4047b0d8b2
router: reserve ips for nanokvms
flake / flake (push) Successful in 1m27s
2024-10-19 16:53:35 +01:00
d7a8562c7d
restic: modularise server component
flake / flake (push) Successful in 1m25s
2024-10-19 15:24:32 +01:00
ea163448df
homeassistant: enable waze
flake / flake (push) Successful in 1m23s
2024-10-19 00:39:33 +01:00
a8288ec678
scx_layered: get from forked nixpkgs
flake / flake (push) Successful in 1m24s
2024-10-18 13:56:40 +01:00
50a8411ac8
nixos: add nixpkgs-unstable to flake registry
flake / flake (push) Successful in 1m15s
2024-10-13 00:33:57 +01:00
6f5b9430c9
prometheus: add alert for resilio sync going down
flake / flake (push) Successful in 1m17s
2024-10-12 21:39:00 +01:00
33cdcdca0a
prometheus: enable systemd collector
flake / flake (push) Successful in 1m15s
2024-10-12 15:27:13 +01:00
c42a4e5297
chore(deps): lock file maintenance
flake / flake (push) Successful in 1m43s
2024-10-12 13:37:53 +00:00
2656c0dba9
scx_lavd: package and ship
flake / flake (push) Successful in 1m18s
2024-10-12 00:54:02 +01:00
961acd80d7
scx_layered: package and ship
flake / flake (push) Successful in 1m14s
2024-10-11 20:15:55 +01:00
eb07e4c4fd
chore(deps): update actions/checkout action to v4.2.1
flake / flake (push) Successful in 1m15s
2024-10-07 23:00:25 +00:00
4eaae0fa75
isponsorblocktv: deploy docker container
flake / flake (push) Successful in 1m18s
2024-10-06 21:38:06 +01:00
72955e2377
homeassistant: announce locally and deploy to hallway tablet
flake / flake (push) Successful in 1m17s
2024-10-06 20:43:48 +01:00
0a2330cb90
www: fix cloning script
flake / flake (push) Successful in 1m15s
2024-10-06 16:35:59 +01:00
3d8a60da5b
sched_ext: bump kernel to 6.12-rc1
...
flake / flake (push) Successful in 1m13s
Removes the custom kernel features and requires any host running
sched_ext to pull a kernel at least 6.12. Looks at
pkgs.unstable.linuxPackages first, if that's too old it falls back to
pkgs.linuxPackages_latest, and if that's too old it goes for
pkgs.unstable.linuxPackages_testing.
The plan is to leave `boot.kernelPackages` alone if new enough, but
we'll keep the assertion. Some schedulers might require more specific
kernel constraints in the future.
2024-10-03 00:17:59 +01:00
c0e331bf80
boron: enable resilio sync
flake / flake (push) Successful in 1m16s
2024-09-28 15:01:30 +01:00
9c419376c5
chore(deps): lock file maintenance
flake / flake (push) Successful in 1m19s
2024-09-28 12:31:15 +00:00
4332fee3ce
chore(deps): update actions/checkout action to v4.2.0
flake / flake (push) Successful in 1m15s
2024-09-26 23:00:18 +00:00
ceb8591705
step-ca: pin uid and gid
flake / flake (push) Successful in 1m14s
2024-09-23 20:30:35 +01:00
415a061842
prometheus: move id pinning to correct module
flake / flake (push) Successful in 1m15s
2024-09-23 20:26:34 +01:00
31a9828430
prometheus: add service and enable reporting globally ( #330 )
...
flake / flake (push) Successful in 1m15s
## Test plan:
- https://prometheus.ts.hillion.co.uk/graph?g0.expr=1%20-%20(node_filesystem_avail_bytes%7Bmountpoint%20%3D%20%22%2F%22%2C%20device%3D%22tmpfs%22%7D%20%2F%20node_filesystem_size_bytes%7Bmountpoint%20%3D%20%22%2F%22%2C%20device%3D%22tmpfs%22%7D)&g0.tab=0&g0.display_mode=lines&g0.show_exemplars=0&g0.range_input=1h - reports percentage used on all tmpfs roots. This is exactly what I wanted, in the future I might add alerts for it as high tmpfs usage is a sign of something being wrong and is likely to lead to OOMing.
Aside: NixOS is awesome. I just deployed full monitoring to every host I have and all future hosts in minutes.
Reviewed-on: #330
Co-authored-by: Jake Hillion <jake@hillion.co.uk>
Co-committed-by: Jake Hillion <jake@hillion.co.uk>
2024-09-23 20:24:31 +01:00
7afa21e537
chia: update to 2.4.3
flake / flake (push) Successful in 1m15s
2024-09-22 21:09:31 +01:00
739e1f6ab3
home: move tailscale exit node from microserver to router ( #328 )
...
flake / flake (push) Successful in 1m15s
## Test plan:
- Connected MacBook to iPhone hotspot (off network).
- With Tailscale connected can ping/ssh to microserver.home on both LANs (main and IoT).
- With exit node enabled traceroute shows router's tailscale IP as a hop.
