e2a5
Update parameters for caddy-with-plugins 2024-01-22 20:29:55 +01:00
7c4967b4d8
machines: Fix folder for ci 2024-01-22 20:28:54 +01:00
72030e6c69
gitea: Move machine-specific module to machine config 2024-01-22 20:27:45 +01:00
4f9b088afb
valkyrie: Move machine-specific modules to machine config 2024-01-22 20:05:24 +01:00
5cf877e9ba
frigate: Move machine-specific module to machine config 2024-01-22 19:53:38 +01:00
6fd1466e1f
mimir: Install attic-client 2024-01-19 16:07:03 +01:00
81130b5b6e
mimir: Remove rtl88x2bu because it doesn't build. Add ddccontrol 2024-01-18 09:44:48 +01:00
0793b93a0a
odin: Tweak kernel settings for caddy, open port 2024-01-17 09:40:26 +01:00
2eadea3351
Add nix-cache to machines 2024-01-17 09:39:37 +01:00
9494fd52d0
Set up a Nix binary cache with attic 2024-01-17 09:32:27 +01:00
e590918785
k3s does not need the override anymore 2024-01-10 21:57:02 +01:00
cea7eec04f
odin: add nix-ld, remove cockpit, add kmod to incus PATH 2024-01-10 21:54:54 +01:00
19e3f59f86
loki: remove lxd 2024-01-10 21:54:29 +01:00
f8f8054d79
Add k3s-test 2024-01-10 21:54:11 +01:00
7a72cacdaf
Remove terraform stuff 2024-01-09 22:25:14 +01:00
0f6d55acbb
loki: Minor restructuring of systemd config 2024-01-06 13:45:30 +01:00
4495a65881
Add odin to machines, add tag to heimdall 2024-01-06 13:45:01 +01:00
513d5ad981
loki: Add incus 2024-01-03 01:16:06 +01:00
ce100e6622
odin: Open firewall for cockpit 2024-01-03 01:15:28 +01:00
d99ac2d3f7
Finish configuration for odin on NUC, update containers for Incus 2024-01-02 22:37:05 +01:00
4981027e89
mimir: Enable AppArmor 2023-12-20 11:46:59 +01:00
fd34c27e31
mimir: Remove commented out imports 2023-12-20 11:46:41 +01:00
ae7c163446
mimir: Enable nftables 2023-12-20 11:46:13 +01:00
5c7e7b147d
loki: Set up nix-ld 2023-12-20 11:38:26 +01:00
5f971a03d9
tailscale: Move to separate module 2023-12-20 11:34:47 +01:00
e6f7adb423
docker: Update module to reflect it is actually configuring podman 2023-12-20 11:25:45 +01:00
fb2ccf201f
Add nix-ld-rs 2023-12-08 16:39:57 +01:00
82402b383e
loki: Disable microvms 2023-12-06 08:34:33 +01:00
51fc7131c1
greetd: Make input and output configurable 2023-11-30 11:50:10 +01:00
bbeba689c3
unifi: Use package from nixpkgs 2023-11-30 09:00:20 +01:00
4915fcbd57
Merge branch 'main' of git.datarift.nl:erwin/nixos-config 2023-11-20 17:11:18 +01:00
d0ce383517
mimir, loki: Enable sudo-rs 2023-11-20 17:03:05 +01:00
08e5d92849
mimir: Disable kanata 2023-11-17 16:54:03 +01:00
37b9e4585f
loki: Get root user info for microvms from module 2023-11-14 14:46:22 +01:00
5a5c08244e
mimir: Disable envfs due to issue with Linux 6.6 2023-11-10 16:46:12 +01:00
902e854d17
loki: Increase k3s data disk size 2023-11-08 09:29:43 +01:00
3da0487fd7
loki: Create k3s cluster with microvm 2023-11-03 00:08:00 +01:00
c1e598e12e
machines: Use Tailscale hostname 2023-10-30 09:35:42 +01:00
dc46c12ec5
loki: Enable jack support in pipewire 2023-10-23 08:13:07 +02:00
2d030921ff
heimdall: Allow caddy to get certificates 2023-10-23 08:10:12 +02:00
00caf20b11
machines: Disable thor deployment config 2023-10-19 08:37:58 +02:00
8273b31f40
proxy: Update SHA256 for caddy cloudflare plugin 2023-10-19 08:37:03 +02:00
ae4b4f70f6
mimir: Remove guacamole 2023-10-19 08:35:30 +02:00
3c12099de6
mimir: Bind guacd on localhost (the default) 2023-10-09 16:27:50 +02:00
e450bc04ef
mimir: Add lenovo-dev to guacamole as test 2023-10-09 16:21:03 +02:00
2387d94ab0
mimir: Explicitly set port in guacamole 2023-10-09 16:08:24 +02:00
e6b7035816
mimir: Add guacamole-client 2023-10-09 16:03:50 +02:00
aefe14b32c
mimir: update guacamole config 2023-10-09 16:00:18 +02:00
7fe1e14d38
mimir: Configure guacamole for RDP 2023-10-09 15:45:26 +02:00
5456adbb8f
mimir: enable gnome-remote-desktop 2023-10-09 15:34:29 +02:00
6539ebc6a2
