Commit graph

2432 commits

Author SHA1 Message Date
2aabb7cc05
Add sway 2022-01-18 11:59:26 +01:00
f4a71cf513
Move sops secrets in the appropriate module 2022-01-18 11:36:50 +01:00
8c79f7450d
add wg0 interface 2022-01-18 11:33:32 +01:00
d446e8b3d9
specify root file system 2022-01-18 11:31:22 +01:00
a55234c127
add modulesPath 2022-01-18 11:27:45 +01:00
d9c5d1a88f
Add initial nutty-noon config 2022-01-18 11:24:42 +01:00
186a2e4202
Add homepage database for chir.rs 2022-01-18 08:41:47 +01:00
973a504aa3
Correct the branch used 2022-01-18 07:19:00 +01:00
268389e00d
add api.chir.rs vhost 2022-01-17 21:07:20 +01:00
cb40347dea
pkgs.chir-rs not just chir-rs 2022-01-17 20:54:58 +01:00
d9d0810c96
Add chir.rs for real 2022-01-17 20:53:47 +01:00
04baf4b6d4
Initial attempt at adding the chir.rs flake 2022-01-17 20:24:59 +01:00
c5b3fd596d
EnvFile -> EnvironmentFile 2022-01-17 17:09:51 +01:00
12f088ecc2
system.services -> systemd.services 2022-01-17 17:01:38 +01:00
066c79e1e3
correct path 2022-01-17 17:00:34 +01:00
dba69c50ad
Add old-homepage 2022-01-17 16:59:51 +01:00
85003ce415
access minio directly instead of via reverse proxy 2022-01-17 16:04:15 +01:00
487981d4bd
it's addSSL 2022-01-17 15:55:54 +01:00
74b667331e
Add static.darkkirb.de 2022-01-17 15:54:37 +01:00
6a0da9da7d
Make prometheus owner of miniso_scrape 2022-01-17 15:32:11 +01:00
ad28a6bd6e
remove duplicate minio_exporter 2022-01-17 15:26:51 +01:00
c8eb59176a
Fix the minio node exporter 2022-01-17 15:26:01 +01:00
3f8698ba8b
Revert "Add impure minio secret"
This reverts commit a5845170a3.
2022-01-17 15:22:36 +01:00
afe4cd6244
Revert "remove minio credentials file"
This reverts commit ac89c780da.
2022-01-17 15:22:22 +01:00
8a7cbe8161
fix scrape port 2022-01-17 14:34:22 +01:00
3c8a1ba923
Scrape gitea metrics 2022-01-17 14:32:52 +01:00
f69b8f0825
Move sessions and queues to redis, add metrics 2022-01-17 14:31:32 +01:00
ac89c780da
remove minio credentials file 2022-01-17 14:21:05 +01:00
a5845170a3
Add impure minio secret 2022-01-17 14:19:12 +01:00
19f19cea92
Remove obsolete EnvFile line 2022-01-17 13:53:07 +01:00
2b0a31e4bf
add tostring 2022-01-17 13:51:14 +01:00
33562009b1
host -> bind 2022-01-17 13:50:51 +01:00
c9dc7cb477
correct config option name 2022-01-17 13:50:25 +01:00
e4f1a1a40b
use config.services instead of services 2022-01-17 13:49:22 +01:00
7148fd2df4
Add redis cache to gitea 2022-01-17 13:48:48 +01:00
8657848bf1
Move gitea secret to sops 2022-01-17 12:00:18 +01:00
cb763b8d19
Fix the name of the secret 2022-01-17 11:57:37 +01:00
79ac7327b7
Update autoupdate URL 2022-01-17 11:55:43 +01:00
acdd39361d
Add a settings.default storage 2022-01-17 11:37:34 +01:00
366e5b0bba
Make gitea use postgres 2022-01-17 11:36:05 +01:00
6f032bae9e
Add impure secrets 2022-01-17 11:27:07 +01:00
e94fe95e23
Fix gitea endpoint 2022-01-17 11:05:02 +01:00
