Commit graph

42 commits

Author SHA1 Message Date
fd0aeacff4
feat(firewall): Sunset fail2ban and switch to reaction
All checks were successful
build configuration / build_storage01 (push) Successful in 1m49s
build configuration / build_compute01 (push) Successful in 1m52s
build configuration / build_web02 (push) Successful in 2m0s
build configuration / build_vault01 (push) Successful in 2m12s
build configuration / build_web01 (push) Successful in 2m27s
lint / check (push) Successful in 29s
build configuration / build_geo02 (push) Successful in 1m28s
build configuration / build_rescue01 (push) Successful in 1m33s
build configuration / build_bridge01 (push) Successful in 1m22s
build configuration / build_geo01 (push) Successful in 1m35s
build configuration / push_to_cache_storage01 (push) Successful in 1m49s
build configuration / push_to_cache_compute01 (push) Successful in 1m52s
build configuration / push_to_cache_geo02 (push) Successful in 1m39s
build configuration / push_to_cache_web02 (push) Successful in 1m47s
build configuration / push_to_cache_rescue01 (push) Successful in 1m47s
build configuration / push_to_cache_bridge01 (push) Successful in 1m29s
build configuration / push_to_cache_web01 (push) Successful in 2m27s
build configuration / push_to_cache_geo01 (push) Successful in 1m22s
2024-09-01 22:51:56 +02:00
8a42e18d98
feat(k-radius): Use LE certificates instead of self-signed ones
All checks were successful
build configuration / build_storage01 (push) Successful in 1m38s
build configuration / build_compute01 (push) Successful in 1m40s
build configuration / build_web01 (push) Successful in 2m11s
build configuration / build_vault01 (push) Successful in 2m11s
lint / check (push) Successful in 27s
build configuration / build_geo02 (push) Successful in 1m20s
build configuration / build_geo01 (push) Successful in 1m23s
build configuration / build_web02 (push) Successful in 1m28s
build configuration / build_rescue01 (push) Successful in 1m28s
build configuration / build_bridge01 (push) Successful in 1m20s
build configuration / push_to_cache_storage01 (push) Successful in 1m32s
build configuration / push_to_cache_geo02 (push) Successful in 1m38s
build configuration / push_to_cache_geo01 (push) Successful in 1m38s
build configuration / push_to_cache_compute01 (push) Successful in 2m8s
build configuration / push_to_cache_rescue01 (push) Successful in 1m39s
build configuration / push_to_cache_web01 (push) Successful in 2m29s
build configuration / push_to_cache_web02 (push) Successful in 1m28s
build configuration / push_to_cache_bridge01 (push) Successful in 1m17s
2024-09-01 15:40:59 +02:00
3ca3ff8939 feat(radius): add AP secret for RADIUS auth requests
All checks were successful
build configuration / build_web02 (push) Successful in 1m43s
build configuration / build_storage01 (push) Successful in 1m45s
build configuration / build_compute01 (push) Successful in 1m47s
build configuration / build_vault01 (push) Successful in 1m56s
build configuration / build_web01 (push) Successful in 2m12s
lint / check (push) Successful in 41s
build configuration / build_bridge01 (push) Successful in 1m25s
build configuration / build_geo01 (push) Successful in 1m27s
build configuration / build_geo02 (push) Successful in 1m28s
build configuration / build_rescue01 (push) Successful in 1m31s
build configuration / push_to_cache_storage01 (push) Successful in 1m43s
build configuration / push_to_cache_web02 (push) Successful in 1m38s
build configuration / push_to_cache_bridge01 (push) Successful in 1m33s
build configuration / push_to_cache_geo01 (push) Successful in 1m41s
build configuration / push_to_cache_compute01 (push) Successful in 2m1s
build configuration / push_to_cache_rescue01 (push) Successful in 1m35s
build configuration / push_to_cache_geo02 (push) Successful in 1m26s
build configuration / push_to_cache_web01 (push) Successful in 2m34s
Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>
2024-08-31 22:38:35 +02:00
411795c664
fix(routing): clean icmp storm
Some checks failed
Check meta / check_meta (pull_request) Successful in 26s
Check meta / check_dns (pull_request) Successful in 48s
build configuration / build_storage01 (pull_request) Successful in 1m30s
