nixos-config

mirror of https://github.com/SebastianStork/nixos-config.git synced 2026-01-21 19:51:34 +01:00

Author	SHA1	Message	Date
SebastianStork	b7a2598ebe	vps-private: Switch completely to nebula	2026-01-10 23:25:13 +01:00
SebastianStork	116b4437fe	caddy: Add support for web services over nebula	2026-01-10 23:19:49 +01:00
SebastianStork	c6b56d87ff	gc: Enable on servers with gcroot cleanup only	2026-01-10 14:37:44 +01:00
SebastianStork	653ebd2c85	syncthing: Connect devices over nebula instead of tailscale	2026-01-10 01:32:23 +01:00
SebastianStork	bd196f1f27	nebula/dns: Add forward-zone for tailscale domains I'm not sure if this is actually doing anything	2026-01-10 01:31:09 +01:00
SebastianStork	df8682f4d0	tailscale: Fix interface by making it unmanaged again	2026-01-10 01:26:16 +01:00
SebastianStork	ac3b43a952	nebula: Add DNS support by configuring unbound	2026-01-09 19:43:19 +01:00
SebastianStork	72ed799826	nebula/sshd: Only allow key auth	2026-01-07 20:40:09 +01:00
SebastianStork	9a101eeeac	nebula: Reset logging level to info	2026-01-06 21:36:43 +01:00
SebastianStork	2978d2c1a5	nebula: Fix tailscale ssh disconnects	2026-01-03 00:42:02 +01:00
SebastianStork	61f5c54196	nebula: Enable firewall and restrict ssh access by role	2026-01-03 00:41:13 +01:00
SebastianStork	b4191c56aa	nebula: Configure ssh server	2026-01-01 23:46:15 +01:00
SebastianStork	21b4e04613	nebula: Rename options for public key and certificate paths for clarity	2025-12-25 20:27:13 +01:00
SebastianStork	de16ca49e8	nebula: Assert routability of lighthouses	2025-12-25 20:00:44 +01:00
SebastianStork	d58da5ce7d	nebula: Set logging level to `warning`	2025-12-25 19:40:29 +01:00
SebastianStork	61f4ac9053	nebula: Allow non-lighthouse nodes to be static hosts	2025-12-25 19:39:44 +01:00
SebastianStork	a7a16378b2	nebula: Init module	2025-12-23 14:42:26 +01:00
SebastianStork	2eea28da43	caddy: Fix caddy-tailscale hash	2025-12-22 22:38:04 +01:00
SebastianStork	e63e374731	syncthing: Refactor folder config	2025-12-10 15:11:36 +01:00
SebastianStork	35e0b2d6b4	caddy: Update tailscale plugin	2025-11-26 21:13:42 +01:00
SebastianStork	d9eae8fc2c	crowdsec: Disable the new implementation	2025-11-26 20:14:34 +01:00
SebastianStork	a4ff86def8	Replace deprecated `pkgs.system` with `pkgs.stdenv.hostPlatform.system`	2025-11-26 20:08:19 +01:00
SebastianStork	0c5d4436ad	restic: Fix typo in variable name	2025-11-25 13:20:26 +01:00
SebastianStork	1fe43f5802	persistence: Rename module `impermanence` -> `persistence`	2025-11-11 15:29:17 +01:00
SebastianStork	3fd0e85151	meta/ports: Rename list options	2025-11-11 13:23:58 +01:00
SebastianStork	250e2ea3d0	meta/domain: Rename list options	2025-11-11 13:12:32 +01:00
SebastianStork	59d2a732a0	crowdsec: Auto enable sources when appropriate	2025-11-09 21:41:30 +01:00
SebastianStork	c9f05a040e	caddy: Configure virtual hosts inside each web-service's module instead of in the host configs	2025-11-08 22:52:01 +01:00
SebastianStork	dfeb11dfbd	caddy: Add file-server capabilities	2025-11-08 22:11:45 +01:00
SebastianStork	8c138d274f	caddy: Remove unnecessary enable option	2025-11-08 21:34:42 +01:00
SebastianStork	39bd59c8ee	caddy: Fix hard coded metrics port	2025-11-07 11:35:32 +01:00
SebastianStork	93bae9b48c	caddy: Fix hash	2025-11-04 00:23:52 +01:00
SebastianStork	d3dbe02b01	caddy: Only install tailscale plugin when tailscale hosts exist	2025-11-03 23:35:10 +01:00
SebastianStork	145e76cec7	caddy: Simplify with `HostsExist` variables	2025-11-03 23:34:34 +01:00
SebastianStork	83572e8f51	syncthing: Rename variable	2025-11-03 17:51:19 +01:00
SebastianStork	6755036951	restic: Auto create healthcheck endpoints	2025-10-26 23:21:45 +01:00
SebastianStork	ba78828f4f	restic: Rename option `resticBackups` to `restic.backups`	2025-10-23 20:21:37 +02:00
SebastianStork	4a7e655f71	caddy: Remove wildcard support Supporting wildcards has proven more trouble than it's worth. While convenient when setting up new domains, it makes the module harder to maintain and makes adding features more difficult.	2025-10-22 22:37:20 +02:00
SebastianStork	d2de5157fb	wlan: Consider all types of networks	2025-10-22 12:58:04 +02:00
SebastianStork	6be0aa5064	wlan: Cleanup previous network files after iwd stops instead of before it starts	2025-10-22 12:56:31 +02:00
SebastianStork	313a3d8138	Remove `.` at the end of assertion messages	2025-10-21 22:55:21 +02:00
SebastianStork	66d5263aca	Deduplicate unprotected service messages via `mkUnprotectedMessage`	2025-10-21 22:52:44 +02:00
SebastianStork	ac48782b56	Use `builtins.groupBy` over `lib.groupBy` because of performance See https://github.com/NixOS/nix/pull/5715	2025-10-17 17:01:22 +02:00
SebastianStork	671a13239a	Implement global custom libs as a flake output	2025-10-17 10:57:32 +02:00
SebastianStork	4e65984e37	caddy: Remove unused option	2025-10-15 23:07:46 +02:00
SebastianStork	344baa5f46	crowdsec: Fix journalctl acquisitions After spending an hour figuring this out on my own, I found this https://codeberg.org/kampka/nix-flake-crowdsec/issues/20 :(	2025-10-15 20:44:41 +02:00
SebastianStork	8c811bc03e	caddy: Actually use global custom libs	2025-10-13 18:22:56 +02:00
SebastianStork	3acd35c7b2	Add more custom libs	2025-10-13 14:12:18 +02:00
SebastianStork	8807d38b57	Add custom libs `subdomainOf` and `rootDomainOf`	2025-10-12 23:15:32 +02:00
SebastianStork	f3ea2b75e6	Add custom `isTailscaleDomain` lib	2025-10-12 20:36:18 +02:00

1 2 3 4 5 ...

262 commits