02bd3e4d31
bvm-nixosmgmt: enable forwarding
2021-07-17 08:41:34 +00:00
4c5f3f2d38
totoro: add raritan-sslrenew service
2021-07-17 01:45:31 +00:00
1557066375
coredns: allow tailscale net
2021-07-16 01:32:54 +00:00
ded652a595
swann: change MAC address of VM-facing interface
2021-07-15 12:18:07 +00:00
78da7c9f4d
swann: disable radvd/ndppd, add static IP for xerox printer
2021-07-15 11:55:10 +00:00
5fdf26f3e8
totoro: add alerts for smokeping
2021-07-13 00:55:53 +00:00
eea81a640e
coredns: add bvm-plesk
2021-07-10 12:19:24 +00:00
9f5c1193b6
hgrc: tweak my settings along the lines of https://octobus.net/blog/2020-11-26-modern-mercurial.html
2021-07-03 19:02:18 +00:00
8b37f0fea4
clouvider-fra01: bump limits
2021-07-03 00:46:07 +00:00
66b6252d6f
clouvider-lon01: withdraw 92.118.29.0/24
2021-07-03 00:14:54 +00:00
606ff984eb
ops/nixos: minotarproxy-as-a-lib
2021-07-01 01:48:12 +00:00
b91ba12f0f
totoro: monitor minotarproxy
2021-06-28 21:17:48 +00:00
cadeef609f
hm/hgrc: switch from hggit to in-tree git
2021-06-22 20:48:11 +00:00
072cecb2e5
hm/gc-wayland: oops, no notification attr
2021-06-22 20:27:52 +00:00
eef598ec1f
hm/graphical-client: add 1password to startup
2021-06-19 19:07:32 +01:00
f77cbec2db
porcorosso: never mind, just nvidia
2021-06-19 18:33:50 +01:00
8c75ce4ecc
porcorosso: try out nouveau+modesetting?
2021-06-19 18:31:21 +01:00
eba082c249
etheroute-lon01: renumber BGP session from 16089 to 3170
2021-06-11 12:28:30 +00:00
73b1e96727
swann: use /dev/null as /etc/hosts file for coredns
2021-05-31 23:54:07 +00:00
7195ed24c4
swann: change hosts lookup
2021-05-31 23:09:37 +00:00
c56b6b358f
coredns: add blade-{oa,vcenet1,vcenet2,vcm}
2021-05-24 13:54:14 +00:00
5c88acf507
bvm-matrix: add turns as well
2021-05-24 13:53:47 +00:00
8f724ba140
bvm-minecraft: java 8 :(
2021-05-24 02:46:48 +00:00
1fc6e8f032
coredns: bump serials
2021-05-24 02:37:27 +00:00
98d5a362f2
bvm-matrix: enable experimental_features.spaces_enabled
2021-05-24 02:34:33 +00:00
499ff8f945
coredns: move bvm to root zone, out of public
2021-05-24 02:31:09 +00:00
aa334a1ec8
bvm-minecraft: add minecraft user, java 11
2021-05-24 02:18:04 +00:00
ed79fe89bd
bvm-minecraft: init
2021-05-24 01:32:58 +00:00
1c08774667
bvm-matrix: set more secrets
2021-05-23 01:35:10 +00:00
169524b65a
bvm-matrix: tweak Element config a bit
2021-05-22 23:26:02 +00:00
da13d6af17
bvm-matrix: fix element base_url
2021-05-22 23:22:58 +00:00
1f6fc87363
bvm-matrix: add element
2021-05-22 23:17:27 +00:00
4907f97d57
bvm-matrix: some more synapse configuration, enable postfix
2021-05-22 23:13:25 +00:00
d27b23b8b0
bvm-matrix: add macaroon secret key
2021-05-22 23:02:55 +00:00
320cc36312
bvm-matrix: fix DATABASE name in GRANT
2021-05-22 22:52:24 +00:00
38b306b095
bvm-matrix: add tailscale IP
