1bdda28ffe
chore: reformat codebase
2023-06-08 21:19:17 +08:00
ab8ab4921c
config: add more comments
2023-06-08 19:53:20 +08:00
29d990f33c
hosts/plover: improve firewall settings for Wireguard service
2023-06-08 19:52:29 +08:00
316602a35d
hosts/plover: update DNS server list for LAN interface
2023-06-08 19:51:38 +08:00
039f033632
hosts/ni: update Wireguard "client" configuration
2023-06-08 12:17:48 +08:00
b061f42f73
hosts/ni: update profile
2023-06-06 13:50:17 +08:00
1ca789bd86
profiles/desktop: update app list for Wine submodule
2023-06-05 17:44:11 +08:00
95bc32f806
hosts/ni: add Gonic server
2023-05-27 13:17:35 +08:00
1a3c834d5b
hosts/ni: update to state version "23.05"
2023-05-25 11:15:28 +08:00
670361faaa
hosts/ni: update Wireguard interface
2023-05-21 06:37:03 +08:00
fa7b1796b4
hosts/ni: update the domains for resolved
2023-05-21 06:36:32 +08:00
c066f85fc2
hosts/plover: update to NixOS 23.05
2023-05-15 22:13:51 +08:00
a5a0399e61
hosts/ni: add swh fs
2023-05-09 16:17:09 +08:00
b9e05dd1fa
hosts/plover: update Gitea configuration
2023-05-02 12:34:24 +08:00
43b4ddd734
hosts/plover: update Borg SSH key
2023-05-02 08:06:43 +08:00
18e2743be2
hosts/ni: update iwd configuration
...
iwd and udev are going into a race condition and I cannot easily remove
attribute in a NixOS module so we'll be forcing the iwd systemd-networkd
configuration to be empty instead.
2023-03-19 09:58:50 +08:00
a96fcb06db
hosts/ni: switch boot.kernelPackages to latest Linux packages
2023-03-19 09:58:18 +08:00
aed8181762
hosts/ni: fix erroneous attribute
2023-03-14 08:03:07 +08:00
d4395da314
hosts/ni: move wireless configuration to appropriate file
2023-03-10 08:28:33 +08:00
5a31f55cb7
hosts/ni: update Wireguard address
...
Not exactly important since the desktop peer is not exactly used akin to
a VPN server but it's just there for consistency, I guess.
2023-03-09 11:45:55 +08:00
a72146dd05
hosts/ni: use Linux kernel version 6.2
2023-03-09 11:45:09 +08:00
8369ea4145
hosts/ni: switch to iwd for wireless network configuration
2023-03-09 11:43:47 +08:00
54f9f2474e
hosts/plover: disable multimedia archive task
2023-03-03 17:13:40 +08:00
744488a2a6
hosts/ni: add more administrative tools
2023-03-03 17:18:42 +08:00
fee1c9653e
hosts/plover: update DNS zone file
2023-03-03 17:18:23 +08:00
993f856c39
docs: update networking guide for Plover server
2023-02-25 10:18:02 +08:00
19db60aad2
hosts/ni: update zram setup
2023-02-25 10:02:43 +08:00
00e0258c2e
hosts/ni: update Gitea log level
2023-02-25 10:02:27 +08:00
c9bedf128a
hosts/plover: update DNS zone file
2023-02-24 01:29:23 +08:00
36cda7bab2
hosts/plover: update networking blocks
2023-02-22 11:29:43 +08:00
41fd659453
hosts/plover: update DNS server setup
2023-02-22 11:28:59 +08:00
84b4e3be3e
hosts/ni: update systemd networking setup
2023-02-22 11:27:18 +08:00
b3ce46ccf9
hosts/plover: update DNS zone and server configuration
2023-02-17 23:10:52 +08:00
ff1927deb5
hosts/ni: update DNS routing for VPN internal network
2023-02-14 11:02:50 +08:00
e6b272c612
hosts/plover: update ACME client environment
2023-02-14 11:02:13 +08:00
2106292bbe
hosts/plover: add local area network to firewall
