172e6c7415
router: enable ssh on eth0 and add work mbp key
flake / flake (push) Successful in 1m28s
2024-10-23 21:06:24 +01:00
9a18124847
phoenix: enable zswap
flake / flake (push) Successful in 1m25s
2024-10-21 23:00:04 +01:00
efbf9575f2
phoenix: enable plex
flake / flake (push) Successful in 1m25s
2024-10-21 22:27:12 +01:00
e03ce4e26c
phoenix: enable resilio sync and backups
flake / flake (push) Successful in 1m27s
2024-10-21 20:49:13 +01:00
b18ae44ccb
resilio: place storagePath in directoryPath by default
flake / flake (push) Successful in 1m25s
2024-10-21 08:54:20 +01:00
e80ef10eb7
resilio: calculate default deviceName automatically
flake / flake (push) Has been cancelled
2024-10-21 08:54:20 +01:00
26beb4116a
phoenix: serve restic
flake / flake (push) Successful in 1m27s
2024-10-21 00:39:36 +01:00
1822d07cfe
phoenix: enable downloads
flake / flake (push) Successful in 1m26s
2024-10-21 00:20:42 +01:00
a6efbb1b68
phoenix: import practical-defiant-coffee zpool
flake / flake (push) Successful in 1m24s
2024-10-20 20:07:59 +01:00
6fe4ca5b61
phoenix: mount disk btrfs partitions and add chia
flake / flake (push) Successful in 1m23s
2024-10-20 20:07:59 +01:00
3e8dcd359e
secrets: clean up tywin secrets
flake / flake (push) Successful in 1m26s
2024-10-20 20:07:16 +01:00
86bca8ce1c
tywin: prepare for zpool export
flake / flake (push) Successful in 1m23s
2024-10-20 19:37:26 +01:00
ee3b420220
backups/git: move tywin->phoenix
flake / flake (push) Successful in 1m24s
2024-10-20 17:40:20 +01:00
58ce44df6b
phoenix: add chia
flake / flake (push) Successful in 1m24s
2024-10-20 16:29:55 +01:00
f34592926e
phoenix: init host
flake / flake (push) Successful in 1m24s
2024-10-20 16:07:21 +01:00
7dd820685f
backup-git: fix systemd timer
flake / flake (push) Successful in 1m28s
2024-10-19 18:30:57 +01:00
4047b0d8b2
router: reserve ips for nanokvms
flake / flake (push) Successful in 1m27s
2024-10-19 16:53:35 +01:00
d7a8562c7d
restic: modularise server component
flake / flake (push) Successful in 1m25s
2024-10-19 15:24:32 +01:00
ea163448df
homeassistant: enable waze
flake / flake (push) Successful in 1m23s
2024-10-19 00:39:33 +01:00
a8288ec678
scx_layered: get from forked nixpkgs
flake / flake (push) Successful in 1m24s
2024-10-18 13:56:40 +01:00
50a8411ac8
nixos: add nixpkgs-unstable to flake registry
flake / flake (push) Successful in 1m15s
2024-10-13 00:33:57 +01:00
6f5b9430c9
prometheus: add alert for resilio sync going down
flake / flake (push) Successful in 1m17s
2024-10-12 21:39:00 +01:00
33cdcdca0a
prometheus: enable systemd collector
flake / flake (push) Successful in 1m15s
2024-10-12 15:27:13 +01:00
c42a4e5297
chore(deps): lock file maintenance
flake / flake (push) Successful in 1m43s
2024-10-12 13:37:53 +00:00
2656c0dba9
scx_lavd: package and ship
flake / flake (push) Successful in 1m18s
2024-10-12 00:54:02 +01:00
961acd80d7
scx_layered: package and ship
flake / flake (push) Successful in 1m14s
2024-10-11 20:15:55 +01:00
eb07e4c4fd
chore(deps): update actions/checkout action to v4.2.1
flake / flake (push) Successful in 1m15s
2024-10-07 23:00:25 +00:00
4eaae0fa75
isponsorblocktv: deploy docker container
flake / flake (push) Successful in 1m18s
2024-10-06 21:38:06 +01:00
72955e2377
homeassistant: announce locally and deploy to hallway tablet
flake / flake (push) Successful in 1m17s
2024-10-06 20:43:48 +01:00
0a2330cb90
www: fix cloning script
flake / flake (push) Successful in 1m15s
2024-10-06 16:35:59 +01:00
3d8a60da5b
sched_ext: bump kernel to 6.12-rc1
...
flake / flake (push) Successful in 1m13s
Removes the custom kernel features and requires any host running
sched_ext to pull a kernel at least 6.12. Looks at
pkgs.unstable.linuxPackages first, if that's too old it falls back to
pkgs.linuxPackages_latest, and if that's too old it goes for
pkgs.unstable.linuxPackages_testing.
The plan is to leave `boot.kernelPackages` alone if new enough, but
we'll keep the assertion. Some schedulers might require more specific
kernel constraints in the future.
