Klub-RZ/infrastructure
4
0
Fork 0
Code Issues 7 Pull requests Projects Releases Packages Wiki Activity
182 commits 9 branches 0 tags 441 KiB
Commit graph

182 commits

This branch
This branch
All branches
Author SHA1 Message Date
Raito Bezarius
dfeeb1c4ea router(*): VRRP the admin interface 
Now, the Proxmox can be accessed while redeploying one of the router!
 2024-01-12 04:36:15 +01:00
Raito Bezarius
bcbfc91a11 router(*): Use unicast rather than multicast 
Due to an unfathomable issue where I would need to recompile with full debug keepalived,
keepalived seems to be not seeing the multicast packets on the vrrp-router
and thus we need to fallback to the disgusting unicast solution.

Well, let's move on.
 2024-01-12 04:22:34 +01:00
Raito Bezarius
683555e4eb router04: init and add to VRRP group 2024-01-12 04:04:23 +01:00
Raito Bezarius
2555b97680 router03: enable VRRP 2024-01-12 04:04:10 +01:00
Raito Bezarius
fa0ce6b7ef modules/krz-router: support VRRP 
This adds VRRP support on a management L2 domain.

All of this is a bit insecure, we should at least aim to share a password or something.
 2024-01-12 04:03:57 +01:00
Raito Bezarius
1a6f9ffb8f router03: perfect refactor into a proper NixOS module 
We will focus on growing it for KlubRZ usecases first and then grow it into a proper
external project called Hypervisor NixOS routers.
 2024-01-12 02:22:05 +01:00
Raito Bezarius
a0681ee841 router03: fix leakage of MWAN traffic 
When traffic is coming in, i.e. `To = 45.13.104.25/29`, we were immediately redirecting
it to `swp`, i.e. ENS.

