4b0dc93aba
hosts/plover: update DNS provider for ACME client
2023-02-10 23:45:22 +08:00
9b15f5f4dd
hosts/plover: update Wireguard setup
2023-02-10 23:45:11 +08:00
4c62274145
hosts/plover: update DNS-related configuration
2023-02-10 21:09:05 +08:00
7aca74924c
hosts/plover: improve DNS server configuration
2023-02-10 15:58:36 +08:00
0e16da4c45
profiles/server: set UTC as the preferred timezone
2023-02-10 10:15:37 +08:00
cc4d62af9f
hosts/plover: update Portunus config
2023-02-10 10:15:14 +08:00
5ba2b6d846
hosts/plover: update Keycloak service config
2023-02-09 18:10:46 +08:00
b1427c1c9f
hosts/plover: update hcloud user data init script
2023-02-09 14:58:17 +08:00
1c609f5e95
chore: reformat the codebase
2023-02-09 14:51:22 +08:00
ae787f8fcc
config: update comments on config
2023-02-09 14:50:11 +08:00
45cb320725
docs: update networking guidelines
2023-02-09 14:18:10 +08:00
9a07f06512
hosts/plover: update networking setup
2023-02-09 14:17:59 +08:00
f07aa33220
hosts/plover: update domain names for internal services
2023-02-08 19:05:23 +08:00
ac8d875c35
hosts/plover: properly configure WAN interface
2023-02-08 18:30:27 +08:00
76b17d5beb
docs: update networking configuration notes for Plover
2023-02-08 18:03:35 +08:00
93355b3c67
hosts/plover: add comments to various parts
2023-02-08 18:03:20 +08:00
f75c04eaa9
hosts/plover: replace dnsmasq with CoreDNS as DNS server
2023-02-08 18:00:35 +08:00
3787bf2e68
users/foo-dogsquared: add SSH and GPG client configurations
2023-02-07 19:06:18 +08:00
e54c3dce3d
tasks/backup-archive: rotate private key
2023-02-07 18:29:30 +08:00
c508d7a30d
hosts/plover: update dump limit script
2023-02-07 09:47:01 +08:00
2d7abe51d4
hosts/plover: update nginx default server
2023-02-07 09:45:53 +08:00
46dac540c1
hosts/plover: comply services to PostgreSQL secure schema usage
2023-02-07 09:45:37 +08:00
27ee3feee6
hosts/plover: remove extra config for Atuin service
2023-02-06 22:01:01 +08:00
ee91f62e71
vgc: compile with Qt 6
2023-02-06 21:36:06 +08:00
59bb8126af
shells/nix: add more tools
2023-02-06 21:27:55 +08:00
ad7a75800b
workflows/a-happy-gnome: update timeout to 20 seconds
2023-02-06 19:35:22 +08:00
2ae9147a98
hosts/plover: update IP addresses
...
Decided to go with a new production-like run. Networking really stumps
over for the past days. :(
I'll eventually learn if I go with the simplest examples as I learn
along configuring an Ubuntu-based system in the meantime then translate
it to my NixOS config.
2023-02-06 19:33:24 +08:00
efdbc4c103
hosts: fix Wireguard DNS settings
2023-02-06 19:32:55 +08:00
12abc5146e
hosts/plover: update WAN interface network config
2023-02-06 19:30:51 +08:00
102e216ae5
hosts/plover: enable firewall (again)
2023-02-06 16:09:09 +08:00
bb8714d4cc
docs: update networking setup for Hetzner Cloud deployment
2023-02-06 16:08:52 +08:00
c672357a34
hosts/ni: add cntr for debugging Nix builds
2023-02-06 16:08:19 +08:00
c8b55c278a
hosts: update Wireguard setup
2023-02-06 16:08:08 +08:00
213ecb8598
hosts/plover: remove OpenVPN module
...
The Wireguard setup is working quite nicely compared to the OpenVPN
thingy. It is not as much integrated as OpenVPN though.
2023-02-06 16:05:06 +08:00
0086448efa
hosts/plover: add internal DNS server
2023-02-06 16:00:56 +08:00
d2a272f16b
users/foo-dogsquared: update gh config
2023-02-05 16:40:23 +08:00
8429b280ce
hosts/plover: remove extra configuration
2023-02-05 16:28:18 +08:00
d12f1ea15f
hosts/ni: change Wireguard setup to wg-quick
2023-02-05 16:27:49 +08:00
86afc41f28
flake.nix: add comments
2023-02-05 16:27:14 +08:00
d6def2edc5
shells/cloud: add comments
2023-02-05 16:27:03 +08:00
e8d52088ff
vgc: unstable-2022-08-27 -> unstable-2023-02-05
...
Also, mark it as not broken though it is not properly packaged yet since
the executables are not even included.
2023-02-05 16:25:59 +08:00
bbe083cd6a
workflows/a-happy-gnome: reduce extra configuration
2023-02-05 16:24:34 +08:00
97b9a3ff10
hosts/plover: update networking setup
2023-02-05 11:45:06 +08:00
b1925b99a6
hosts/ni: move bootloader code into hardware configuration
2023-02-06 21:19:56 +08:00
8a23bd7932
hosts/ni: modularize networking configuration
...
Re-added the setup with the traditional networking configuration since
I'm currently using GNOME which only integrates with NetworkManager
which is working alongside it.
systemd-networkd not being used at this point but I'm keeping it.
2023-01-31 16:48:10 +08:00
300aaa786b
hosts/ni: remove swh toolkit
2023-01-29 12:49:27 +08:00
5679323209
hosts/plover: add gateway address to networking set
2023-01-29 12:49:04 +08:00
5d23c751f3
profiles/server: convert part of OpenSSH config to settings attribute
2023-01-29 12:03:44 +08:00
e5066837bf
profiles/server: upgrade Linux hardened kernel to 6.1
...
It's a necessity since it will throw an error being the Linux kernel 6.0
reaching end-of-life upstream.
2023-01-29 12:02:49 +08:00
25709b4208
config: remove nix-alien flake input
...
The latest update failed and that reminded me I mostly use steam-run now
which is more reliable and becoming my go-to tool for running unpatched
binaries in NixOS.
2023-01-29 10:11:14 +08:00