build configuration / build_compute01 (pull_request) Successful in 1m37s
build configuration / build_web02 (pull_request) Successful in 1m12s
build configuration / build_rescue01 (pull_request) Successful in 1m8s
build configuration / build_vault01 (pull_request) Successful in 2m3s
build configuration / build_web01 (pull_request) Successful in 2m3s
build configuration / push_to_cache (pull_request) Failing after 3m7s
Check meta / check_meta (push) Successful in 23s
Check meta / check_dns (push) Successful in 42s
build configuration / build_compute01 (push) Successful in 1m23s
build configuration / build_storage01 (push) Successful in 1m23s
build configuration / build_vault01 (push) Successful in 1m11s
build configuration / build_web01 (push) Successful in 1m34s
build configuration / build_web02 (push) Successful in 1m12s
lint / check (push) Successful in 23s
build configuration / build_rescue01 (push) Successful in 1m21s
build configuration / push_to_cache (push) Successful in 3m9s
2024-07-08 20:38:01 +02:00
dce439fcca
fix(shitty-oob): Drop user vlans when no-uplink 2024-07-08 20:38:00 +02:00
37a18c0347
feat(nat): Enable nat (with ip_forward) 2024-07-08 20:38:00 +02:00
bc5ee80d69 style: requested changes
Some checks failed
Check meta / check_meta (pull_request) Successful in 26s
Check meta / check_dns (pull_request) Successful in 47s
build configuration / build_vault01 (pull_request) Successful in 1m14s
build configuration / build_compute01 (pull_request) Successful in 1m16s
build configuration / build_web02 (pull_request) Successful in 54s
build configuration / build_storage01 (pull_request) Successful in 1m27s
build configuration / build_web01 (pull_request) Successful in 1m33s
build configuration / build_rescue01 (pull_request) Successful in 55s
build configuration / build_web02 (push) Successful in 1m7s
build configuration / build_storage01 (push) Successful in 1m13s
build configuration / build_rescue01 (push) Successful in 1m12s
build configuration / build_compute01 (push) Successful in 1m16s
build configuration / build_vault01 (push) Successful in 1m15s
build configuration / build_web01 (push) Successful in 1m36s
lint / check (push) Successful in 24s
build configuration / push_to_cache (pull_request) Failing after 2m17s
build configuration / push_to_cache (push) Successful in 2m42s
2024-05-26 20:50:33 +02:00
9f256186e0 feat(dhcp): drop freeRadius to use networkd 2024-05-23 14:58:37 +02:00
e9c5489bc2 feat(dhcp): dhcp configuration
limit to 300 vlans because of freeRadius limitation
2024-05-23 10:39:24 +02:00
f9250e8886 feat(k-radius): Allow to enable extra mods and sites 2024-05-23 10:39:24 +02:00
8c14c5d2c6 refactor(vlans): list vlans and their parameters in a separate file 2024-05-23 10:39:24 +02:00
f22580dd26 fix(vlans): activate things to bypass vlan limit 2024-05-23 10:39:24 +02:00
35ab7bfee3 feat(dhcp): Add DHCP on vlans
Uses networkd, maybe it's better to do it with radius, but it's simpler
2024-05-23 10:39:24 +02:00
150e741263 feat(routing): Chaque vlan a une IP différente et policyrules 2024-05-23 10:39:24 +02:00
93bf6f8baa feat: refactor du plan IP 2024-05-23 10:39:24 +02:00
2c88c2bad7 fix(netbox-agent): batch requests filtering on interfaces
All checks were successful
build configuration / build_web02 (push) Successful in 1m16s
build configuration / build_storage01 (push) Successful in 1m18s
build configuration / build_compute01 (push) Successful in 1m21s
build configuration / build_vault01 (push) Successful in 1m22s
build configuration / build_web01 (push) Successful in 1m38s
lint / check (push) Successful in 25s
build configuration / build_rescue01 (push) Successful in 56s
build configuration / push_to_cache (push) Successful in 2m13s
Re-enable the service on vault01 now that it works
2024-05-07 13:29:43 +02:00
sinavir
3494f609bb fix(netbox-agent): really disable on vault01
All checks were successful
build configuration / build_compute01 (push) Successful in 2m4s
build configuration / build_vault01 (push) Successful in 2m8s
build configuration / build_storage01 (push) Successful in 2m17s
build configuration / build_web02 (push) Successful in 2m25s
