8429b280ce
hosts/plover: remove extra configuration
2023-02-05 16:28:18 +08:00
d12f1ea15f
hosts/ni: change Wireguard setup to wg-quick
2023-02-05 16:27:49 +08:00
86afc41f28
flake.nix: add comments
2023-02-05 16:27:14 +08:00
d6def2edc5
shells/cloud: add comments
2023-02-05 16:27:03 +08:00
e8d52088ff
vgc: unstable-2022-08-27 -> unstable-2023-02-05
...
Also, mark it as not broken though it is not properly packaged yet since
the executables are not even included.
2023-02-05 16:25:59 +08:00
bbe083cd6a
workflows/a-happy-gnome: reduce extra configuration
2023-02-05 16:24:34 +08:00
97b9a3ff10
hosts/plover: update networking setup
2023-02-05 11:45:06 +08:00
b1925b99a6
hosts/ni: move bootloader code into hardware configuration
2023-02-06 21:19:56 +08:00
8a23bd7932
hosts/ni: modularize networking configuration
...
Re-added the setup with the traditional networking configuration since
I'm currently using GNOME which only integrates with NetworkManager
which is working alongside it.
systemd-networkd not being used at this point but I'm keeping it.
2023-01-31 16:48:10 +08:00
300aaa786b
hosts/ni: remove swh toolkit
2023-01-29 12:49:27 +08:00
5679323209
hosts/plover: add gateway address to networking set
2023-01-29 12:49:04 +08:00
5d23c751f3
profiles/server: convert part of OpenSSH config to settings attribute
2023-01-29 12:03:44 +08:00
e5066837bf
profiles/server: upgrade Linux hardened kernel to 6.1
...
It's a necessity since it will throw an error being the Linux kernel 6.0
reaching end-of-life upstream.
2023-01-29 12:02:49 +08:00
25709b4208
config: remove nix-alien flake input
...
The latest update failed and that reminded me I mostly use steam-run now
which is more reliable and becoming my go-to tool for running unpatched
binaries in NixOS.
2023-01-29 10:11:14 +08:00
31d32a50a3
flake.lock: update inputs
...
Flake lock file updates:
• Updated input 'deploy':
'github:serokell/deploy-rs/a5619f5660a00f58c2b7c16d89058e92327ac9b8' (2022-12-29)
→ 'github:serokell/deploy-rs/8c9ea9605eed20528bf60fae35a2b613b901fd77' (2023-01-19)
• Updated input 'emacs-overlay':
'github:nix-community/emacs-overlay/3f8a6e839a1574631e135a34c53e5e58ae81bd8e' (2023-01-15)
→ 'github:nix-community/emacs-overlay/d1ea6872b199edc680917a7248b596e532297538' (2023-01-28)
• Updated input 'helix-editor':
'github:helix-editor/helix/b6331394a3f341ad21f8fad3e6e0b93becda9ce5' (2023-01-13)
→ 'github:helix-editor/helix/482cc22fecc109773882d3e0fd6251c33862e89e' (2023-01-28)
• Updated input 'home-manager':
'github:nix-community/home-manager/2827b5306462d91edec16a3d069b2d6e54c3079f' (2023-01-14)
→ 'github:nix-community/home-manager/08a778d80308353f4f65c9dcd3790b5da02d6306' (2023-01-28)
• Updated input 'neovim-nightly-overlay':
'github:nix-community/neovim-nightly-overlay/fd8e5953cfeada345d7daeedce6ab0919f1284d4' (2023-01-15)
→ 'github:nix-community/neovim-nightly-overlay/947d9a77304ace2f4eceb4291dc778145290b6be' (2023-01-28)
• Updated input 'neovim-nightly-overlay/flake-compat':
'github:edolstra/flake-compat/009399224d5e398d03b22badca40a37ac85412a1' (2022-11-17)
→ 'github:edolstra/flake-compat/35bb57c0c8d8b62bbfd284272c928ceb64ddbde9' (2023-01-17)
• Updated input 'neovim-nightly-overlay/neovim-flake':
'github:neovim/neovim/6134c1e8a39a5e61d0593613343a5923a86e3545?dir=contrib' (2023-01-15)
→ 'github:neovim/neovim/b4c4c232ba6fe3df5c6f12faff4405a16e4d40df?dir=contrib' (2023-01-28)
• Updated input 'nix-alien':
'github:thiagokokada/nix-alien/967735b1f9bdc12f24e7b1ac336e499d12896988' (2022-12-28)
→ 'github:thiagokokada/nix-alien/998aa8523cde352da0529fcc495cd5709a1eeb98' (2023-01-15)
• Updated input 'nixos-generators':
'github:nix-community/nixos-generators/30516cb2b01896e14ce66893e414b6e3eec71cac' (2023-01-02)
→ 'github:nix-community/nixos-generators/6a5dc1d3d557ea7b5c19b15ff91955124d0400fa' (2023-01-25)
• Updated input 'nixpkgs':
'github:NixOS/nixpkgs/befc83905c965adfd33e5cae49acb0351f6e0404' (2023-01-13)
→ 'github:NixOS/nixpkgs/9b97ad7b4330aacda9b2343396eb3df8a853b4fc' (2023-01-25)
• Updated input 'nixpkgs-stable':
'github:NixOS/nixpkgs/a83ed85c14fcf242653df6f4b0974b7e1c73c6c6' (2023-01-14)
→ 'github:NixOS/nixpkgs/ce20e9ebe1903ea2ba1ab006ec63093020c761cb' (2023-01-28)
• Updated input 'nur':
'github:nix-community/NUR/0d9214b8db66df7d3dac2725abb891d80938e921' (2023-01-15)
→ 'github:nix-community/NUR/3ccb2c06d5be111aa3bbc36c7f30dd10a69b9a7a' (2023-01-28)
• Updated input 'rust-overlay':
'github:oxalica/rust-overlay/aab6eb2dfc7a1e42d94b6f24ef13639ff8544af4' (2023-01-15)
→ 'github:oxalica/rust-overlay/bbc57d7aac4ac1ec0a68ff77a22d03622cc11246' (2023-01-28)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/e18eefd2b133a58309475298052c341c08470717' (2023-01-15)
→ 'github:Mic92/sops-nix/b6ab3c61e2ca5e07d1f4eb1b67304e2670ea230c' (2023-01-24)
• Updated input 'sops-nix/nixpkgs-stable':
'github:NixOS/nixpkgs/7c65528c3f8462b902e09d1ccca23bb9034665c2' (2023-01-15)
→ 'github:NixOS/nixpkgs/918b760070bb8f48cb511300fcd7e02e13058a2e' (2023-01-22)
2023-01-29 08:56:43 +08:00
6c1ff358e2
hosts/plover: update Hetzner filesystem setup
2023-01-29 00:01:32 +08:00
8cacfa2867
users/foo-dogsquared: add GitHub CLI setup
2023-01-29 00:00:55 +08:00
0ffc1a4078
hosts/ni: add decorative parts of the configuration
2023-01-26 13:11:32 +08:00
d0720ee7b7
hosts: revise networking-related variables set
2023-01-26 13:10:15 +08:00
00bbbd8135
hosts/ni: disable ldap service
...
