Commit graph

4555 commits

Author SHA1 Message Date
fbcf829d8c
Add fail2ban 2022-01-15 12:57:44 +01:00
501757dd10
promtail -> promtrail 2022-01-15 12:09:28 +01:00
fccf67cc8e
add loki and promtrail 2022-01-15 12:08:46 +01:00
09b257d11d
Disable perf node exporter 2022-01-15 11:06:16 +01:00
3142447046
Add prometheus node_exporter scraper 2022-01-15 10:57:49 +01:00
8432ca4551
Add prometheus node exporter 2022-01-15 10:55:15 +01:00
34895dd22b
Add prometheus 2022-01-14 21:58:51 +01:00
777a71bfad
same shit 2022-01-14 21:55:47 +01:00
a1b7c7aa10
Disable http3 for now 2022-01-14 21:54:49 +01:00
2bd71cf986
Add nginx to the acme group so it can access the certs 2022-01-14 21:52:54 +01:00
1cf456b606
Actually do what the last commit was supposed to do 2022-01-14 21:24:20 +01:00
935a03a56a
Surround the IPv6 addresses in square brackets 2022-01-14 21:22:37 +01:00
c47551467c
Correct argument order of builtins.elemAt 2022-01-14 21:20:48 +01:00
5e8139dab8
Don't override the http config 2022-01-14 21:18:45 +01:00
9a8441f74e
Add ssl certificate 2022-01-14 21:12:11 +01:00
1020d9fb5a
Add grafana to nixos-8gb-fsn1-1 2022-01-14 21:06:22 +01:00
9c5c819490
Add Grafana 2022-01-14 21:05:57 +01:00
69d875f2fb
Make named a service 2022-01-14 20:56:02 +01:00
c668d6fbd3
Unblock TCP ports 2022-01-14 20:51:43 +01:00
f4c07fb59c
Add nginx to servers 2022-01-14 20:47:44 +01:00
601e3c55c1
add a default block in the acme config 2022-01-14 18:03:14 +01:00
459c5f3dbc
It was called extraDomainNames 2022-01-14 17:45:35 +01:00
99b8c155d9
Add acme certificates 2022-01-14 17:44:25 +01:00
4d9a804560
Add zone filenames 2022-01-14 17:06:32 +01:00
18eb8a944a
Put the zones key in the correct location 2022-01-14 17:02:12 +01:00
925f268b15
Add read-only-mirror for my zones 2022-01-14 17:01:20 +01:00
1a292b4f41
Fix firewall rules 2022-01-14 16:52:07 +01:00
8962988960
Make named autostart 2022-01-14 16:49:21 +01:00
01001d3142
Add named container 2022-01-14 16:47:24 +01:00
a0ba9c6b01
Add ubuntu-4gb-fsn1-1 peer 2022-01-14 15:47:37 +01:00
9801466a28
Set up wireguard 2022-01-14 15:38:01 +01:00
8d4b3370b4
Add wireguard secret 2022-01-14 15:16:58 +01:00
8f7ca40b9d
Add sops 2022-01-14 15:13:55 +01:00
a3246f97c1
Disable reboots 2022-01-14 14:17:09 +01:00
c804d43a59
Enable auto-update for all systems 2022-01-14 14:07:01 +01:00
1d9bddf1ba
add pkgs to scope 2022-01-14 14:04:11 +01:00
e589c77a8d
Add automatic maintenance 2022-01-14 14:03:14 +01:00
7c9d40e588
Change OriginalName to Name 2022-01-14 12:32:10 +01:00
354f6c454e
Use systemd-networkd instead 2022-01-14 12:29:33 +01:00
691c03e79a
ens3 -> enp0s3 2022-01-14 12:22:16 +01:00
3543e4a49b
Add ipv6 routes 2022-01-14 12:19:52 +01:00
a6d976e5d1
Add ipv6 2022-01-14 12:05:55 +01:00
517b92d7b9
allow access to port 22 2022-01-14 11:30:56 +01:00
fdee080761
make darkkirb normal user 2022-01-14 11:23:43 +01:00
2d64443a9d
Add darkkirb user and enable git and ssh by default 2022-01-14 11:21:55 +01:00
441070fc07
fix cryptsetup 2022-01-14 10:52:40 +01:00
283dbe6530
fix cryptsetup 2022-01-14 10:50:02 +01:00
af5928f14f
fix the boot disk name 2022-01-14 10:39:06 +01:00
9406bd8ab6
Make list of strings 2022-01-14 10:32:39 +01:00
53dbf68c8d
Was partuuid 2022-01-14 10:32:09 +01:00