nix-infra

Author	SHA1	Message	Date
fi	f941aa1c01	Configure TLS settings on mail relay	2024-11-20 05:46:40 +01:00
fi	d0b153d112	Enable TLS on mail relay	2024-11-20 05:46:40 +01:00
fi	b4df0351c5	Forward port 80 to mail servers for the http acme challange	2024-11-20 05:46:40 +01:00
fi	6da99baf6b	Use snat rule instead if masquerade for wireguard nat	2024-11-20 05:46:40 +01:00
fi	8e4202f579	Use a less generic nftables table name	2024-11-20 05:46:40 +01:00
fi	f835277ef0	Use another subnet for WireGuard tunnel as is conflicts with the openstack internal subnet	2024-11-20 05:46:40 +01:00
fi	ebc5b0bb29	Add tcpdump to default packages	2024-11-20 05:46:40 +01:00
fi	5b8d0943fc	Fix WireGuard nat rules	2024-11-20 05:46:40 +01:00
fi	8e153de225	Change mail-1 wireguard port as it is already used for STS setup	2024-11-20 05:46:40 +01:00
fi	bbe382c0f2	Use host resolv.conf in container	2024-11-20 05:46:40 +01:00
fi	fec97bb146	Add missing wireguard-tools dependency	2024-11-20 05:46:40 +01:00
fi	0f3e7771a5	Pass libnftables.so.1 path into python script	2024-11-20 05:46:40 +01:00
fi	93924044c4	Add wireguard-nat-nftables python script	2024-11-20 05:46:40 +01:00
fi	e35df8b0f1	Add valkyrie host	2024-11-20 05:46:40 +01:00
fi	fd7b411ee4	Enable firewall	2024-11-20 05:46:40 +01:00
fi	ba43f2ed5c	Setup mail server and restructure some things	2024-11-20 05:46:40 +01:00
fi	502e5194dc	Update flake.lock	2024-11-20 05:46:40 +01:00
fi	6baf116c50	Just do the nginx proxy_protocol listen in extraConfig and use stable packages	2024-11-20 05:46:40 +01:00
fi	3b04399847	Bump element-web to v1.11.40	2024-11-20 05:46:40 +01:00
fi	8ca3fb0ae2	Bump flake.lock	2024-11-20 05:46:40 +01:00
fi	a81093890c	Add matrix-synapse host	2024-11-20 05:46:40 +01:00
fi	2c160015e6	Only run pipeline when specific RUN_JOB variable value is set	2024-11-20 05:46:40 +01:00
fi	221a596e27	Bump flake.lock	2024-11-20 05:46:40 +01:00
fi	3f36a01a5a	Rename nixos-coturn to coturn and finish config	2024-11-20 05:46:40 +01:00
fi	001a710903	Add metrics host with Grafana and Prometheus	2024-11-20 05:46:40 +01:00
fi	a63d5661b6	WIP grafana	2024-11-20 05:46:40 +01:00
fi	1ba819ed85	Increase opcache.interned_strings_buffer PHP option	2024-11-20 05:46:40 +01:00
fi	f22ccdad10	Enable proxyprotocol for nitter host	2024-11-20 05:46:40 +01:00
fi	19bd3a2112	Add netbox host	2024-11-20 05:46:40 +01:00
fi	1b62b6b7a5	Fix hostname	2024-11-20 05:46:40 +01:00
fi	742b5e69e9	Restrict allowedTCPPorts to port 8443	2024-11-20 05:46:40 +01:00
fi	9712f9a9d2	Add SMTP configuration to nextcloud and use an additional disk for the data	2024-11-20 05:46:39 +01:00
fi	aac12a22fd	Set boot.growPartition = true	2024-11-20 05:46:39 +01:00
fi	31edbd4ca4	Improve Proxmox backup image generation	2024-11-20 05:46:39 +01:00
fi	1aab87a1fe	Add nextcloud host	2024-11-20 05:46:39 +01:00
fi	d7136d577f	Remove secret.nix from jellyfin imports	2024-11-20 05:46:39 +01:00
fi	07e6a8a597	Enable firewall and migrate Jellyfin to NixOS	2024-11-20 05:46:39 +01:00
fi	826c3ff28b	Add jellyfin host	2024-11-20 05:46:39 +01:00
fi	92eb5d7385	Enable console on serial port and print public ssh host key when booting	2024-11-20 05:46:39 +01:00
fi	a03df6b14d	Use hacky workaround for enableACME check with a proxyProtocol listener	2024-11-20 05:46:39 +01:00
fi	399731bd0c	Set binary cache hint	2024-11-20 05:46:39 +01:00
fi	7cc4f7fe16	Bump flake.lock	2024-11-20 05:46:39 +01:00
fi	32872cb455	Generate colmena and hydraJobs outputs from the same hosts attribute set	2024-11-20 05:46:39 +01:00
fi	8e633599db	Test host specific nixpkgs	2024-11-20 05:46:39 +01:00
fi	cb83df1aed	Generate hosts for hydra	2024-11-20 05:46:39 +01:00
fi	2636e6769b	Add iperf host	2024-11-20 05:46:39 +01:00
fi	0b49bd74a6	Add output for nixos-generators	2024-11-20 05:46:39 +01:00
fi	99c40b54b6	Serve element-web directly from web-public-2	2024-11-20 05:46:39 +01:00
fi	d1a9b3f082	Enable localhost as buld machine for hydra	2024-11-20 05:46:39 +01:00
fi	045b6ad8e7	Add janky nginx config with workaround for proxy protocol	2024-11-20 05:46:39 +01:00

1 2

62 commits