2021-05-22 22:48:03 +00:00
477ca742bd
bvm-matrix: fix interface name (enp2s0)
2021-05-22 22:45:52 +00:00
4dc516722b
ops/nixos: add bvm-matrix
2021-05-22 21:48:13 +00:00
4d8968b712
totoro: remove OME
2021-05-21 23:50:46 +00:00
bb06285f6d
swann: map www.nhs.uk to Akamai IPv6 address
2021-05-21 15:22:34 +00:00
dccdaa2608
common: map www.nhs.uk to Akamai IPv6 address
2021-05-21 15:21:29 +00:00
63ecd2d0ab
swann: metric is a string field
2021-05-15 19:38:46 +00:00
9cee25b83c
swann: use unifi rather than unifiLTS
2021-05-15 20:33:13 +01:00
098d3f4aae
swann: add dedi2.eq2.co.uk to smokeping
2021-05-13 16:33:40 +00:00
4fb2a9e8e3
swann: tighten up IPv6 config
2021-05-13 10:14:42 +00:00
564c803136
swann: accept-ra on ens-virginmedia
2021-05-12 18:20:45 +00:00
ddfb0d084d
swann: fix interface name
2021-05-12 18:19:09 +00:00
865329da21
swann: sneakily allocate myself :2
2021-05-12 18:15:57 +00:00
6ae099999f
swann: enable ndppd/radvd
2021-05-12 18:12:41 +00:00
df870ded34
as205479.net: add fp-la{,-pri,-sec}
2021-05-09 11:28:28 +00:00
34117ecd00
bvm-nixosmgmt: allocate .5
2021-05-09 10:26:34 +00:00
b7cd20c769
ops/nixos: refactoring for sway
2021-05-06 03:56:20 +01:00
1c571d965a
ops/nixos: add wayland support
2021-05-05 22:13:27 +01:00
561501afb7
howl: wait, there is no eno1
2021-05-05 21:54:02 +01:00
49c1af6624
howl: don't wait for dhcpcd
2021-05-05 00:04:30 +00:00
38a405cb72
howl: add Tailscale IP
2021-05-05 00:01:34 +00:00
df6a1fe819
howl: suspend loop workaround
2021-05-05 21:48:17 +01:00
c31da4140c
ops/nixos/howl: init
2021-04-29 12:16:49 +00:00
dfb62d8c7e
totoro: switch to postgresql_13
2021-04-25 21:44:05 +00:00
a4631a8fda
ops/nixos/lib/blade: set rgw_data_log_backing back to omap
2021-04-23 13:32:34 +00:00
f3a99c40d3
totoro: oops, indent
2021-04-20 14:48:00 +00:00
6cba0be3b5
totoro: move all rules into a single group
2021-04-20 14:35:23 +00:00
eb9b1a43c0
Backed out changeset 4c2687c43d66
2021-04-20 14:18:45 +00:00
02ca2a46be
totoro: attempt to repair rules by adding more blanks
2021-04-20 14:11:38 +00:00
3c48f56f6e
totoro: track NixOS channels in my local Prometheus
2021-04-20 14:00:17 +00:00
36cc88bcef
ipfs: add to pomerium, explicitly set IPs for swarm
2021-04-18 16:24:59 +00:00
42e8b1eed0
bvm-ipfs: add public IPv4/v6 addresses
2021-04-18 16:04:25 +00:00
2ee3044113
switch-prebuilt: use nix build instead of nix copy to use cache.nixos.org
2021-04-17 23:55:31 +00:00
43e8e05e7b
ops/nixos: tweak alacritty settings
2021-04-17 20:28:27 +01:00
11066035e2
ops/nixos: add alacritty everywhere
2021-04-17 20:17:43 +01:00
0372f4b848
ops/nixos: set isNormalUser for all existing users
...
Now there's an assertion which requires either isNormalUser or isSystemUser, so
we set one of them for all the users we have already.
