Commit graph

249 commits

Author SHA1 Message Date
304a3bbe34 replace powerdns with BIND 2023-12-17 17:41:31 +01:00
721623c8fc update to nixos 23.11
enable static IP for terraformed VMs
restructure legacy code
move hermes code to this repo
don't use data disk for hermes leases
2023-12-17 16:22:22 +01:00
04e9ce3abb create module for disk configuration 2023-12-16 23:47:18 +01:00
8a7c1ba6a9 show configuration diffs 2023-12-16 16:02:41 +01:00
1e9a84f658 use kubenix to generate bootstrap k8s manifests
enable experimental features
2023-12-16 15:45:17 +01:00
06aa435612 Merge branch 'kubernetes' 2023-12-16 14:07:45 +01:00
38fce7d2b4 parameterize data disk mount point 2023-12-15 15:20:28 +01:00
b6a37eabbd parameterize fqdn for k3s SAN 2023-12-15 15:11:14 +01:00
052e3d7b63 create custom module for k3s configuration 2023-12-15 14:55:48 +01:00
0071dbfee5 bootstrap admin clusterrolebinding 2023-12-15 14:34:33 +01:00
1c0e4794a8 change k3s data dir to external disk
add additional SAN to k3s certificates
update README with k8s certificate instructions
open port for kubectl
2023-12-14 21:42:58 +01:00
deb87e4da3 add option to fix MAC address of VM
create atlas VM
2023-11-29 18:59:36 +01:00
d5d6b0d7cc Merge pull request 'Terraform & atlas' (#16) from vms into master
Reviewed-on: #16
2023-11-29 17:23:24 +01:00
7e9637c984 manage atlas 2023-11-29 17:21:18 +01:00
4f41fd746a enable k3s cluster
add simple kubenix script
2023-11-29 10:02:50 +01:00
0bf113fa25 WIP: nixos-anywhere for virtual machines 2023-11-25 21:00:21 +01:00
cc809942ef Merge pull request 'psql-terraform-db' (#12) from psql-terraform-db into master
Reviewed-on: #12
2023-11-25 14:52:19 +01:00
d1d52e0d96 add psql env variables to .envrc 2023-11-25 14:43:37 +01:00
51f84c42ba enable client certificate checking 2023-11-25 13:41:49 +01:00
d523da899c refactor module logic 2023-11-24 13:52:51 +01:00
c01d15a3e7 allow postgresql traffic in nftables 2023-11-24 10:53:18 +01:00
baa18a1929 add terraform user
permit terraformstates db access to terraform user
2023-11-24 10:48:18 +01:00
fbf8bb2ad6 working postgresql installation 2023-11-24 10:31:23 +01:00
05e7f70bbc enable uptimed
closes #11
2023-11-22 19:31:37 +01:00
fe79f59b2d fix ssh client config
closes #8
2023-11-22 19:04:26 +01:00
0d316fe7d2 merge normal and hardware configuration 2023-11-22 18:54:05 +01:00
e19e738b04 create custom module system 2023-11-22 18:28:55 +01:00
74bcda2c80 add saner pre-installed programs 2023-11-22 16:53:34 +01:00
d7a565f2ce use btrfs as main OS parition type
add 4GB swap partition
closes #6
closes #7
2023-11-19 17:48:57 +01:00
7e70d253f3 remove rust-motd because it is interferring with SSH 2023-11-19 17:31:12 +01:00
fc52d1c5be use rust-motd for greeting message 2023-11-15 21:25:35 +01:00
1beef05467 Merge pull request 'nixos-anywhere' (#4) from nixos-anywhere into master
Reviewed-on: #4
2023-11-15 13:47:05 +01:00
730ae4c4f2 switch to flake version of nixos-anywhere due to nixos-unstable issue 2023-11-15 13:37:13 +01:00
7fc138bc65 update readme
update boostrap script
2023-11-15 13:24:06 +01:00
8e6a40e878 fix formatter error 2023-11-15 13:10:27 +01:00
37f1e07e74 create helpers for creating nixos system and deploy nodes
move machine definitions to separate directory
2023-11-15 13:06:59 +01:00
3550a6e8a8 create top-level machine definition that is used by both deploy-rs and
nixos
rename bootstrap script
2023-11-15 12:55:57 +01:00
b4fbc0b955 improve nixos anywhere script:
- deploy age identity
- make script machine indepdendent
- add sanity check for wiping the system
create nix shell for running the script
2023-11-15 11:41:45 +01:00
022a6aabb4 remove ansible
deploy ssh host and user keys using agenix
deploy ssh certificates using ssh
2023-11-14 23:53:04 +01:00
dd8b23f5a9 initial nixos-anywhere 2023-11-13 22:44:43 +01:00
cf611e6362 remove nixpkgs overlay for deploy-rs 2023-11-12 14:15:21 +01:00
8c7c294aba update flake inputs 2023-11-12 14:11:52 +01:00
1faea2dd28 use deploy-rs
closes #2
2023-11-12 00:04:37 +01:00
840628740b add firewall! 2023-11-08 21:16:51 +01:00
a95ef6b212 propagate system arch to hardware configuration 2023-11-05 20:14:19 +01:00
397d6ab765 initial support for multiple servers 2023-11-05 20:11:51 +01:00
a4a0e587c3 Update README.md 2023-11-05 19:07:32 +01:00
9c59a20b54 update README
change directory naming
2023-11-05 19:03:44 +01:00
0ab4ba65c6 init 2023-11-05 18:43:32 +01:00