mimir: Enable guacamole VNC server as test 2023-10-09 14:56:16 +02:00
13065aced9
loki: Set correct wallpaper for greetd 2023-10-09 14:39:38 +02:00
55a756813a
Move teamviewer option, set greetd wallpaper 2023-10-05 14:59:31 +02:00
7a9674a1aa
loki: Minor refactor 2023-10-05 14:58:32 +02:00
1d8bbcde53
Add udev rules for sandisk USB drive 2023-09-29 11:53:36 +02:00
56a7fe64a5 Initial transfer to sway on work PC (#2)
Reviewed-on: #2
2023-09-29 11:52:45 +02:00
5480e4be81
Fix statix warnings 2023-09-13 14:50:03 +02:00
ec9bd24303
loki: Several changes:
- Use linuxPackages_latest
- Remove TPM2 configuration due to breaking stuff
- Remap some buttons on ELECOM trackball
- Enable U2F for PAM
- Configure some disk stuff for encrypted USB drive
2023-09-11 20:16:06 +02:00
b82b0d1204
proxy: update caddy vendor SHA256 2023-09-11 20:13:08 +02:00
b62e559630
Add backups for minio data 2023-09-11 20:12:52 +02:00
3e3eaafbe4
frigate: Remove some unused configuration 2023-09-06 16:58:54 +02:00
8952c28b60
Add container for unifi controller 2023-09-06 16:56:20 +02:00
b30b23719d
mimir: Use linuxPackages_latest 2023-08-30 12:28:04 +02:00
4f0c66b77b
loki: Update kernel to 6.4, enable TPM2, open some ports for Sonos 2023-08-19 19:39:23 +02:00
86456b6b41
Remove unused files 2023-08-10 16:45:36 +02:00
e857fb28cb
Use caddy as proxy in place of nginx-proxy-manager 2023-08-10 16:43:46 +02:00
4af469403b
Consolidate configuration for mimir 2023-08-03 10:42:12 +02:00
36afbcaa71
loki: Consolidate configuration 2023-07-18 10:52:44 +02:00
a4426075ff
valkyrie: Add tailscale0 to trusted interfaces 2023-07-05 10:08:42 +02:00
b166249fdd
mimir: Add tailscale0 to trusted interfaces 2023-07-05 10:07:18 +02:00
083d298366
loki: Several tweaks
- Disable libvirtd
- Explicitly enable DHCP on enp4s0
- Disable ssh-agent
- Add gamemode
2023-07-04 20:32:16 +02:00
4a7f817e71
heimdall: Disable headscale 2023-07-04 20:31:56 +02:00
9fb87ca6f9
docker: make it actually podman 2023-07-04 20:30:36 +02:00
b041bae420
Tweak some stuff, clean up some other stuff 2023-07-04 20:29:59 +02:00
d4c17e1989
Disable ssh-agent in favour of gnome keyring 2023-06-23 14:15:11 +02:00
d65073c697
Switch CI to woodpecker 2023-06-19 08:19:00 +02:00
99f1c28019
Fix gitea backups 2023-06-08 10:03:45 +02:00
a40ec7d1f3
valkyrie: Standalone AdGuard Home container 2023-06-07 08:34:16 +02:00
5010935ae3
heimdall: Add WebFinger placeholder 2023-06-02 10:25:19 +02:00
dcbc1c7757
mimir: Update to linux 6.3 2023-06-01 16:59:30 +02:00
c348b4f5eb
heimdall: Add Keycloak 2023-06-01 16:59:19 +02:00
6a2473628b
Re-encrypt secrets 2023-06-01 16:06:50 +02:00
299a4e4b36
Updates 2023-05-30 15:36:25 +02:00
2983121a35
thor: Switch to i3 2023-05-28 13:22:28 +02:00
379b4602ae
Update to Linux 6.3 2023-05-28 12:48:51 +02:00
92b18ae0d8
Add home-manager configuration for regin 2023-05-25 08:07:45 +02:00
b73a53c427
Remove kernel option from base module 2023-05-25 08:01:53 +02:00
5ea0ffb901
Remove eitri 2023-05-23 17:13:47 +02:00
60b9355ada
Add tailscale to all machines 2023-05-23 17:12:31 +02:00
b7dc99ee02
Move appimage-run to machine config 2023-05-21 17:12:14 +02:00
e827899b1c
Enable docker module for drone 2023-05-21 17:11:42 +02:00
55df110124
Add Kanata to manage keyboard layout 2023-05-17 08:06:05 +02:00
252126317a
thor: Add deploy config, desktop stuff, enable GPU modesetting 2023-05-15 14:29:56 +02:00
68a3447d8e
Mouse and keyboard tweaks 2023-05-12 15:07:35 +02:00
e8eb2145e7
Enable server profile on proxy 2023-05-10 15:13:50 +02:00
675a893101
Open SteamLink ports 2023-05-10 15:13:24 +02:00
10e410e233
Add thor 2023-05-07 17:00:43 +02:00
cb20e79b33
headscale: DNS tweaks 2023-05-05 19:47:12 +02:00
d7d2f5df55
mimir: disable NetworkManager 2023-04-21 11:20:56 +02:00
c8344547e2
odin: Update disko configuration 2023-04-21 11:20:21 +02:00