Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | sample deployment of wgautomesh on staging (dont deploy prod with this commit) | Alex Auvolat | 2023-03-17 | 2 | -9/+131 |
| | |||||
* | TODOs in deuxfleurs.nix because the old world is maybe mixing with the new | Adrien | 2023-03-15 | 1 | -2/+2 |
| | |||||
* | Remove hardcoded years in deuxfleurs.nix | Alex Auvolat | 2023-01-01 | 1 | -7/+7 |
| | |||||
* | Replace deploy_wg by a NixOS activation script | Alex Auvolat | 2022-12-14 | 1 | -0/+9 |
| | |||||
* | Add origan node in staging cluster (+ refactor system.stateVersion) | Alex Auvolat | 2022-12-11 | 1 | -8/+0 |
| | |||||
* | Add possible public_ipv4 node tag | Alex Auvolat | 2022-12-07 | 1 | -1/+10 |
| | |||||
* | Staging: Add CNAME target meta parameter, will be used for diplonat auto dns ↵ | Alex Auvolat | 2022-12-07 | 1 | -8/+16 |
| | | | | update | ||||
* | Clean stuff up and update nix driver | Alex Auvolat | 2022-11-29 | 1 | -1/+1 |
| | |||||
* | Remove old nomad-driver-nix | Alex Auvolat | 2022-11-29 | 1 | -31/+0 |
| | |||||
* | Use nix driver moved to Deuxfleurs namespace | Alex Auvolat | 2022-11-29 | 1 | -7/+3 |
| | |||||
* | Deploy garage on staging using nix2 driver | Alex Auvolat | 2022-11-29 | 2 | -31/+29 |
| | |||||
* | Staging: ability to run Nix jobs using exec2 driver | Alex Auvolat | 2022-11-28 | 2 | -0/+32 |
| | |||||
* | Remove root, add wg-quick-wg0 after unbound | Alex Auvolat | 2022-11-28 | 1 | -0/+1 |
| | |||||
* | Fix wg-quick MTU because it does bad stuff by default | Alex Auvolat | 2022-11-22 | 1 | -0/+1 |
| | |||||
* | Add after config on nomad and consul | Alex Auvolat | 2022-11-22 | 1 | -0/+2 |
| | |||||
* | Add Baptiste ; fix wireguard | Alex Auvolat | 2022-11-22 | 1 | -2/+2 |
| | |||||
* | poc 2 for nix containers: use nomad-driver-nix | Alex Auvolat | 2022-11-16 | 1 | -0/+31 |
| | |||||
* | remove systemd-resolved | Alex Auvolat | 2022-10-16 | 2 | -10/+2 |
| | |||||
* | Complete telemetry configuration | Alex Auvolat | 2022-10-16 | 1 | -0/+5 |
| | |||||
* | Remove additonal DNS entries from docker | Maximilien Richer | 2022-10-16 | 1 | -1/+1 |
| | |||||
* | Correctly inject dns servers in docker | Quentin Dufour | 2022-10-16 | 1 | -1/+6 |
| | |||||
* | Add docker | Quentin Dufour | 2022-10-16 | 1 | -1/+1 |
| | |||||
* | Switch to systemd-networkd | Quentin Dufour | 2022-10-15 | 1 | -25/+27 |
| | |||||
* | Disable IPv6 RA/autoconf/temp addr | Quentin Dufour | 2022-10-14 | 1 | -0/+3 |
| | |||||
* | Force Garage to use ipv6 connectivity | Alex Auvolat | 2022-09-15 | 1 | -0/+1 |
| | |||||
* | systemd timesyncd | Alex Auvolat | 2022-09-08 | 1 | -1/+2 |
| | |||||
* | Improve DNS configuration | Alex Auvolat | 2022-08-30 | 1 | -4/+38 |
| | | | | | | | | | Add Unbound server that separates queries between those going to Consul and those going elsewhere. This allows us to have DNS working even if Consul fails for some reason. This way we can also remove the secondary `nameserver` entry in /etc/resolv.conf, thus fixing a bug where certain containers (Alpine-based images?) were using the secondary resolver some of the time, making them unable to access .consul hosts. | ||||
* | Ask consul to use advertised address and not bind one | Quentin Dufour | 2022-08-24 | 1 | -0/+1 |
| | |||||
* | Fix nomad talking to consul | Alex Auvolat | 2022-08-24 | 1 | -1/+4 |
| | |||||
* | Fix access to consul for non-server nodes | Alex Auvolat | 2022-08-24 | 1 | -1/+1 |
| | |||||
* | Disable bootstrap_expect unless specific deuxfleurs.bootstrap is set | Alex Auvolat | 2022-08-24 | 1 | -9/+11 |
| | |||||
* | Fix IPv6 | Quentin Dufour | 2022-08-24 | 1 | -1/+10 |
| | |||||
* | Remove wesher, reconfigure staging without it | Alex Auvolat | 2022-08-23 | 4 | -193/+73 |
| | |||||
* | Disable ipv6 temporary addresses | Alex Auvolat | 2022-08-23 | 1 | -0/+1 |
| | |||||
* | Update to nixos 22.05 | Alex Auvolat | 2022-07-27 | 2 | -13/+15 |
| | |||||
* | Configure Consul DNS | Alex Auvolat | 2022-06-01 | 1 | -3/+23 |
| | |||||
* | Work on drone runner as VM | Alex Auvolat | 2022-05-30 | 2 | -0/+13 |
| | |||||
* | Fix firewall rule for IGD | Alex Auvolat | 2022-05-09 | 1 | -2/+2 |
| | |||||
* | Network configuration updates | Alex Auvolat | 2022-05-09 | 1 | -16/+21 |
| | |||||
* | Update network configuration | Alex Auvolat | 2022-05-08 | 1 | -1/+1 |
| | |||||
* | Replace ad-hoc wireguard by wesher on staging cluster | Alex Auvolat | 2022-04-20 | 2 | -104/+71 |
| | |||||
* | Wesher secret key in /var/lib/wesher/secrets | Alex Auvolat | 2022-04-20 | 2 | -3/+19 |
| | |||||
* | First working Wesher configuration | Alex Auvolat | 2022-04-19 | 2 | -0/+130 |
| | |||||
* | Wesher package now works | Alex Auvolat | 2022-04-19 | 2 | -21/+23 |
| | |||||
* | nix infinite recursioninfinite-recursion | Alex Auvolat | 2022-04-19 | 3 | -6/+34 |
| | |||||
* | Move configuration.nix to nix/ subfolderprod | Alex Auvolat | 2022-03-28 | 1 | -0/+116 |
| | |||||
* | Wireguard directly using LAN addresses when possible | Alex Auvolat | 2022-02-26 | 1 | -2/+13 |
| | |||||
* | Carcajou is encrypted | Alex Auvolat | 2022-02-25 | 1 | -1/+1 |
| | |||||
* | Add remote LUKS unlocking configuration | Alex Auvolat | 2022-02-25 | 2 | -3/+64 |
| | |||||
* | Config for prod cluster | Alex Auvolat | 2022-02-09 | 1 | -1/+1 |
| |