chayleaf
12c27384df
router: small routing tables tweak
...
TODO: find a way to filter by SNI so I don't have to keep this ugly hack
2023-09-13 16:44:50 +07:00
chayleaf
32ea4fdd8d
server: add keycloak
2023-08-28 00:46:51 +07:00
chayleaf
9e70d53ee5
server: add scanservjs, nixmsi: refix boot
2023-08-24 18:32:47 +07:00
chayleaf
dd45e51bc1
router: fix dnat
2023-08-16 05:10:07 +07:00
chayleaf
5fed5f56c5
update inputs
2023-08-16 00:59:50 +07:00
chayleaf
e97457bea0
router: block some random ip address
2023-08-15 06:19:39 +07:00
chayleaf
0d497d0e07
mss clamp in both directions... maybe?
2023-08-14 05:50:48 +07:00
chayleaf
6804ed705f
router: hijack some dns requests
2023-08-13 22:47:57 +07:00
chayleaf
ea1d12da4f
router/metrics: denoise kea logs
2023-08-13 18:08:34 +07:00
chayleaf
4f650b2091
router: small port 25 changes
...
technically this is relevant for security since it blocks requests to
port 25 over ipv6 from clients other than the server, but it doesn't
matter on my network because i don't have ipv6
2023-08-13 16:40:21 +07:00
chayleaf
fc95bb1e97
router: fix mailserver
...
and other misc changes
2023-08-13 04:59:20 +07:00
chayleaf
67509d0801
system/common: misc nix-related changes
2023-08-12 17:40:51 +07:00
chayleaf
aa6fef1d9c
router: mss clamping
...
also other misc changes such as fix boot on the laptop
2023-08-09 23:43:17 +07:00
chayleaf
5272bf603a
add vim config for minimal systems
...
(also revert making fish the default shell on non-minimal systems)
2023-08-05 03:10:33 +07:00
chayleaf
9bf71ca13a
nix: 2.16->2.15; home/fish/atuin: remove up key binding
...
nix-plugins built for a newer nix versions than pkgs.nix makes using
pkgs.nix impossible, and overriding pkgs.nix globally breaks some
derivations, so I have to do per-app overrides (couldn't find a way to
revert it for a single app for some reason). This reverts a nix-plugins
update to 2.16 so I can build it for 2.15 and escape the "symbol not
found" hell.
also override nixVersions.unstable to be 2.15 as well
finally, use custom code for atuin integration because I hate the way it
normally hijacks my up key
2023-08-04 08:30:16 +07:00
chayleaf
44877e1d59
update inputs
2023-07-31 02:17:16 +07:00
chayleaf
fe587594ff
server/home/hydra: set cpu/io scheduler to idle
2023-07-29 01:19:56 +07:00
chayleaf
5d21e5281e
system/common: minor build optimizations
2023-07-29 00:53:28 +07:00
chayleaf
e50348731e
server/home/hydra: probably fix remaining visual errors
2023-07-28 22:35:31 +07:00
chayleaf
4d19f773df
server/home/hydra: add queue runner to nix allowed users
2023-07-28 22:18:32 +07:00
chayleaf
50279b7c0f
server/home/metrics: listen on 127.0.0.1 only
2023-07-28 21:56:34 +07:00
chayleaf
ed333d5999
server/home: fix /etc/nixos/private
2023-07-28 21:15:28 +07:00
chayleaf
e12b0a756d
more ci fixes
2023-07-28 14:12:55 +07:00
chayleaf
443c52a29e
further ci fixes
2023-07-28 13:51:25 +07:00
chayleaf
9f93d0cbcf
ci: some fixes
...
more fixes are still needed
2023-07-28 13:19:43 +07:00
chayleaf
6e9682800f
small random fixes
2023-07-28 12:02:37 +07:00
chayleaf
db2c8d7c3d
server/home: init; router/unbound: fix avahi resolver
...
this has binary cache, hydra, metrics, etc
2023-07-28 09:59:47 +07:00
chayleaf
7f5711eb8d
router: fix comment
2023-07-21 01:55:12 +07:00
chayleaf
ae8efef7b0
set router wlan channel; add home/{tmpfiles,nix-index.service}
2023-07-21 01:51:34 +07:00
chayleaf
a6edc08515
update inputs
...
and remove some workarounds
2023-07-12 20:48:20 +07:00
chayleaf
ab6e49cab5
vfio/lookingGlass: more robust way of applying overlay
2023-07-12 14:59:52 +07:00
chayleaf
d2377ffb5d
router: bikeshedding
2023-07-12 14:27:16 +07:00
chayleaf
0ac1502979
router: small update
...
Since I have to rebuild unbound and Linux anyway, might as well change
it a bit
2023-07-12 04:05:05 +07:00
chayleaf
64ff8be357
(mostly) update inputs
...
also add rz-ghidra, fix fdroid update script, and some other stuff
2023-07-12 03:26:50 +07:00
chayleaf
f99ae26285
router/update-rkn-blacklist: verify json before committing
2023-07-02 17:12:29 +07:00
chayleaf
496dea4b00
router/unbound: allow temporary dynamic query modification
2023-07-02 17:01:41 +07:00
chayleaf
74b244ff22
router/unbound: fix dynamic set update inconsistency
2023-06-29 20:43:34 +07:00
chayleaf
4513390fca
remove maubot package in favor of maubot.nix
2023-06-29 03:10:41 +07:00
chayleaf
25f54c7df6
server: btrfs->bcachefs; add maubot.nix; update searxng
...
router: add remote query editing support
2023-06-29 01:11:31 +07:00
chayleaf
5211eb8d71
router: fix unbound restarting on any flake update
2023-06-24 15:04:45 +07:00
chayleaf
2bdc0f1c8c
router: fix iot blocking
...
for whatever reason the empty rtable didnt work
but i need some domains to work anyway so whatever
2023-06-24 14:52:13 +07:00
chayleaf
f119df524c
split system/hosts into hosts and devices
2023-06-24 13:07:42 +07:00
chayleaf
561a481f1a
router: final fixes, it's now in production
2023-06-24 10:28:15 +07:00
chayleaf
8894e0d89c
router: finally works
2023-06-24 07:12:11 +07:00
chayleaf
a7c308a5f6
router: more progress
2023-06-20 15:47:36 +07:00
chayleaf
818ba92987
virtiofsd: replace with C package
...
The Rust package doesn't work due to this bug:
https://gitlab.com/virtio-fs/virtiofsd/-/issues
2023-06-15 15:36:35 +07:00
chayleaf
9b06667b57
bpi-r3: working config
2023-06-14 17:26:54 +07:00
chayleaf
683e9a747f
ccache: use preprocessor mode; system76-scheduler: add osu! to games
2023-06-12 20:12:15 +07:00
chayleaf
26f1d0a864
bpi-r3: working boot
2023-06-12 17:07:38 +07:00
chayleaf
1adde1ba0e
update inputs; bpi-r3: build kernel from source
2023-06-11 21:48:35 +07:00