mirrors_public/oddlama_nix-config

mirror of https://github.com/oddlama/nix-config.git synced 2025-10-11 07:10:39 +02:00

Author	SHA1	Message	Date
oddlama	df2657bb1c	feat(ward): open kanidm port only for sentinel	2023-06-01 01:33:13 +02:00
oddlama	6cedaa53e6	chore: bind kanidm to proxy	2023-05-31 18:07:07 +02:00
oddlama	41df399bb6	feat: automatically generate allowedTCPPorts for mdns enabled interfaces; simplify nftables rules by adding a general untrusted zone	2023-05-27 01:59:28 +02:00
oddlama	e37601b486	feat: switch to DHCP based networking for microvms using mDNS for resolution	2023-05-26 01:21:26 +02:00
oddlama	0e3d881887	feat: experiment with kanidm and acme dns-01. add common conditional locations to impermanence	2023-05-25 01:57:16 +02:00
oddlama	d7f69c5baa	refactor: properly modularize repo secret management	2023-05-21 14:40:42 +02:00
oddlama	0221a24225	fix: ajust firewall rule names and wireguard link name to match	2023-05-20 19:35:17 +02:00
oddlama	4057ee9051	feat: implement cidr coersion to automatically determine wireguard network size from participants	2023-05-20 15:57:19 +02:00
oddlama	6d8f8ab2e3	feat: add static microvm networking; allow cidrv4 and cidrv6 to be specified explicitly on wireguard networks to allow for simple access by other modules.	2023-05-20 00:55:48 +02:00
oddlama	78cdcd3c69	feat: refactor and integrate wireguard module into microvm module	2023-05-19 21:33:27 +02:00
oddlama	02f27c85f4	chore: enforce disko use for microvm hosts	2023-05-16 17:54:43 +02:00
oddlama	a543394fa8	feat: enable ipv6 RA	2023-05-11 18:18:52 +02:00
oddlama	14ef8ef877	feat: modularize link renaming	2023-05-11 01:28:31 +02:00
oddlama	24655ece76	feat: add macvtap networking to microvms	2023-05-10 02:07:09 +02:00
oddlama	c26b5d3c89	feat: use stage1 systemd (and enable initrd sshd on ward)	2023-04-24 18:38:03 +02:00
oddlama	20adc139f8	chore: enable ip forwarding on ward	2023-04-21 17:32:46 +02:00
oddlama	deab5b335e	feat: add zoned nftables firewall	2023-04-21 01:27:43 +02:00
oddlama	12d840c7bf	feat(core): add nixos-nftables-firewall; and move some things from core/default.nix to more approriate locations	2023-04-16 00:35:04 +02:00
oddlama	1630e37afd	feat(wireguard): qr generation finished	2023-04-15 16:29:37 +02:00
oddlama	d5f2880457	feat(wireguard): generate psks only if needed; add most of the qr code generator	2023-04-15 01:52:30 +02:00
oddlama	d522a46f1d	refactor(wireguard): extract cross-host aggregation functions into extraLib	2023-04-14 14:32:17 +02:00
oddlama	6cffccd75c	feat: add wireguard key and psk generator app	2023-04-12 01:07:55 +02:00
oddlama	786fb75920	feat(wireguard): finish module and assertions	2023-04-11 17:15:36 +02:00
oddlama	ea48c316cc	feat: add preliminary wireguard module	2023-04-11 01:27:58 +02:00
oddlama	83a543b266	refactor: split apps into own files	2023-04-10 12:28:14 +02:00
oddlama	fc8b59178b	feat(zackbiene): add hostapd config	2023-03-16 01:25:20 +01:00
oddlama	f2f8ca71bb	chore: put real MAC addresses in repo secrets	2023-03-15 17:43:33 +01:00
oddlama	86b5751410	chore: prototype d2 graphing app	2023-02-13 01:50:24 +01:00
oddlama	b68021b3a4	chore: use agenix, enable initrd networking	2023-02-12 03:40:24 +01:00
oddlama	2081ce6585	feat: implement external rekeying via `nix run ".#rekey"`	2023-01-28 20:11:07 +01:00
oddlama	c5a5cf14ba	feat: add odroid-h3 host "ward"	2023-01-05 02:42:46 +01:00

1 2

81 commits