86539ec1f2
totoro: bump system.stateVersion
2022-10-08 22:05:50 +01:00
f216bbad29
ops/nixos: services.ipfs --> services.kubo
2022-10-08 21:20:04 +01:00
c16856f8ab
treewide: add my.ip.tailscale6
2022-09-02 00:22:16 +01:00
e25a1ba6c4
depotwide: fix stuff
2022-08-14 21:01:26 +01:00
5c1742e13f
depotwide: add google-cloudflare role
2022-08-10 01:51:46 +01:00
5f19f9d783
totoro: add gateway
2022-06-25 17:43:30 +00:00
a5fb805dfa
totoro: set default gateway. oops.
2022-06-25 17:35:49 +00:00
dd10a6ba6b
totoro: switch to networkd
2022-06-19 20:34:43 +00:00
bfe2fb1707
totoro: add deluge, expose content share over Samba
2022-06-19 00:55:31 +00:00
bf601faa89
nix/pkgs/authentik: init
2022-05-12 22:55:10 +00:00
fa8f317d6f
totoro: add firewall rule for Lifx
2022-04-06 01:00:55 +01:00
7592e76a31
tokend: init
...
tokend is responsible for issuing service-scoped tokens based on the token held
and generated by the Vault Agent.
It can also generate "server-user" scoped tokens, which exist for convenience's
sake: they are not a strong attestation of the user on the machine, and have
limited privileges compared to a Vault token issued using e.g. `vault login
-method=oidc`.
2022-03-20 17:47:52 +00:00
b719181dfe
nixos: migrate to secretsmgr for sshd and ACME
2022-03-17 23:31:55 +00:00
b469b24c5a
totoro: add live2 alias
2022-03-14 21:28:58 +00:00
a66bd4822a
totoro: disable RP filter
2022-03-11 18:45:41 +00:00
e50f682237
totoro: remove cloudflare credentials from raritan-sslrenew
2022-03-11 03:46:31 +00:00
daccfa5717
ops/nixos: migrate everything to vault-agent-acme
2022-03-07 00:52:03 +00:00
8be4fe603e
vault-agent-acme: init
2022-03-06 22:26:49 +00:00
a3eb1e4519
totoro: enable samba
2022-03-05 11:56:22 +00:00
cbabb6f211
ops/nixos: migrate nix.maxJobs/binaryCaches/trustedBinaryCaches to the nix.settings equivalents
2022-01-30 20:30:20 +00:00
4729529b4d
totoro: move plex stuff onto a macVLAN interface
2022-01-23 17:58:04 +00:00
4b14ea5b4d
ops/nixos: remove rebuilder
...
It's in the common profile, we don't need it everywhere.
2022-01-23 16:57:20 +00:00
3eb564f12b
ops/nixos: factor out various things from clouvider-fra01
2022-01-23 16:58:29 +00:00
afae9bec9a
totoro: add some home-assistant gubbins
2022-01-17 02:38:33 +00:00
ad95bffd3d
ops/nixos: tidy up networking.useDHCP
2022-01-08 21:45:18 +00:00
506a584dea
totoro: set up podman socket support
2022-01-08 12:08:04 +00:00
5001971b87
totoro: add bvm-.* alerts
2022-01-06 17:51:39 +00:00
6ab12dcad5
ops/nixos: rm marukuru
2022-01-06 15:55:21 +00:00
d79265ddad
ops/nixos: tidy up security.acme
2022-01-04 14:00:45 +00:00
93a070870a
nix/pkgs/baserow: hooray, it works
2021-12-21 05:48:40 +00:00
1eda43af34
go/trains: go! trains!
2021-11-23 12:32:01 +00:00
6d21c17a2a
totoro: increase ping latency threshold
2021-11-18 21:36:22 +00:00
84c965f7cd
totoro: give postgresql more resources to play with
2021-11-18 20:40:28 +00:00
0621fbfbf1
go/streetworks: init, schedule on totoro
2021-11-08 20:08:56 +00:00
94470110ed
totoro: scrape prometheus data from 2112 for trains
2021-11-07 18:14:42 +00:00
72a2867e63
ops/nixos: enable X11 forwarding for some hosts
2021-11-05 01:29:53 +00:00
c535655086
totoro/swann: do shenanigans with PS5 RTMP
2021-09-30 17:10:52 +00:00
edfc04551a
totoro: set for duration on BFD alert
2021-09-02 19:24:17 +00:00
683e6ffc21
totoro: add alert for BFD session failure
2021-09-02 18:35:18 +00:00
4c5f3f2d38
totoro: add raritan-sslrenew service
2021-07-17 01:45:31 +00:00
5fdf26f3e8
totoro: add alerts for smokeping
2021-07-13 00:55:53 +00:00
b91ba12f0f
totoro: monitor minotarproxy
2021-06-28 21:17:48 +00:00
4d8968b712
totoro: remove OME
2021-05-21 23:50:46 +00:00
dfb62d8c7e
totoro: switch to postgresql_13
2021-04-25 21:44:05 +00:00
f3a99c40d3
totoro: oops, indent
2021-04-20 14:48:00 +00:00
6cba0be3b5
totoro: move all rules into a single group
2021-04-20 14:35:23 +00:00
eb9b1a43c0
Backed out changeset 4c2687c43d66
2021-04-20 14:18:45 +00:00
02ca2a46be
totoro: attempt to repair rules by adding more blanks
2021-04-20 14:11:38 +00:00
3c48f56f6e
totoro: track NixOS channels in my local Prometheus
2021-04-20 14:00:17 +00:00
bfa7051e2f
ops/nixos: tidy up hostnames
2021-04-10 20:15:30 +00:00
