Commit graph

98 commits

Author SHA1 Message Date
e9b55e00a9 totoro: configure openvscode-server to listen on tailscale on v6 2023-08-19 22:43:47 +00:00
ddfb67cdd1 totoro: enable openvscode-server 2023-08-19 21:13:16 +00:00
dda412fa6c totoro: coventry -> coventry-2 2023-07-28 21:13:44 +00:00
dba2db07b1 patch minor incompatibilities with 3p/nixpkgs update 2023-07-01 12:53:49 +00:00
7fe7452e2f ops/nixos: add tumblrandom 2023-04-18 20:05:51 +00:00
03dc26854e totoro: services.openssh.forwardX11 -> services.openssh.settings.X11Forwarding 2023-03-12 14:19:54 +00:00
4daa3a593a nixbuild-distributed: create 2023-03-09 21:33:42 +00:00
a17cc6e422 totoro: enable NFS 2023-03-09 21:33:22 +00:00
3fdced1c68 kerrigan: init MochaBin 2023-01-17 19:36:53 +00:00
f053953bb6 ops/raritan: migrate to using vault for username/password 2023-01-15 16:37:30 +00:00
ff0eff593d totoro: tweak alertmanager setup 2023-01-14 22:24:01 +00:00
77c4d9d7c2 totoro: ADSB 2023-01-09 02:09:04 +00:00
f143d0be51 3p/nixpkgs: post-bump fixups 2022-10-31 21:41:42 +00:00
86539ec1f2 totoro: bump system.stateVersion 2022-10-08 22:05:50 +01:00
f216bbad29 ops/nixos: services.ipfs --> services.kubo 2022-10-08 21:20:04 +01:00
c16856f8ab treewide: add my.ip.tailscale6 2022-09-02 00:22:16 +01:00
e25a1ba6c4 depotwide: fix stuff 2022-08-14 21:01:26 +01:00
5c1742e13f depotwide: add google-cloudflare role 2022-08-10 01:51:46 +01:00
5f19f9d783 totoro: add gateway 2022-06-25 17:43:30 +00:00
a5fb805dfa totoro: set default gateway. oops. 2022-06-25 17:35:49 +00:00
dd10a6ba6b totoro: switch to networkd 2022-06-19 20:34:43 +00:00
bfe2fb1707 totoro: add deluge, expose content share over Samba 2022-06-19 00:55:31 +00:00
bf601faa89 nix/pkgs/authentik: init 2022-05-12 22:55:10 +00:00
fa8f317d6f totoro: add firewall rule for Lifx 2022-04-06 01:00:55 +01:00
7592e76a31 tokend: init
tokend is responsible for issuing service-scoped tokens based on the token held
and generated by the Vault Agent.

It can also generate "server-user" scoped tokens, which exist for convenience's
sake: they are not a strong attestation of the user on the machine, and have
limited privileges compared to a Vault token issued using e.g. `vault login
-method=oidc`.
2022-03-20 17:47:52 +00:00
b719181dfe nixos: migrate to secretsmgr for sshd and ACME 2022-03-17 23:31:55 +00:00
b469b24c5a totoro: add live2 alias 2022-03-14 21:28:58 +00:00
a66bd4822a totoro: disable RP filter 2022-03-11 18:45:41 +00:00
e50f682237 totoro: remove cloudflare credentials from raritan-sslrenew 2022-03-11 03:46:31 +00:00
daccfa5717 ops/nixos: migrate everything to vault-agent-acme 2022-03-07 00:52:03 +00:00
8be4fe603e vault-agent-acme: init 2022-03-06 22:26:49 +00:00
a3eb1e4519 totoro: enable samba 2022-03-05 11:56:22 +00:00
cbabb6f211 ops/nixos: migrate nix.maxJobs/binaryCaches/trustedBinaryCaches to the nix.settings equivalents 2022-01-30 20:30:20 +00:00
4729529b4d totoro: move plex stuff onto a macVLAN interface 2022-01-23 17:58:04 +00:00
4b14ea5b4d ops/nixos: remove rebuilder
It's in the common profile, we don't need it everywhere.
2022-01-23 16:57:20 +00:00
3eb564f12b ops/nixos: factor out various things from clouvider-fra01 2022-01-23 16:58:29 +00:00
afae9bec9a totoro: add some home-assistant gubbins 2022-01-17 02:38:33 +00:00
ad95bffd3d ops/nixos: tidy up networking.useDHCP 2022-01-08 21:45:18 +00:00
506a584dea totoro: set up podman socket support 2022-01-08 12:08:04 +00:00
5001971b87 totoro: add bvm-.* alerts 2022-01-06 17:51:39 +00:00
6ab12dcad5 ops/nixos: rm marukuru 2022-01-06 15:55:21 +00:00
d79265ddad ops/nixos: tidy up security.acme 2022-01-04 14:00:45 +00:00
93a070870a nix/pkgs/baserow: hooray, it works 2021-12-21 05:48:40 +00:00
1eda43af34 go/trains: go! trains! 2021-11-23 12:32:01 +00:00
6d21c17a2a totoro: increase ping latency threshold 2021-11-18 21:36:22 +00:00
84c965f7cd totoro: give postgresql more resources to play with 2021-11-18 20:40:28 +00:00
0621fbfbf1 go/streetworks: init, schedule on totoro 2021-11-08 20:08:56 +00:00
94470110ed totoro: scrape prometheus data from 2112 for trains 2021-11-07 18:14:42 +00:00
72a2867e63 ops/nixos: enable X11 forwarding for some hosts 2021-11-05 01:29:53 +00:00
c535655086 totoro/swann: do shenanigans with PS5 RTMP 2021-09-30 17:10:52 +00:00