lint / check (push) Successful in 24s
build configuration / build_rescue01 (push) Successful in 2m30s
build configuration / build_web01 (push) Successful in 2m40s
build configuration / push_to_cache (push) Successful in 2m33s
2024-05-07 09:07:22 +02:00
sinavir
bf4bdf70df fix(netbox-agent): disable on vault01
All checks were successful
build configuration / build_web02 (push) Successful in 2m26s
build configuration / build_rescue01 (push) Successful in 2m26s
build configuration / build_vault01 (push) Successful in 2m29s
build configuration / build_compute01 (push) Successful in 2m32s
build configuration / build_storage01 (push) Successful in 2m38s
build configuration / build_web01 (push) Successful in 2m49s
lint / check (push) Successful in 24s
build configuration / push_to_cache (push) Successful in 2m22s
2024-05-07 08:45:19 +02:00
dd10a8e2fe feat(ups): Use netbirdIp as given in the metadata
All checks were successful
build configuration / build_web02 (push) Successful in 1m6s
build configuration / build_rescue01 (push) Successful in 1m12s
build configuration / build_storage01 (push) Successful in 1m15s
build configuration / build_compute01 (push) Successful in 1m16s
build configuration / build_vault01 (push) Successful in 1m16s
lint / check (push) Successful in 23s
build configuration / build_web01 (push) Successful in 1m37s
build configuration / push_to_cache (push) Successful in 2m13s
2024-04-23 13:47:21 +02:00
sinavir
d5d21ec204 fix(prometheus-nut-exporter): make it work
Some checks failed
build configuration / build_web02 (push) Successful in 1m3s
build configuration / build_storage01 (push) Successful in 1m16s
build configuration / build_compute01 (push) Successful in 1m21s
build configuration / build_vault01 (push) Successful in 1m21s
build configuration / build_web01 (push) Successful in 1m36s
lint / check (push) Successful in 27s
build configuration / build_rescue01 (push) Successful in 55s
build configuration / push_to_cache (push) Successful in 2m13s
Check meta / check_meta (pull_request) Successful in 23s
Check meta / check_dns (pull_request) Successful in 45s
build configuration / build_vault01 (pull_request) Successful in 1m7s
build configuration / build_storage01 (pull_request) Successful in 1m10s
build configuration / build_compute01 (pull_request) Successful in 1m16s
build configuration / build_web02 (pull_request) Successful in 54s
build configuration / build_web01 (pull_request) Successful in 1m31s
build configuration / build_rescue01 (pull_request) Successful in 52s
build configuration / push_to_cache (pull_request) Failing after 2m13s
2024-04-22 08:28:40 +02:00
1eea46b59f style: requested change
Some checks failed
Check meta / check_meta (pull_request) Successful in 18s
Check meta / check_dns (pull_request) Successful in 50s
build configuration / build_vault01 (pull_request) Successful in 1m5s
build configuration / build_storage01 (pull_request) Successful in 1m6s
build configuration / build_compute01 (pull_request) Successful in 1m13s
build configuration / build_web02 (pull_request) Successful in 1m3s
build configuration / build_web01 (pull_request) Successful in 1m32s
build configuration / build_rescue01 (pull_request) Successful in 54s
build configuration / push_to_cache (pull_request) Failing after 2m14s
build configuration / build_web02 (push) Successful in 1m9s
build configuration / build_vault01 (push) Successful in 1m10s
build configuration / build_storage01 (push) Successful in 1m13s
build configuration / build_rescue01 (push) Successful in 1m13s
build configuration / push_to_cache (push) Successful in 2m12s
build configuration / build_compute01 (push) Successful in 1m18s
lint / check (push) Successful in 24s
build configuration / build_web01 (push) Successful in 1m36s
2024-04-21 23:14:53 +02:00
4d16839a10 feat(upsmon): Send mails to isp team 2024-04-21 23:14:53 +02:00
ee81052766 fix(ups): Password is a secret 2024-04-21 23:14:53 +02:00
b8d3b34122 feat(upsmon): Auto-shutdown when on batterie for too long 2024-04-21 23:14:53 +02:00
9ec9821556 feat(ups): nut_exporter and scraping 2024-04-21 23:14:53 +02:00
f9de205aad feat(upsd): Enabling upsd 2024-04-21 23:14:53 +02:00
01c2505491 feat(vault01): Add user vlans
