191 Commits

Author	SHA1	Message	Date
Jake Hillion	390bdaaf51	resilio: update to unstable module ... Currently this pins `rslsync`'s group ID using https://github.com/NixOS/nixpkgs/pull/350055	2024-11-09 21:03:56 +00:00
Jake Hillion	a07c493802	stinger: update firewall for homeassistant	2024-11-06 20:12:59 +00:00
Jake Hillion	3a2d6f4e2e	stinger: enable bluetooth	2024-11-06 10:34:33 +00:00
Jake Hillion	a383e013c6	homeassistant: microserver.home -> stinger.pop	2024-11-06 01:36:14 +00:00
Jake Hillion	a3fd10be31	stinger: init host	2024-11-05 22:10:12 +00:00
Jake Hillion	2999a5f744	merlin: init host	2024-11-04 22:35:55 +00:00
Jake Hillion	363b8fe3c0	tywin.storage: delete	2024-10-29 23:24:19 +00:00
Jake Hillion	817cc3f356	phoenix: temporarily add a password to debug boot issues	2024-10-27 15:37:52 +00:00
Jake Hillion	c33d5c2edd	secrets: re-encrypt with boron user key	2024-10-27 00:43:47 +01:00
Jake Hillion	b5489abf98	ssh: allow on all ports for sodium/phoenix	2024-10-26 18:15:31 +01:00
Jake Hillion	9970dc413d	boron: persist ssh key	2024-10-26 15:04:14 +01:00
Jake Hillion	172e6c7415	router: enable ssh on eth0 and add work mbp key	2024-10-23 21:06:24 +01:00
Jake Hillion	9a18124847	phoenix: enable zswap	2024-10-21 23:00:04 +01:00
Jake Hillion	efbf9575f2	phoenix: enable plex	2024-10-21 22:27:12 +01:00
Jake Hillion	e03ce4e26c	phoenix: enable resilio sync and backups	2024-10-21 20:49:13 +01:00
Jake Hillion	b18ae44ccb	resilio: place storagePath in directoryPath by default	2024-10-21 08:54:20 +01:00
Jake Hillion	e80ef10eb7	resilio: calculate default deviceName automatically	2024-10-21 08:54:20 +01:00
Jake Hillion	26beb4116a	phoenix: serve restic	2024-10-21 00:39:36 +01:00
Jake Hillion	1822d07cfe	phoenix: enable downloads	2024-10-21 00:20:42 +01:00
Jake Hillion	a6efbb1b68	phoenix: import practical-defiant-coffee zpool	2024-10-20 20:07:59 +01:00
Jake Hillion	6fe4ca5b61	phoenix: mount disk btrfs partitions and add chia	2024-10-20 20:07:59 +01:00
Jake Hillion	86bca8ce1c	tywin: prepare for zpool export	2024-10-20 19:37:26 +01:00
Jake Hillion	ee3b420220	backups/git: move tywin->phoenix	2024-10-20 17:40:20 +01:00
Jake Hillion	58ce44df6b	phoenix: add chia	2024-10-20 16:29:55 +01:00
Jake Hillion	f34592926e	phoenix: init host	2024-10-20 16:07:21 +01:00
Jake Hillion	4047b0d8b2	router: reserve ips for nanokvms	2024-10-19 16:53:35 +01:00
Jake Hillion	d7a8562c7d	restic: modularise server component	2024-10-19 15:24:32 +01:00
Jake Hillion	4eaae0fa75	isponsorblocktv: deploy docker container	2024-10-06 21:38:06 +01:00
Jake Hillion	72955e2377	homeassistant: announce locally and deploy to hallway tablet	2024-10-06 20:43:48 +01:00
Jake Hillion	c0e331bf80	boron: enable resilio sync	2024-09-28 15:01:30 +01:00
Jake Hillion	739e1f6ab3	home: move tailscale exit node from microserver to router (#328) ... ## Test plan: - Connected MacBook to iPhone hotspot (off network). - With Tailscale connected can ping/ssh to microserver.home on both LANs (main and IoT). - With exit node enabled traceroute shows router's tailscale IP as a hop. - With exit node enabled ipinfo.io shows my home IP. - With exit node disabled ipinfo.io shows an EE IP. iPhone exit node is still playing up, it shows no Internet connection. This behaviour was identical with the Pi setup that this replaces, maybe an iOS 18 bug for Tailscale? Treating this as not a regression. Co-authored-by: Jake Hillion <jake@hillion.co.uk> Co-committed-by: Jake Hillion <jake@hillion.co.uk>	2024-09-22 21:04:53 +01:00
Jake Hillion	8933d38d36	sched_ext: ship pre-release 6.12 kernel	2024-09-22 16:18:04 +01:00
Jake Hillion	0ad31dddae	gendry: decrypt encrypted disk with clevis/tang	2024-09-22 11:06:03 +01:00
Jake Hillion	d5c2f8d543	router: setup cameras vlan	2024-09-17 09:20:27 +01:00
Jake Hillion	ba053c539c	boron: enable podman	2024-09-06 19:04:25 +01:00
Jake Hillion	85246af424	caddy: update to unstable ... The default config for automatic ACME no longer works in Caddy <2.8.0. This is due to changes with ZeroSSL's auth. Update to unstable Caddy which is new enough to renew certs again. Context: https://github.com/caddyserver/caddy/releases/tag/v2.8.0 Add `pkgs.unstable` as an overlay as recommended on the NixOS wiki. This is needed here as Caddy must be runnable on all architectures.	2024-09-05 00:04:08 +01:00
Jake Hillion	df31ebebf8	boron: bump tmpfs to 100% of RAM	2024-08-31 22:04:38 +01:00
Jake Hillion	343b34b4dc	boron: support sched_ext in kernel	2024-08-30 18:52:31 +01:00
Jake Hillion	6cc70e117d	tywin: mount d7	2024-08-22 15:17:11 +01:00
Jake Hillion	a52aed5778	gendry: use zram swap	2024-08-18 13:51:28 +01:00
Jake Hillion	3d642e2320	boron: move postgresqlBackup to disk to reduce ram pressure	2024-08-09 23:37:16 +01:00
Jake Hillion	41d5f0cc53	homeassistant: add sonos	2024-08-08 18:31:10 +01:00
Jake Hillion	db5dc5aee6	step-ca: enable server on sodium and load root certs	2024-08-01 23:28:22 +01:00
Jake Hillion	f96f03ba0c	boron: update to Linux 6.10	2024-07-27 15:16:59 +01:00
Jake Hillion	0edb8394c8	tywin: mount d6	2024-07-17 22:19:41 +01:00
Jake Hillion	bbab551b0f	be.lt: connect to Hillion WPA3 Network	2024-07-17 17:10:08 +01:00
Jake Hillion	462f0eecf4	gendry: allow luks discards	2024-07-17 09:33:33 +01:00
Jake Hillion	cde6bdd498	tywin: enable clevis/tang for boot	2024-06-10 22:34:28 +01:00
Jake Hillion	bd5efa3648	tywin: encrypt root disk	2024-06-09 23:14:44 +01:00
Jake Hillion	30679f9f4b	sodium: add cache directory on the sd card	2024-06-02 22:41:49 +01:00