- With exit node enabled ipinfo.io shows my home IP.
- With exit node disabled ipinfo.io shows an EE IP.
iPhone exit node is still playing up, it shows no Internet connection. This behaviour was identical with the Pi setup that this replaces, maybe an iOS 18 bug for Tailscale? Treating this as not a regression.
Co-authored-by: Jake Hillion <jake@hillion.co.uk>
Co-committed-by: Jake Hillion <jake@hillion.co.uk>
2024-09-22 21:04:53 +01:00
8933d38d36
sched_ext: ship pre-release 6.12 kernel
flake / flake (push) Successful in 1m14s
2024-09-22 16:18:04 +01:00
0ad31dddae
gendry: decrypt encrypted disk with clevis/tang
flake / flake (push) Successful in 1m15s
2024-09-22 11:06:03 +01:00
d5c2f8d543
router: setup cameras vlan
flake / flake (push) Successful in 1m15s
2024-09-17 09:20:27 +01:00
1189a41df9
chore(deps): lock file maintenance
flake / flake (push) Successful in 1m43s
2024-09-15 16:01:08 +00:00
39730d2ec3
macbook: add shell utilities
flake / flake (push) Successful in 1m16s
2024-09-14 02:39:26 +01:00
ac6f285400
resilio: require mounts be available
...
flake / flake (push) Successful in 1m15s
Without this resilio fails on boot on tywin.storage where the paths are
on a ZFS array which gets mounted reliably later than the resilio
service attempts to start.
2024-09-14 02:30:20 +01:00
e4b8fd7438
chore(deps): update determinatesystems/nix-installer-action action to v14
flake / flake (push) Successful in 1m27s
2024-09-10 00:00:51 +00:00
24be3394bc
chore(deps): update determinatesystems/magic-nix-cache-action action to v8
flake / flake (push) Successful in 1m13s
2024-09-09 23:00:50 +00:00
ba053c539c
boron: enable podman
flake / flake (push) Successful in 1m13s
2024-09-06 19:04:25 +01:00
3aeeb69c2b
nix-darwin: add macbook
flake / flake (push) Successful in 1m13s
2024-09-05 00:50:02 +01:00
85246af424
caddy: update to unstable
...
flake / flake (push) Successful in 1m13s
The default config for automatic ACME no longer works in Caddy <2.8.0.
This is due to changes with ZeroSSL's auth. Update to unstable Caddy
which is new enough to renew certs again.
Context: https://github.com/caddyserver/caddy/releases/tag/v2.8.0
Add `pkgs.unstable` as an overlay as recommended on the NixOS wiki. This
is needed here as Caddy must be runnable on all architectures.
2024-09-05 00:04:08 +01:00
ba7a39b66e
chore(deps): pin dependencies
flake / flake (push) Successful in 1m16s
2024-09-02 23:00:12 +00:00
df31ebebf8
boron: bump tmpfs to 100% of RAM
flake / flake (push) Successful in 1m18s
2024-08-31 22:04:38 +01:00
2f3a33ad8e
chore(deps): lock file maintenance
flake / flake (push) Successful in 1m15s
2024-08-30 19:01:46 +00:00
343b34b4dc
boron: support sched_ext in kernel
flake / flake (push) Successful in 1m45s
2024-08-30 18:52:31 +01:00
264799952e
bathroom_light: trust switchbot if more recently updated
flake / flake (push) Successful in 1m13s
2024-08-30 18:46:38 +01:00
5cef32cf1e
gitea actions: use cache for nix
flake / flake (push) Successful in 1m15s
2024-08-30 18:39:02 +01:00
6cc70e117d
tywin: mount d7
flake / flake (push) Successful in 1m14s
2024-08-22 15:17:11 +01:00
a52aed5778
gendry: use zram swap
flake / flake (push) Successful in 1m14s
2024-08-18 13:51:28 +01:00
70b53b5c01
chore(deps): lock file maintenance
flake / flake (push) Successful in 1m15s
2024-08-18 10:35:15 +00:00
3d642e2320
boron: move postgresqlBackup to disk to reduce ram pressure
flake / flake (push) Successful in 1m14s
2024-08-09 23:37:16 +01:00
41d5f0cc53
homeassistant: add sonos
flake / flake (push) Successful in 1m17s
2024-08-08 18:31:10 +01:00
974c947130
homeassistant: add smartthings
flake / flake (push) Successful in 1m15s
2024-08-04 18:15:34 +01:00
8a9498f8d7
homeassistant: expose sleep_mode to google
flake / flake (push) Successful in 1m15s
2024-08-04 17:56:32 +01:00
2ecdafe1cf
chore(deps): lock file maintenance
flake / flake (push) Successful in 1m32s
2024-08-03 12:15:23 +01:00
db5dc5aee6
step-ca: enable server on sodium and load root certs
flake / flake (push) Successful in 1m14s
2024-08-01 23:28:22 +01:00
f96f03ba0c
boron: update to Linux 6.10
flake / flake (push) Successful in 1m13s
2024-07-27 15:16:59 +01:00