Some checks failed
Check meta / check_meta (pull_request) Successful in 17s
Check meta / check_dns (pull_request) Successful in 35s
build configuration / build_compute01 (pull_request) Successful in 57s
build configuration / build_storage01 (pull_request) Successful in 51s
build configuration / build_vault01 (pull_request) Successful in 49s
build configuration / build_web01 (pull_request) Successful in 1m15s
build configuration / build_web02 (pull_request) Successful in 49s
build configuration / build_rescue01 (pull_request) Successful in 47s
build configuration / push_to_cache (pull_request) Failing after 2m11s
build configuration / build_storage01 (push) Successful in 58s
build configuration / build_compute01 (push) Successful in 1m4s
build configuration / build_vault01 (push) Successful in 58s
build configuration / build_web02 (push) Successful in 49s
build configuration / build_rescue01 (push) Successful in 49s
lint / check (push) Successful in 22s
build configuration / build_web01 (push) Successful in 1m18s
build configuration / push_to_cache (push) Successful in 2m12s
Only the first 300 vlans are activated, 850 make it crash
2024-04-16 09:40:47 +02:00
93b7a242ab feat(vault01/networking): Simplify the configuration
All checks were successful
build configuration / build_vault01 (pull_request) Successful in 1m5s
build configuration / build_storage01 (pull_request) Successful in 1m8s
build configuration / build_web02 (pull_request) Successful in 1m1s
build configuration / push_to_cache (pull_request) Successful in 2m8s
build configuration / build_compute01 (pull_request) Successful in 1m9s
build configuration / build_rescue01 (pull_request) Successful in 49s
build configuration / build_web01 (pull_request) Successful in 1m27s
build configuration / build_web02 (push) Successful in 1m0s
build configuration / build_storage01 (push) Successful in 1m6s
build configuration / build_compute01 (push) Successful in 1m12s
lint / check (push) Successful in 23s
build configuration / build_web01 (push) Successful in 1m29s
build configuration / push_to_cache (push) Successful in 2m9s
build configuration / build_vault01 (push) Successful in 1m3s
build configuration / build_rescue01 (push) Successful in 47s
2024-04-14 14:49:22 +02:00
9eb89a03ab fix(radius): Don't lose our shit when copying files
All checks were successful
build configuration / build_rescue01 (push) Successful in 1m2s
build configuration / build_web02 (push) Successful in 1m3s
build configuration / build_storage01 (push) Successful in 1m6s
build configuration / build_vault01 (push) Successful in 1m8s
build configuration / build_compute01 (push) Successful in 1m12s
lint / check (push) Successful in 23s
build configuration / build_web01 (push) Successful in 1m44s
2024-04-08 23:10:59 +02:00
e2cb4a7dca feat(k-radius): Update packages
All checks were successful
build configuration / build_rescue01 (push) Successful in 1m6s
build configuration / build_web02 (push) Successful in 1m6s
build configuration / build_storage01 (push) Successful in 1m8s
build configuration / build_compute01 (push) Successful in 1m14s
build configuration / build_vault01 (push) Successful in 1m29s
lint / check (push) Successful in 24s
build configuration / build_web01 (push) Successful in 1m34s
2024-04-08 22:42:59 +02:00
ccfbc4be42 feat(radius): Move configuration from compute01 to vaul01
Some checks failed
build configuration / build_rescue01 (push) Successful in 1m7s
build configuration / build_storage01 (push) Successful in 1m9s
build configuration / build_web02 (push) Successful in 1m8s
build configuration / build_compute01 (push) Successful in 1m29s
lint / check (push) Successful in 26s
build configuration / build_web01 (push) Successful in 1m36s
build configuration / build_vault01 (push) Failing after 8m54s
2024-04-08 22:21:17 +02:00
e8fde45fbf feat(apro): Add vlan apro for AP flashing
All checks were successful
lint / check (push) Successful in 24s
build configuration / build_rescue01 (pull_request) Successful in 1m5s
build configuration / build_web02 (pull_request) Successful in 1m7s
build configuration / build_storage01 (pull_request) Successful in 1m9s