Not yet familiar. Also causing me trouble with long login times since it
is also trying for all users in the system, it seems.
2023-01-24 11:08:02 +08:00
eae9ea0405
users/foo-dogsquared: update git config
2023-01-24 11:04:32 +08:00
f17ad49352
docs: document the networking setup for Plover
2023-01-23 17:49:16 +08:00
a386f99554
hosts: simplify networking set and update Wireguard setup
...
Currently, the networking set is very messy. It is better to contain
them into another attribute set and categorizing them by the interfaces
that is supposed to contain them. I should've done this some time ago.
2023-01-23 17:46:32 +08:00
fb5f2e277d
hosts/plover: simply Wireguard configuration code
2023-01-23 13:29:42 +08:00
657ee2098d
hosts/plover: update private network hosting for various applications
2023-01-23 00:30:08 +08:00
4b377e527a
hosts/plover: update networking and hardware setup
2023-01-23 00:20:24 +08:00
1a6b5b6579
hosts/ni: update hardware configuration
2023-01-21 23:58:17 +08:00
2283a7166c
hosts/plover: update nginx module
2023-01-21 23:58:17 +08:00
02eba75d63
hosts/plover: update services host configurations
...
We're making some of them completely on the private network. This way,
they can only be accessed once we're in a tunneling service like
Wireguard or OpenVPN.
2023-01-21 23:58:17 +08:00
1bb128401e
hosts/plover: update IPv6 address for main network interface
2023-01-21 09:02:11 +08:00
382a5e6939
hosts/ni: fix IPv4 Wireguard address
2023-01-20 15:45:07 +08:00
665e72d105
hosts/ni: update networking setup
2023-01-20 14:51:11 +08:00
a7515f20eb
hosts/plover: fix string interpolation
2023-01-20 14:50:27 +08:00
d6fa557433
users/foo-dogsquared: update other SSH public key
2023-01-20 14:16:57 +08:00
5a0a18fa7e
hosts/ni: add wireguard-tools to system packages
2023-01-20 13:15:53 +08:00
1fd834d2f0
profiles/dev: add applications and fix weekly upgrade service
2023-01-19 20:32:25 +08:00
33206698c0
hosts: update Wireguard network setup
2023-01-19 20:16:01 +08:00
5fab811812
hosts/plover: update networking setup
2023-01-19 20:12:14 +08:00
2ee3f755fd
hosts/plover: fix erroneous function
...
I haven't obviously tested the related changes since the server was down
at the time.
2023-01-19 07:57:26 +08:00
875c910e61
hosts/ni: add netboot.xyz bootloader entry
2023-01-19 00:37:43 +08:00
9b03f4d4aa
hosts/plover: simplify networking setup
...
It is simple anyways requiring only one of the ethernet interfaces to be
present to the global network while the rest can be in the local
network.
2023-01-18 20:29:16 +08:00
ceb821f2c0
hosts/plover: update Keycloak reverse proxy config
...
Now that a tunneling service is here, there's not much need to expose
the whole thing.
2023-01-18 20:24:49 +08:00
9a941dc543
hosts/plover: update Gitea mirroring interval
2023-01-18 20:18:40 +08:00
e26831b756
tasks/backup-archive: update private key
2023-01-18 20:18:22 +08:00
d6d461a098
flake.nix: update override value on intended hostname
...
It pretty much causes every host to have the name the default hostname
which I forgot the default value has a stronger override value.
2023-01-18 17:47:45 +08:00
cdfe983969
docs: update "Deploying to Hetzner Cloud" section on Plover
2023-01-18 15:43:30 +08:00
ecd8313011
hosts/plover: update routes to main router
2023-01-18 15:42:33 +08:00
04e460142a
chore: format the codebase
2023-01-18 11:41:12 +08:00
f2cdf732cb
hosts/plover: disable firewall service
...
It's not working well for now. I'll have to make some tests with simpler
configurations (even though it's already simple?).
2023-01-18 11:10:40 +08:00
6ae080c68d
hosts/ni: enable nftables-based firewall
2023-01-18 11:10:31 +08:00
