Deuxfleurs/nixcfg
17
6
Fork 2
Code Issues 9 Pull requests 2 Projects Releases Wiki Activity
438 commits 8 branches 0 tags 1.9 MiB
Commit graph

18 commits

Author SHA1 Message Date
Alex a9e9149739 Fix unbound; remove Nixos firewall (use only diplonat) 2023-04-21 11:29:15 +02:00
Alex 96566ae523 refactor configuration syntax 2023-03-24 15:26:39 +01:00
Alex e2aea648cf greatly simplify ipv4 and ipv6 configuration 2023-03-24 14:42:36 +01:00
Alex a0db30ca26 Sanitize DNS configuration 
- get rid of outside nameserver, unbound does the recursive resolving
  itself (and it checks DNSSEC)
- remove CAP_NET_BIND_SERVICE for Consul as it is no longer binding on
  port 53 (was already obsolete)
- make unbound config independant of LAN IPv4 address
 2023-03-24 12:58:44 +01:00
Alex 578075a925
Add origan node in staging cluster (+ refactor system.stateVersion) 2022-12-11 22:37:28 +01:00
Alex a1fc396412
Add possible public_ipv4 node tag 2022-12-07 17:13:03 +01:00
Alex ab97a7bffd
Staging: Add CNAME target meta parameter, will be used for diplonat auto dns update 2022-12-07 12:32:21 +01:00
Alex 27214332e9
IPv6 by FDN 2022-10-16 19:10:51 +02:00
Alex c239e34a25
IPv6 prefix at Neptune changed again 2022-10-09 17:07:47 +02:00
Alex 39fbbbe863
Change ipv6 tunnel server 2022-09-09 17:23:23 +02:00
Alex 468c6b702b
Add ipv6 gateway at neptune 2022-08-24 12:31:55 +02:00
Alex 641a68715f
Configure Consul DNS 2022-06-01 14:48:16 +02:00
Alex 83dd3ea25a
Update network configuration 2022-05-08 14:42:18 +02:00
Alex 10d370491e
Replace ad-hoc wireguard by wesher on staging cluster 2022-04-20 18:04:57 +02:00
Alex 27ffee95b8
Updates; change crontab 2022-03-07 16:57:43 +01:00
Alex 6dc9281299
Add remote LUKS unlocking configuration 2022-02-25 17:52:17 +01:00
Alex fe3e529cf6
Use local DNS resolver instead of quad9 that wasn't working very well 2022-02-22 10:06:51 +01:00
Alex f03cafd49b
Modularize and prepare to support multiple clusters 2022-02-09 12:09:49 +01:00
Renamed from site/neptune.nix (Browse further)