Commit graph

403 commits

Author SHA1 Message Date
111bf68a0a manage lewis with nix
move docker swarm ansible to this repo
move thecloud ansible to this repo
support data disks in terraform
2023-12-25 19:22:22 +01:00
d7ef46b642 extern ipv6 van opsense ge-update nav Glasnet migratie 2023-12-22 15:07:09 +01:00
ee3de2feed dnsmasq 2023-12-22 14:31:26 +01:00
87b300f22c switch to glasnet
todo: opnsense zelf heeft nog geen ipv6
2023-12-22 13:12:37 +01:00
304a3bbe34 replace powerdns with BIND 2023-12-17 17:41:31 +01:00
721623c8fc update to nixos 23.11
enable static IP for terraformed VMs
restructure legacy code
move hermes code to this repo
don't use data disk for hermes leases
2023-12-17 16:22:22 +01:00
04e9ce3abb create module for disk configuration 2023-12-16 23:47:18 +01:00
8a7c1ba6a9 show configuration diffs 2023-12-16 16:02:41 +01:00
1e9a84f658 use kubenix to generate bootstrap k8s manifests
enable experimental features
2023-12-16 15:45:17 +01:00
06aa435612 Merge branch 'kubernetes' 2023-12-16 14:07:45 +01:00
38fce7d2b4 parameterize data disk mount point 2023-12-15 15:20:28 +01:00
b6a37eabbd parameterize fqdn for k3s SAN 2023-12-15 15:11:14 +01:00
052e3d7b63 create custom module for k3s configuration 2023-12-15 14:55:48 +01:00
0071dbfee5 bootstrap admin clusterrolebinding 2023-12-15 14:34:33 +01:00
1c0e4794a8 change k3s data dir to external disk
add additional SAN to k3s certificates
update README with k8s certificate instructions
open port for kubectl
2023-12-14 21:42:58 +01:00
deb87e4da3 add option to fix MAC address of VM
create atlas VM
2023-11-29 18:59:36 +01:00
d5d6b0d7cc Merge pull request 'Terraform & atlas' (#16) from vms into master
Reviewed-on: #16
2023-11-29 17:23:24 +01:00
7e9637c984 manage atlas 2023-11-29 17:21:18 +01:00
4f41fd746a enable k3s cluster
add simple kubenix script
2023-11-29 10:02:50 +01:00
0bf113fa25 WIP: nixos-anywhere for virtual machines 2023-11-25 21:00:21 +01:00
cc809942ef Merge pull request 'psql-terraform-db' (#12) from psql-terraform-db into master
Reviewed-on: #12
2023-11-25 14:52:19 +01:00
d1d52e0d96 add psql env variables to .envrc 2023-11-25 14:43:37 +01:00
51f84c42ba enable client certificate checking 2023-11-25 13:41:49 +01:00
d523da899c refactor module logic 2023-11-24 13:52:51 +01:00
c01d15a3e7 allow postgresql traffic in nftables 2023-11-24 10:53:18 +01:00
baa18a1929 add terraform user
permit terraformstates db access to terraform user
2023-11-24 10:48:18 +01:00
fbf8bb2ad6 working postgresql installation 2023-11-24 10:31:23 +01:00
05e7f70bbc enable uptimed
closes #11
2023-11-22 19:31:37 +01:00
fe79f59b2d fix ssh client config
closes #8
2023-11-22 19:04:26 +01:00
0d316fe7d2 merge normal and hardware configuration 2023-11-22 18:54:05 +01:00
e19e738b04 create custom module system 2023-11-22 18:28:55 +01:00
74bcda2c80 add saner pre-installed programs 2023-11-22 16:53:34 +01:00
d7a565f2ce use btrfs as main OS parition type
add 4GB swap partition
closes #6
closes #7
2023-11-19 17:48:57 +01:00
7e70d253f3 remove rust-motd because it is interferring with SSH 2023-11-19 17:31:12 +01:00
fc52d1c5be use rust-motd for greeting message 2023-11-15 21:25:35 +01:00
1beef05467 Merge pull request 'nixos-anywhere' (#4) from nixos-anywhere into master
Reviewed-on: #4
2023-11-15 13:47:05 +01:00
730ae4c4f2 switch to flake version of nixos-anywhere due to nixos-unstable issue 2023-11-15 13:37:13 +01:00
7fc138bc65 update readme
update boostrap script
2023-11-15 13:24:06 +01:00
8e6a40e878 fix formatter error 2023-11-15 13:10:27 +01:00
37f1e07e74 create helpers for creating nixos system and deploy nodes
move machine definitions to separate directory
2023-11-15 13:06:59 +01:00
3550a6e8a8 create top-level machine definition that is used by both deploy-rs and
nixos
rename bootstrap script
2023-11-15 12:55:57 +01:00
b4fbc0b955 improve nixos anywhere script:
- deploy age identity
- make script machine indepdendent
- add sanity check for wiping the system
create nix shell for running the script
2023-11-15 11:41:45 +01:00
022a6aabb4 remove ansible
deploy ssh host and user keys using agenix
deploy ssh certificates using ssh
2023-11-14 23:53:04 +01:00
dd8b23f5a9 initial nixos-anywhere 2023-11-13 22:44:43 +01:00
cf611e6362 remove nixpkgs overlay for deploy-rs 2023-11-12 14:15:21 +01:00
8c7c294aba update flake inputs 2023-11-12 14:11:52 +01:00
1faea2dd28 use deploy-rs
closes #2
2023-11-12 00:04:37 +01:00
840628740b add firewall! 2023-11-08 21:16:51 +01:00
a95ef6b212 propagate system arch to hardware configuration 2023-11-05 20:14:19 +01:00
397d6ab765 initial support for multiple servers 2023-11-05 20:11:51 +01:00