0dcc87cccc
Add gitea vhost 2022-01-17 10:53:15 +01:00
0b3456c988
Add gitea 2022-01-17 10:50:02 +01:00
d37baee9a9
Add tier support to minio 2022-01-17 09:48:05 +01:00
3bf4222598
Make minio console a separate subdomain 2022-01-17 08:35:35 +01:00
7072ae9a5f
acutally remove the broken dns 2022-01-17 08:16:29 +01:00
0a21670e23
Remove currently not working nameserver 2022-01-17 08:06:50 +01:00
0c35ba28f6
disable some collectors 2022-01-17 08:04:32 +01:00
8e67606ae8
Add minio to nginx 2022-01-17 08:02:56 +01:00
1fc5627543
Allow minio access from wg0 2022-01-16 21:42:58 +01:00
ab6bb384be
Add another ip 2022-01-16 21:22:28 +01:00
19bedc059e
add more ips 2022-01-16 21:20:34 +01:00
7c9687bb72
Move prometheus to port 9002 2022-01-16 21:14:47 +01:00
32339aa392
Add minio 2022-01-16 17:44:30 +01:00
1faa336925
Add postgresql backup 2022-01-15 21:58:11 +01:00
77496ef36f
run postgres_exporter as postgres 2022-01-15 21:53:08 +01:00
23d255bd39
Add postgres_exporter 2022-01-15 21:50:42 +01:00
a04474f478
fix auth method name 2022-01-15 21:46:08 +01:00
b13781009b
postgres->postgresql 2022-01-15 21:44:35 +01:00
6f4d9867aa
Add postgres 2022-01-15 21:41:55 +01:00
52450b7437
Add miifox user with quotas 2022-01-15 21:12:12 +01:00
e181f24c82
Add mobile device range to wireguard 2022-01-15 18:53:01 +01:00
2e02b7ea56
Use a domain name instead of ip address 2022-01-15 18:17:31 +01:00
5f66bae47b
Correct repository URL 2022-01-15 18:13:50 +01:00
03c84dd3b5
actually add restic to all systems 2022-01-15 18:11:38 +01:00
1caab69e9b
Add restic backups 2022-01-15 18:08:47 +01:00
2a9597cee5
Missed an = in the public key0 2022-01-15 17:57:34 +01:00
73a1e5b161
Add nas wireguard peer 2022-01-15 17:56:20 +01:00
615202a5e5
Add the darkkirb user config 2022-01-15 17:31:50 +01:00
0f8ebb8cc0
Add cpu load and battery status indicators 2022-01-15 17:13:40 +01:00
8a0ebbe0c0
Add p10k config 2022-01-15 17:03:02 +01:00
184e7f8108
Fix p10k 2022-01-15 16:54:18 +01:00
c97bd8a799
Add zsh 2022-01-15 16:09:02 +01:00
71881a6903
Use a local caching rdns 2022-01-15 15:03:51 +01:00
97265da7c0
Another missing semicolon also wrong allow statement 2022-01-15 14:48:28 +01:00
53c2de53d1
Add missing semicolon 2022-01-15 14:46:28 +01:00
a1a4ba1db2
add bind_exporter 2022-01-15 14:44:34 +01:00
fbcf829d8c
Add fail2ban 2022-01-15 12:57:44 +01:00
501757dd10
promtail -> promtrail 2022-01-15 12:09:28 +01:00
fccf67cc8e
add loki and promtrail 2022-01-15 12:08:46 +01:00
09b257d11d
Disable perf node exporter 2022-01-15 11:06:16 +01:00
3142447046
Add prometheus node_exporter scraper 2022-01-15 10:57:49 +01:00
8432ca4551
Add prometheus node exporter 2022-01-15 10:55:15 +01:00
34895dd22b
Add prometheus 2022-01-14 21:58:51 +01:00
777a71bfad
same shit 2022-01-14 21:55:47 +01:00
a1b7c7aa10
Disable http3 for now 2022-01-14 21:54:49 +01:00
2bd71cf986
