0c458988de
ops/nixos: misc cleanups
2022-03-11 03:27:58 +00:00
f0e645fccb
swann: add lukegb01.ring.nlnog.net to smokeping prober
2022-03-03 18:44:56 +00:00
080577e0f3
swann: fix tailscale outbound
...
Tailscale adds a policy-based routing rule at priority 5200-ish, which is
before all the rules that we add. This avoids any Tailscale traffic going
out... over Tailscale, which would be bad.
Anyway, this breaks us because our main table is empty, so there's nowhere
for the Tailscale traffic to actually go. Oops.
Instead, use policy-based routing to send things over our WG tunnel, or over
any of our upstream connections depending on what's available.
2022-03-02 00:32:31 +00:00
cbabb6f211
ops/nixos: migrate nix.maxJobs/binaryCaches/trustedBinaryCaches to the nix.settings equivalents
2022-01-30 20:30:20 +00:00
4b14ea5b4d
ops/nixos: remove rebuilder
...
It's in the common profile, we don't need it everywhere.
2022-01-23 16:57:20 +00:00
eb3b306439
Backed out changeset 073cf55ed346
...
Mischief managed
2022-01-15 13:32:47 +00:00
687d72cfdc
ops/nixos: experiment with ECMP
2022-01-15 13:32:41 +00:00
9be6bcaf2d
ops/nixos: set up gnetwork link
2022-01-14 19:42:06 +00:00
ad95bffd3d
ops/nixos: tidy up networking.useDHCP
2022-01-08 21:45:18 +00:00
6cfcd10e06
swann: use the router's public IP when making connections
...
For v6, the link is on an unrouted subnet so there's no way to address it from
outside. We don't want Linux to use the v6 subnet for connections it makes, so
we ask politely that the source on the route is actually an IP address that we
Like.
2022-01-01 02:11:59 +00:00
3458c7766e
swann: switch from prod.euw1.riotgames.com to euw1.api.riotgames.com
...
The former appears to resolve, but no longer respond to ICMP ping (even from a
different network). Switch to the documented API endpoint, which still
responds to ICMP ping.
2022-01-01 01:31:56 +00:00
8b3e77de1e
swann: coredns shouldn't bind to 127.0.0.53 because systemd-resolved wants it
2021-12-31 23:52:57 +00:00
ca6de1910d
swann: services.unifi.openPorts -> openFirewall
2021-12-24 02:03:36 +00:00
d99fe8b153
depot: fixups
2021-12-08 02:37:12 +00:00
29f7073384
ops/nixos: compatibility with NixOS 22.05
2021-12-07 19:13:04 +00:00
c535655086
totoro/swann: do shenanigans with PS5 RTMP
2021-09-30 17:10:52 +00:00
fb16bea95c
swann: give PS5 a static IP
2021-09-30 16:07:12 +00:00
a8718864c1
swann: configure for eduroam on VLAN 100
2021-09-25 17:38:21 +00:00
4bb015ee0d
swann: use IPv6 endpoint for tuvok over EE
...
EE uses CGNAT on IPv4, which makes this... less than ideal. However, IPv6 is
IPv6 and works pretty reasonably.
2021-09-03 12:40:52 +00:00
d35a0a35ba
swann: ee-scrape-data must output data with a newline
2021-09-02 19:23:03 +00:00
58b87a9f0e
swann: add ee-scrape-data, for putting allowance data into prometheus
2021-09-02 19:19:53 +00:00
e95324c175
swann: yes, this one
2021-08-31 02:29:56 +00:00
2d0a607383
ops/nixos: enable bird-exporter-lfty
2021-08-31 02:26:50 +00:00
7134fe904a
ops/nixos: implement BFD+WG tunneling for mldn-rd
2021-08-30 19:58:21 +01:00
1557066375
coredns: allow tailscale net
2021-07-16 01:32:54 +00:00
ded652a595
swann: change MAC address of VM-facing interface
2021-07-15 12:18:07 +00:00
78da7c9f4d
swann: disable radvd/ndppd, add static IP for xerox printer
2021-07-15 11:55:10 +00:00
73b1e96727
swann: use /dev/null as /etc/hosts file for coredns
2021-05-31 23:54:07 +00:00
7195ed24c4
swann: change hosts lookup
2021-05-31 23:09:37 +00:00
bb06285f6d
swann: map www.nhs.uk to Akamai IPv6 address
2021-05-21 15:22:34 +00:00
63ecd2d0ab
swann: metric is a string field
2021-05-15 19:38:46 +00:00
9cee25b83c
swann: use unifi rather than unifiLTS
2021-05-15 20:33:13 +01:00
098d3f4aae
swann: add dedi2.eq2.co.uk to smokeping
2021-05-13 16:33:40 +00:00
4fb2a9e8e3
swann: tighten up IPv6 config
2021-05-13 10:14:42 +00:00
564c803136
swann: accept-ra on ens-virginmedia
2021-05-12 18:20:45 +00:00
ddfb0d084d
swann: fix interface name
2021-05-12 18:19:09 +00:00
865329da21
swann: sneakily allocate myself :2
2021-05-12 18:15:57 +00:00
6ae099999f
swann: enable ndppd/radvd
2021-05-12 18:12:41 +00:00
258d62613f
ops/nixos/swann: drop unifiPackage, switch back to stock
2021-04-13 17:15:42 +00:00
bfa7051e2f
ops/nixos: tidy up hostnames
2021-04-10 20:15:30 +00:00
b7bd209b5e
swann: forward IPFS ports to totoro
2021-01-15 03:41:24 +00:00
c92fe8b139
swann: switch to unifiHacked
2021-01-04 20:52:13 +00:00
b2d8acd4b9
swann: swap unifiPackage to pkgs.unifi
...
unifiBeta is no more: https://github.com/NixOS/nixpkgs/pull/107797
2020-12-31 01:31:01 +00:00
6317f7ffba
swann: enable Prometheus smokeping_prober
2020-12-29 18:57:18 +00:00
26352c7065
ops/nixos: add ability to define additional things to be scraped, use this for coredns
2020-11-18 02:02:23 +00:00
588a47e97f
swann: set swann as DNS server for DHCP
2020-11-18 01:50:16 +00:00
68deb62b38
swann: enable coredns and use google public DNS over TLS
2020-11-18 01:49:44 +00:00
087d774b56
swann: forward port 80 and 443 to totoro
2020-11-18 01:31:57 +00:00
65c2fce8a7
swann: add unifi-poller
2020-11-06 05:02:05 +00:00
82c751a6e4
swann: install Unifi controller
2020-11-04 21:53:14 +00:00