2023-02-14 11:01:29 +08:00
af9ddbe527
hosts/plover: update network metadata
2023-02-14 11:00:57 +08:00
d1bb54582d
hosts/plover: update LAN interface network config
2023-02-14 11:00:26 +08:00
0ae42d4251
hosts/plover: update hcloud cloud-config
2023-02-14 10:51:37 +08:00
a2407a75c4
hosts/plover: update DNS zone
2023-02-14 10:51:15 +08:00
539d9c0b48
docs: add more items in the Plover management guidelines
2023-02-13 15:39:19 +08:00
60ab954c74
hosts/plover: update Wireguard "server" configuration
2023-02-13 09:51:30 +08:00
a0e0dc5870
hosts/plover: update Keycloak service locations
2023-02-13 09:50:50 +08:00
5e8c65b70e
hosts/plover: automate the admin creation on Gitea
2023-02-13 09:49:45 +08:00
fc7ec80933
hosts/plover: update foodogsquared.one DNS zone
2023-02-13 00:28:41 +08:00
93863ff00c
hosts/ni: update host and user configuration
2023-02-11 15:21:50 +08:00
0991e1a44d
hosts/plover: update firewall settings
...
Firewalls... the cause of most frustrations...
2023-02-11 15:21:18 +08:00
8a81468456
hosts/plover: revert to Porkbun as the DNS provider
2023-02-11 11:19:13 +08:00
7edaec8b60
profiles/dev: add Wireshark
2023-02-11 09:01:31 +08:00
4b0dc93aba
hosts/plover: update DNS provider for ACME client
2023-02-10 23:45:22 +08:00
9b15f5f4dd
hosts/plover: update Wireguard setup
2023-02-10 23:45:11 +08:00
4c62274145
hosts/plover: update DNS-related configuration
2023-02-10 21:09:05 +08:00
7aca74924c
hosts/plover: improve DNS server configuration
2023-02-10 15:58:36 +08:00
cc4d62af9f
hosts/plover: update Portunus config
2023-02-10 10:15:14 +08:00
5ba2b6d846
hosts/plover: update Keycloak service config
2023-02-09 18:10:46 +08:00
b1427c1c9f
hosts/plover: update hcloud user data init script
2023-02-09 14:58:17 +08:00
1c609f5e95
chore: reformat the codebase
2023-02-09 14:51:22 +08:00
ae787f8fcc
config: update comments on config
2023-02-09 14:50:11 +08:00
45cb320725
docs: update networking guidelines
2023-02-09 14:18:10 +08:00
9a07f06512
hosts/plover: update networking setup
2023-02-09 14:17:59 +08:00
f07aa33220
hosts/plover: update domain names for internal services
2023-02-08 19:05:23 +08:00
ac8d875c35
hosts/plover: properly configure WAN interface
2023-02-08 18:30:27 +08:00
76b17d5beb
docs: update networking configuration notes for Plover
2023-02-08 18:03:35 +08:00
93355b3c67
hosts/plover: add comments to various parts
2023-02-08 18:03:20 +08:00
f75c04eaa9
hosts/plover: replace dnsmasq with CoreDNS as DNS server
2023-02-08 18:00:35 +08:00
c508d7a30d
hosts/plover: update dump limit script
2023-02-07 09:47:01 +08:00
2d7abe51d4
hosts/plover: update nginx default server
2023-02-07 09:45:53 +08:00
46dac540c1
hosts/plover: comply services to PostgreSQL secure schema usage
2023-02-07 09:45:37 +08:00
27ee3feee6
hosts/plover: remove extra config for Atuin service
2023-02-06 22:01:01 +08:00
2ae9147a98
hosts/plover: update IP addresses
...
Decided to go with a new production-like run. Networking really stumps
over for the past days. :(
I'll eventually learn if I go with the simplest examples as I learn
along configuring an Ubuntu-based system in the meantime then translate
it to my NixOS config.