build configuration / build_vault01 (pull_request) Successful in 1m13s
build configuration / build_compute01 (pull_request) Successful in 1m16s
build configuration / build_web01 (pull_request) Successful in 1m34s
build configuration / build_rescue01 (push) Successful in 1m8s
build configuration / build_web02 (push) Successful in 1m9s
build configuration / build_vault01 (push) Successful in 1m10s
build configuration / build_storage01 (push) Successful in 1m11s
build configuration / build_compute01 (push) Successful in 1m18s
build configuration / build_web01 (push) Successful in 1m36s
2024-04-08 16:01:29 +02:00
d23d53d5fc feat(vault01): Disable bcachefs 2024-04-07 21:29:18 +02:00
beba4fb0f6 feat(mgmt): Add APs vlan access
All checks were successful
build configuration / build_rescue01 (pull_request) Successful in 1m5s
build configuration / build_web02 (pull_request) Successful in 1m6s
build configuration / build_compute01 (pull_request) Successful in 1m10s
build configuration / build_vault01 (pull_request) Successful in 1m10s
build configuration / build_storage01 (pull_request) Successful in 1m11s
build configuration / build_web01 (pull_request) Successful in 1m34s
build configuration / build_vault01 (push) Successful in 1m0s
build configuration / build_storage01 (push) Successful in 1m4s
build configuration / build_compute01 (push) Successful in 1m12s
build configuration / build_web02 (push) Successful in 1m14s
lint / check (push) Successful in 23s
build configuration / build_web01 (push) Successful in 1m29s
build configuration / build_rescue01 (push) Successful in 47s
2024-04-07 20:20:04 +02:00
026653218f feat(mgmt): Use IPv6 instead of IPv4 2024-04-07 20:20:04 +02:00
2e3bb99b84 feat(vault01): Add admin vlan
All checks were successful
build configuration / build_storage01 (pull_request) Successful in 55s
build configuration / build_compute01 (pull_request) Successful in 1m1s
build configuration / build_vault01 (pull_request) Successful in 49s
build configuration / build_web02 (pull_request) Successful in 50s
build configuration / build_web01 (pull_request) Successful in 1m17s
build configuration / build_rescue01 (pull_request) Successful in 46s
build configuration / build_rescue01 (push) Successful in 1m1s
build configuration / build_vault01 (push) Successful in 1m2s
build configuration / build_web02 (push) Successful in 1m15s
build configuration / build_storage01 (push) Successful in 1m5s
build configuration / build_compute01 (push) Successful in 1m11s
lint / check (push) Successful in 21s
build configuration / build_web01 (push) Successful in 1m29s
2024-04-06 00:02:47 +02:00
sinavir
ce05bee635 feat(vault01): CRI uplink is now connected to internet
All checks were successful
build configuration / build_rescue01 (push) Successful in 1m5s
build configuration / build_web02 (push) Successful in 1m6s
build configuration / build_storage01 (push) Successful in 1m9s
build configuration / build_vault01 (push) Successful in 1m8s
build configuration / build_compute01 (push) Successful in 1m16s
lint / check (push) Successful in 22s
build configuration / build_web01 (push) Successful in 1m30s
2024-03-27 15:38:46 +01:00
sinavir
3cce216ada feat(vault01): Add CRI link 2024-03-27 10:26:31 +01:00
54ec4a6b18 feat(dgn-hardware): Factorize bcachefs setup
All checks were successful
lint / check (push) Successful in 32s
build configuration / build_vault01 (push) Successful in 1m2s
build configuration / build_web02 (push) Successful in 1m2s
build configuration / build_storage01 (push) Successful in 1m6s
build configuration / build_compute01 (push) Successful in 1m9s
build configuration / build_web01 (push) Successful in 1m25s
2024-02-20 21:25:04 +01:00
5e3819c9b2 feat(shell): Add pre-commit hooks and reformat the repo 2024-02-02 10:51:31 +01:00
345bdd4d44 feat(dgn-hardware): Allow bcachefs configuration 2024-01-11 12:58:27 +01:00
13524c20f6 feat(machines): Init vault01
Some checks failed
build configuration / build_storage01 (push) Successful in 2m35s
build configuration / build_vault01 (push) Successful in 1m19s
build configuration / build_web01 (push) Successful in 1m25s
build configuration / build_compute01 (push) Has been cancelled
2024-01-10 15:00:18 +01:00