depot/ops/nixos
Luke Granger-Brown 080577e0f3 swann: fix tailscale outbound
Tailscale adds a policy-based routing rule at priority 5200-ish, which is
before all the rules that we add. This avoids any Tailscale traffic going
out... over Tailscale, which would be bad.

Anyway, this breaks us because our main table is empty, so there's nowhere
for the Tailscale traffic to actually go. Oops.

Instead, use policy-based routing to send things over our WG tunnel, or over
any of our upstream connections depending on what's available.
2022-03-02 00:32:31 +00:00
..
blade-chakotay ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
blade-janeway ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
blade-kim ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
blade-paris ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
blade-torres ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
blade-tuvok blade-tuvok: add the forced-MAC's LL address 2022-01-30 17:54:59 +00:00
bvm-heptapod ops/nixos: migrate nix.maxJobs/binaryCaches/trustedBinaryCaches to the nix.settings equivalents 2022-01-30 20:30:20 +00:00
bvm-ipfs ipfs: add to pomerium, explicitly set IPs for swarm 2021-04-18 16:24:59 +00:00
bvm-logger ops/nixos: more cleanups 2022-01-09 00:22:52 +00:00
bvm-matrix ops/nixos: tidy up security.acme 2022-01-04 14:00:45 +00:00
bvm-minecraft bvm-minecraft: java 8 :( 2021-05-24 02:46:48 +00:00
bvm-netbox ops/nixos: migrate from services.redis to services.redis.servers."" 2021-12-24 02:02:57 +00:00
bvm-nixosmgmt nhsenglandtests: init 2021-12-31 07:00:32 +00:00
bvm-prosody ops/nixos: tidy up security.acme 2022-01-04 14:00:45 +00:00
bvm-radius bvm-radius: take roaming2 out of the rotation 2022-01-23 17:57:52 +00:00
bvm-twitterchiver depot: fixups 2021-12-08 02:37:12 +00:00
clouvider-fra01 ops/nixos: migrate nix.maxJobs/binaryCaches/trustedBinaryCaches to the nix.settings equivalents 2022-01-30 20:30:20 +00:00
clouvider-lon01 ops/factorio/multiworld: prohibit /ws while hand-crafting 2022-02-05 21:04:03 +00:00
etheroute-lon01 ops/nixos: migrate nix.maxJobs/binaryCaches/trustedBinaryCaches to the nix.settings equivalents 2022-01-30 20:30:20 +00:00
frantech-las01 ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
frantech-lux01 ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
frantech-nyc01 ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
howl ops/nixos: migrate nix.maxJobs/binaryCaches/trustedBinaryCaches to the nix.settings equivalents 2022-01-30 20:30:20 +00:00
installcd ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
lib porcorosso-wsl: add keychain 2022-02-27 19:44:48 +00:00
netboot ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
porcorosso porcorosso: remove defunct nvidiaWayland option 2022-02-13 21:29:00 +00:00
swann swann: fix tailscale outbound 2022-03-02 00:32:31 +00:00
totoro totoro: adjust to new Home Assistant settings style 2022-02-22 03:56:49 +00:00
assimilate.sh licensing: Apache-2.0, make almost reuse-lint clean 2020-06-07 15:03:12 +01:00
default.nix ops/nixos: rm marukuru 2022-01-06 15:55:21 +00:00
install.sh ops/nixos: add other blade hosts 2021-02-08 22:26:22 +00:00