2021-04-17 20:16:27 +01:00
258d62613f
ops/nixos/swann: drop unifiPackage, switch back to stock
2021-04-13 17:15:42 +00:00
4707c69469
bvm-nixosmgmt: add nix to rundeck
2021-04-10 23:12:24 +00:00
c398482f7b
bvm-nixosmgmt: add openssh to path
2021-04-10 22:35:53 +00:00
e0241545d2
add mercurial to rundeck path
2021-04-10 22:17:28 +00:00
0ea95ab402
blade-{chakotay,kim}: disable rundeck; expected offline
2021-04-10 20:16:44 +00:00
bfa7051e2f
ops/nixos: tidy up hostnames
2021-04-10 20:15:30 +00:00
ecd086eae4
ops/nixos: set up things for generating rundeck nodes
2021-04-10 19:59:56 +00:00
5533fd502a
ops/nixos: try setting searchDomains differently
2021-04-10 19:40:10 +00:00
d96ef542d7
etheroute-lon01: set X-Forwarded-Roles header for rundeck
2021-04-10 19:22:54 +00:00
d9662bcd10
etheroute-lon01: add rundeck
2021-04-10 17:22:11 +00:00
00cb06aff2
bvm-nixosmgmt: add rundeck
2021-04-10 17:20:35 +00:00
91f6cb3317
clouvider-lon01: add mac-mini as remote builder
2021-04-09 18:14:06 +00:00
6465f98036
as205479.net: add mac-mini.int
2021-04-09 18:51:07 +01:00
02db8ea7cb
ops/nixos/lib/hm: support macOS again
...
The ntfy package expects to have pyobjc available when running under Darwin,
which is currently broken in nixpkgs. There's a fairly involved ongoing effort
to package it again, but in the mean time we just patch out the dep. I'm using
the pushover backend anyway.
To avoid having to rebuild it rather than just fetch from the NixOS cache, I
only override it when running on Darwin.
2021-04-09 18:48:46 +01:00
bb03f5ea0d
ops/nixos: fixups for upstream pomerium module
2021-04-07 00:46:15 +00:00
13f2f79e6d
graphical-client: add wallpapers
...
If I find more I like, I'll add them here, I guess. For the moment, there's
just the one.
2021-04-06 09:53:56 +01:00
f5622acaf7
nix/pkgs/flameshot: bump to my patched version
2021-04-05 14:57:59 +01:00
48bdb3559c
lib/hm/graphical-client: add flameshot to environment
2021-04-05 13:00:02 +01:00
21fe79c904
ops/nixos: enable flameshot on graphical-client hosts
2021-04-05 12:42:35 +01:00
549b4f1ccc
porcorosso: switch to pipewire
2021-04-05 12:40:41 +01:00
d582d3f352
ops/nixos/lib: inline latest_system_closure.sh
...
I can't be bothered to make it a proper script, and I also don't really want to
rely on invoking nix-shell at runtime (I'd rather have all the needed tools in
the system closure).
2021-04-04 19:35:38 +01:00
8dab1a04fe
ops/nixos/lib: fix latest_system_closure for machines with - in hostname
2021-04-04 19:25:02 +01:00
33cfba2e2f
ops/nixos/lib: enable 'switch-prebuilt latest' for getting latest closure
2021-04-04 18:25:01 +01:00
09a6c8cafe
marukuru: switch heptapod image to being built with dockerTools
...
Fixes #1
2021-04-02 01:39:01 +00:00
fe3f343ef9
bvm-prosody: configure prosody
2021-04-02 00:52:45 +00:00
fbc3b47854
bvm-prosody: fix :/
2021-04-01 15:55:54 +00:00
bcf1266bfe
bvm-prosody: configure IP addresses
2021-04-01 15:50:27 +00:00
bab069b286
bvm-twitterchiver: add twitterchiver-{relatedfetcher,archiver}
2021-04-01 00:22:57 +00:00
0961a68532
twitterchiver: add secrets
2021-03-31 23:52:38 +00:00