Add nginx to the acme group so it can access the certs 2022-01-14 21:52:54 +01:00
1cf456b606
Actually do what the last commit was supposed to do 2022-01-14 21:24:20 +01:00
935a03a56a
Surround the IPv6 addresses in square brackets 2022-01-14 21:22:37 +01:00
c47551467c
Correct argument order of builtins.elemAt 2022-01-14 21:20:48 +01:00
5e8139dab8
Don't override the http config 2022-01-14 21:18:45 +01:00
9a8441f74e
Add ssl certificate 2022-01-14 21:12:11 +01:00
1020d9fb5a
Add grafana to nixos-8gb-fsn1-1 2022-01-14 21:06:22 +01:00
9c5c819490
Add Grafana 2022-01-14 21:05:57 +01:00
69d875f2fb
Make named a service 2022-01-14 20:56:02 +01:00
c668d6fbd3
Unblock TCP ports 2022-01-14 20:51:43 +01:00
f4c07fb59c
Add nginx to servers 2022-01-14 20:47:44 +01:00
601e3c55c1
add a default block in the acme config 2022-01-14 18:03:14 +01:00
459c5f3dbc
It was called extraDomainNames 2022-01-14 17:45:35 +01:00
99b8c155d9
Add acme certificates 2022-01-14 17:44:25 +01:00
4d9a804560
Add zone filenames 2022-01-14 17:06:32 +01:00
18eb8a944a
Put the zones key in the correct location 2022-01-14 17:02:12 +01:00
925f268b15
Add read-only-mirror for my zones 2022-01-14 17:01:20 +01:00
1a292b4f41
Fix firewall rules 2022-01-14 16:52:07 +01:00
8962988960
Make named autostart 2022-01-14 16:49:21 +01:00
01001d3142
Add named container 2022-01-14 16:47:24 +01:00
a0ba9c6b01
Add ubuntu-4gb-fsn1-1 peer 2022-01-14 15:47:37 +01:00
9801466a28
Set up wireguard 2022-01-14 15:38:01 +01:00
8d4b3370b4
Add wireguard secret 2022-01-14 15:16:58 +01:00
8f7ca40b9d
Add sops 2022-01-14 15:13:55 +01:00
a3246f97c1
Disable reboots 2022-01-14 14:17:09 +01:00
c804d43a59
Enable auto-update for all systems 2022-01-14 14:07:01 +01:00
1d9bddf1ba
add pkgs to scope 2022-01-14 14:04:11 +01:00
e589c77a8d
Add automatic maintenance 2022-01-14 14:03:14 +01:00
7c9d40e588
Change OriginalName to Name 2022-01-14 12:32:10 +01:00
354f6c454e
Use systemd-networkd instead 2022-01-14 12:29:33 +01:00
691c03e79a
ens3 -> enp0s3 2022-01-14 12:22:16 +01:00
3543e4a49b
Add ipv6 routes 2022-01-14 12:19:52 +01:00
a6d976e5d1
Add ipv6 2022-01-14 12:05:55 +01:00
517b92d7b9
allow access to port 22 2022-01-14 11:30:56 +01:00
fdee080761
make darkkirb normal user 2022-01-14 11:23:43 +01:00
2d64443a9d
Add darkkirb user and enable git and ssh by default 2022-01-14 11:21:55 +01:00
441070fc07
fix cryptsetup 2022-01-14 10:52:40 +01:00
283dbe6530
fix cryptsetup 2022-01-14 10:50:02 +01:00
af5928f14f
fix the boot disk name 2022-01-14 10:39:06 +01:00
9406bd8ab6
Make list of strings 2022-01-14 10:32:39 +01:00
53dbf68c8d
Was partuuid 2022-01-14 10:32:09 +01:00
b4348b9fc9
Add boot.loader.grub.devices 2022-01-14 10:31:15 +01:00
eaa6b8cbdc
Add root mount 2022-01-14 10:28:44 +01:00
50d902b04b
Add nix flake config 2022-01-14 10:26:37 +01:00
0baeb893a1
Initial Commit 2022-01-14 10:19:01 +01:00