2023-02-06 19:33:24 +08:00
efdbc4c103
hosts: fix Wireguard DNS settings
2023-02-06 19:32:55 +08:00
12abc5146e
hosts/plover: update WAN interface network config
2023-02-06 19:30:51 +08:00
102e216ae5
hosts/plover: enable firewall (again)
2023-02-06 16:09:09 +08:00
bb8714d4cc
docs: update networking setup for Hetzner Cloud deployment
2023-02-06 16:08:52 +08:00
c672357a34
hosts/ni: add cntr for debugging Nix builds
2023-02-06 16:08:19 +08:00
c8b55c278a
hosts: update Wireguard setup
2023-02-06 16:08:08 +08:00
213ecb8598
hosts/plover: remove OpenVPN module
...
The Wireguard setup is working quite nicely compared to the OpenVPN
thingy. It is not as much integrated as OpenVPN though.
2023-02-06 16:05:06 +08:00
0086448efa
hosts/plover: add internal DNS server
2023-02-06 16:00:56 +08:00
8429b280ce
hosts/plover: remove extra configuration
2023-02-05 16:28:18 +08:00
d12f1ea15f
hosts/ni: change Wireguard setup to wg-quick
2023-02-05 16:27:49 +08:00
97b9a3ff10
hosts/plover: update networking setup
2023-02-05 11:45:06 +08:00
b1925b99a6
hosts/ni: move bootloader code into hardware configuration
2023-02-06 21:19:56 +08:00
8a23bd7932
hosts/ni: modularize networking configuration
...
Re-added the setup with the traditional networking configuration since
I'm currently using GNOME which only integrates with NetworkManager
which is working alongside it.
systemd-networkd not being used at this point but I'm keeping it.
2023-01-31 16:48:10 +08:00
300aaa786b
hosts/ni: remove swh toolkit
2023-01-29 12:49:27 +08:00
5679323209
hosts/plover: add gateway address to networking set
2023-01-29 12:49:04 +08:00
6c1ff358e2
hosts/plover: update Hetzner filesystem setup
2023-01-29 00:01:32 +08:00
0ffc1a4078
hosts/ni: add decorative parts of the configuration
2023-01-26 13:11:32 +08:00
d0720ee7b7
hosts: revise networking-related variables set
2023-01-26 13:10:15 +08:00
00bbbd8135
hosts/ni: disable ldap service
...
Not yet familiar. Also causing me trouble with long login times since it
is also trying for all users in the system, it seems.
2023-01-24 11:08:02 +08:00
f17ad49352
docs: document the networking setup for Plover
2023-01-23 17:49:16 +08:00
a386f99554
hosts: simplify networking set and update Wireguard setup
...
Currently, the networking set is very messy. It is better to contain
them into another attribute set and categorizing them by the interfaces
that is supposed to contain them. I should've done this some time ago.
2023-01-23 17:46:32 +08:00
fb5f2e277d
hosts/plover: simply Wireguard configuration code
2023-01-23 13:29:42 +08:00
657ee2098d
hosts/plover: update private network hosting for various applications
2023-01-23 00:30:08 +08:00
4b377e527a
hosts/plover: update networking and hardware setup
2023-01-23 00:20:24 +08:00
1a6b5b6579
hosts/ni: update hardware configuration
2023-01-21 23:58:17 +08:00
2283a7166c
hosts/plover: update nginx module
2023-01-21 23:58:17 +08:00
02eba75d63
hosts/plover: update services host configurations
...
We're making some of them completely on the private network. This way,
they can only be accessed once we're in a tunneling service like
Wireguard or OpenVPN.
2023-01-21 23:58:17 +08:00
1bb128401e
hosts/plover: update IPv6 address for main network interface
2023-01-21 09:02:11 +08:00
382a5e6939
hosts/ni: fix IPv4 Wireguard address
2023-01-20 15:45:07 +08:00
665e72d105
hosts/ni: update networking setup
2023-01-20 14:51:11 +08:00