2024-10-03 00:17:59 +01:00
c0e331bf80
boron: enable resilio sync
flake / flake (push) Successful in 1m16s
2024-09-28 15:01:30 +01:00
9c419376c5
chore(deps): lock file maintenance
flake / flake (push) Successful in 1m19s
2024-09-28 12:31:15 +00:00
4332fee3ce
chore(deps): update actions/checkout action to v4.2.0
flake / flake (push) Successful in 1m15s
2024-09-26 23:00:18 +00:00
ceb8591705
step-ca: pin uid and gid
flake / flake (push) Successful in 1m14s
2024-09-23 20:30:35 +01:00
415a061842
prometheus: move id pinning to correct module
flake / flake (push) Successful in 1m15s
2024-09-23 20:26:34 +01:00
31a9828430
prometheus: add service and enable reporting globally ( #330 )
...
flake / flake (push) Successful in 1m15s
## Test plan:
- https://prometheus.ts.hillion.co.uk/graph?g0.expr=1%20-%20(node_filesystem_avail_bytes%7Bmountpoint%20%3D%20%22%2F%22%2C%20device%3D%22tmpfs%22%7D%20%2F%20node_filesystem_size_bytes%7Bmountpoint%20%3D%20%22%2F%22%2C%20device%3D%22tmpfs%22%7D)&g0.tab=0&g0.display_mode=lines&g0.show_exemplars=0&g0.range_input=1h - reports percentage used on all tmpfs roots. This is exactly what I wanted, in the future I might add alerts for it as high tmpfs usage is a sign of something being wrong and is likely to lead to OOMing.
Aside: NixOS is awesome. I just deployed full monitoring to every host I have and all future hosts in minutes.
Reviewed-on: #330
Co-authored-by: Jake Hillion <jake@hillion.co.uk>
Co-committed-by: Jake Hillion <jake@hillion.co.uk>
2024-09-23 20:24:31 +01:00
7afa21e537
chia: update to 2.4.3
flake / flake (push) Successful in 1m15s
2024-09-22 21:09:31 +01:00
739e1f6ab3
home: move tailscale exit node from microserver to router ( #328 )
...
flake / flake (push) Successful in 1m15s
## Test plan:
- Connected MacBook to iPhone hotspot (off network).
- With Tailscale connected can ping/ssh to microserver.home on both LANs (main and IoT).
- With exit node enabled traceroute shows router's tailscale IP as a hop.
- With exit node enabled ipinfo.io shows my home IP.
- With exit node disabled ipinfo.io shows an EE IP.
iPhone exit node is still playing up, it shows no Internet connection. This behaviour was identical with the Pi setup that this replaces, maybe an iOS 18 bug for Tailscale? Treating this as not a regression.
Co-authored-by: Jake Hillion <jake@hillion.co.uk>
Co-committed-by: Jake Hillion <jake@hillion.co.uk>
2024-09-22 21:04:53 +01:00
8933d38d36
sched_ext: ship pre-release 6.12 kernel
flake / flake (push) Successful in 1m14s
2024-09-22 16:18:04 +01:00
0ad31dddae
gendry: decrypt encrypted disk with clevis/tang
flake / flake (push) Successful in 1m15s
2024-09-22 11:06:03 +01:00
d5c2f8d543
router: setup cameras vlan
flake / flake (push) Successful in 1m15s
2024-09-17 09:20:27 +01:00
1189a41df9
chore(deps): lock file maintenance
flake / flake (push) Successful in 1m43s
2024-09-15 16:01:08 +00:00
39730d2ec3
macbook: add shell utilities
flake / flake (push) Successful in 1m16s
2024-09-14 02:39:26 +01:00
ac6f285400
resilio: require mounts be available
...
flake / flake (push) Successful in 1m15s
Without this resilio fails on boot on tywin.storage where the paths are
on a ZFS array which gets mounted reliably later than the resilio
service attempts to start.
2024-09-14 02:30:20 +01:00
e4b8fd7438
chore(deps): update determinatesystems/nix-installer-action action to v14
flake / flake (push) Successful in 1m27s
2024-09-10 00:00:51 +00:00
24be3394bc
chore(deps): update determinatesystems/magic-nix-cache-action action to v8
flake / flake (push) Successful in 1m13s
2024-09-09 23:00:50 +00:00
ba053c539c
boron: enable podman
flake / flake (push) Successful in 1m13s
2024-09-06 19:04:25 +01:00
3aeeb69c2b
nix-darwin: add macbook
flake / flake (push) Successful in 1m13s
2024-09-05 00:50:02 +01:00
85246af424
caddy: update to unstable
...
flake / flake (push) Successful in 1m13s
The default config for automatic ACME no longer works in Caddy <2.8.0.
This is due to changes with ZeroSSL's auth. Update to unstable Caddy
which is new enough to renew certs again.
Context: https://github.com/caddyserver/caddy/releases/tag/v2.8.0
Add `pkgs.unstable` as an overlay as recommended on the NixOS wiki. This
is needed here as Caddy must be runnable on all architectures.
2024-09-05 00:04:08 +01:00
