Move ssh to port 110, update nomad to 1.7

cluster/staging/cluster.nix

@@ -100,8 +100,8 @@
 
   ## ===== EXPERIMENTAL SECTION FOR STAGING CLUSTER =====
 
-  # Test nomad 1.6
+  # Test nomad 1.7
-  services.nomad.package = pkgs.nomad_1_6;
+  services.nomad.package = pkgs.nomad_1_7;
   nixpkgs.config.allowUnfree = true; # Accept nomad's BSL license
 
   # We're doing lots of experiments so GC periodically is usefull.

cluster/staging/node/df-pw5.nix

@@ -14,5 +14,5 @@
   deuxfleurs.staticIPv6.address = "2a02:a03f:6510:5102:223:24ff:feb0:e8a7";
   deuxfleurs.isRaftServer = true;
 
-  system.stateVersion = "22.11";
+  system.stateVersion = "24.05";
 }

cluster/staging/node/origan.nix

@@ -10,5 +10,5 @@
   deuxfleurs.staticIPv6.address = "2a01:e0a:5e4:1d0:223:24ff:feaf:fdec";
   deuxfleurs.isRaftServer = true;
 
-  system.stateVersion = "22.11";
+  system.stateVersion = "24.05";
 }

cluster/staging/node/piranha.nix

@@ -12,5 +12,5 @@
   deuxfleurs.staticIPv4.address = "192.168.5.25";
   deuxfleurs.staticIPv6.address = "2001:912:1ac0:2200::25";
 
-  system.stateVersion = "22.11";
+  system.stateVersion = "24.05";
 }

cluster/staging/ssh_config

@@ -1,4 +1,6 @@
 UserKnownHostsFile ./cluster/staging/known_hosts
+Host *
+    Port 110
 
 Host caribou
 	#HostName caribou.machine.deuxfleurs.fr

nix/configuration.nix

@@ -77,6 +77,7 @@ SystemMaxUse=1G
   # Enable the OpenSSH daemon and disable password login.
   services.openssh.enable = true;
   services.openssh.settings.PasswordAuthentication = false;
+  services.openssh.ports = [ 110 ];
 
   virtualisation.docker = {
     enable = true;

nix/deuxfleurs.nix

@@ -412,8 +412,8 @@ in
       enable = true;
 
       allowedTCPPorts = [
-        # Allow anyone to connect on SSH port
+        # Allow anyone to connect on SSH port on tcp/110, port 22 is used by forgejo
-        (head ({ openssh.ports = [22]; } // config.services).openssh.ports)
+        (head ({ openssh.ports = [ 110 ]; } // config.services).openssh.ports)
       ];
 
       allowedUDPPorts = [