By saying that `To` should also consult the MWAN routing table, we are eliminating
the redirection.
 2024-01-12 02:02:14 +01:00
Raito Bezarius
94a64b792c router03: init 2024-01-02 00:39:33 +01:00
Tom Hubrecht
9236bed612 feat(npins): Update nix-lib 2023-12-22 23:53:55 +01:00
Tom Hubrecht
779f3f3d9e core-services-01: fix cname 2023-12-21 15:12:44 +01:00
Tom Hubrecht
9fd583a9cc core-services-01: Disable services 2023-12-21 14:32:12 +01:00
Tom Hubrecht
9c32d9b838 core-services-01: Update DNS config 2023-12-21 14:31:50 +01:00
Raito Bezarius
3f20242eab remote-builder-01: decommission 2023-12-21 12:28:49 +01:00
Raito Bezarius
49ed2855a5 core-01: redirect most of our services to web01.dmi01.infra.dgnum.eu 2023-12-21 12:27:55 +01:00
Tom Hubrecht
41fc60e1eb core-01: Disable netboot-server 2023-07-23 23:56:33 +02:00
Tom Hubrecht
29034e6056 krops.nix: Delete 2023-07-23 23:50:10 +02:00
Tom Hubrecht
7f88c60cc2 Switch from krops to colmena 2023-07-23 23:36:55 +02:00
Tom Hubrecht
6b6470eef9 keys: Move from machines/publickeys 2023-07-23 23:36:06 +02:00
tomate
50c17c74bb Add 'CONTRIBUTING.md' 2023-07-23 18:07:44 +02:00
sinavir
6fb8528a99 public-cof: upgrade garage 2023-07-23 18:07:40 +02:00
Raito Bezarius
2ab0cc6885 public-cof: NC25 → NC26 
Get us rid of RC4 encryption shenigans.
 2023-07-23 17:52:45 +02:00
sinavir
55c7194022 core-01: make it work for 23.05 2023-07-23 17:49:32 +02:00
Raito Bezarius
793e4d2aee public-cof: add some tuning for lychee 2023-07-19 00:22:03 +02:00
Raito Bezarius
42cd2d7b79 public-cof: add thubrecht 2023-07-19 00:21:54 +02:00
Raito Bezarius
b88167f46a deployment: fix it for 23.05… 2023-07-19 00:21:44 +02:00
Raito Bezarius
2fde8ccf15 deployment: upgrade to 23.05 2023-07-19 00:04:42 +02:00
sinavir
deffb8e1fc core-01: fix ipv4 routing issue 2023-02-24 10:56:54 +01:00
gabriel-doriath-dohler
3f2e795b0e chore: Rename module options 2023-02-23 23:59:59 +00:00
gabriel-doriath-dohler
66c40b1026 feat: Add sinavir's keys to public-cof and remote-builder-01 2023-02-23 23:59:59 +00:00
gabriel-doriath-dohler
244c8027aa feat: Add sinavir's keys for core-services-01 2023-02-23 23:59:59 +00:00
tomate
461b1e2aa7 Merge pull request 'fix serveur photos' (#24) from serveur_photos_fix into master 
Reviewed-on: https://git.rz.ens.wtf/Klub-RZ/infrastructure/pulls/24
 2023-01-30 21:35:33 +01:00
sinavir
455fd180d2 pm=dynamic 2023-01-30 21:21:29 +01:00
Tom Hubrecht
bd22c63ec4 public-cof: Switch to systemd-network 2023-01-25 16:55:22 +01:00
Tom Hubrecht
f410aa4c75 core-services-01: Switch to systemd-network 2023-01-25 15:35:41 +01:00
Raito Bezarius
5138eb930f core-services-01: add hubrecht 2023-01-24 21:14:04 +01:00
sinavir
9a0c9c615c feat: introduce photos.ens.wtf 
Co-authored-by: sinavir <sinavir@sinavir.fr>
Reviewed-on: https://git.rz.ens.wtf/Klub-RZ/infrastructure/pulls/15
Co-authored-by: sinavir <maurice.debray@ens.fr>
Co-committed-by: sinavir <maurice.debray@ens.fr>
 2022-12-13 22:23:35 +01:00
Ryan Lahfa
ed92c3df99 Merge pull request 'whitelist thejohncrafter' (#14) from mrf-whitelist into master 
Reviewed-on: https://git.rz.ens.wtf/Klub-RZ/infrastructure/pulls/14
 2022-12-03 22:14:35 +01:00
Julien Marquet
66ae9b2d04 whitelist thejohncrafter 2022-12-03 21:15:40 +01:00
Raito Bezarius
dbd7594d59 mc: whitelist more players 2022-11-14 23:46:55 +01:00
Raito Bezarius
a2c58e4d87 mc: add Clem's friends to whitelist 2022-11-05 15:48:40 +01:00
Raito Bezarius
d1bc89653c public-cof: fix NC encryption 2022-10-29 17:33:05 +02:00
Raito Bezarius
82cfe98dde core01: fix matterbridge for DGNum 2022-10-29 17:32:39 +02:00
Raito Bezarius
555aabb798 krops: bump channel 2022-10-29 17:32:19 +02:00
Raito Bezarius
42a569b41d public-cof: deploy completely Outline and Garage 2022-10-29 17:32:10 +02:00
Raito Bezarius
43d3367e9f core01: DNS for Garage & Outline 2022-10-29 17:31:46 +02:00
Raito Bezarius
b40a49feed feat: add notion.rz.ens.wtf → public-cof 2022-10-28 00:36:57 +02:00
Raito Bezarius
7beba08321 public-cof: nextcloud24 -> nextcloud25 2022-10-27 22:40:43 +02:00
Raito Bezarius
ccf00cdc46 public-cof: nextcloud23 -> nextcloud24 2022-10-27 22:31:55 +02:00
Raito Bezarius
e827b28967 feat: deploy garage on public-cof 2022-10-27 22:31:47 +02:00
Raito Bezarius
570071bb71 feat: bump to 1.19.2 and add clem197 to allow-list 2022-10-13 21:52:40 +02:00