Commit graph

18 commits

Author SHA1 Message Date
Simon Bruder 013511c1c9
sops: Switch to new PGP key 2024-01-22 17:32:02 +01:00
Simon Bruder 9995ff511e
restic/system: Prune on renge
Because of fuuko’s very slow link, the prune had not been successful for
a whole quarter. Now that renge has more RAM, it can finally run the
prune without having to worry about OOM.
2024-01-10 21:27:42 +01:00
Simon Bruder 0a33de244f
fuuko/qbittorrent: Switch endpoint 2023-07-03 11:46:28 +02:00
Simon Bruder 472ff64011
fuuko: Add SSD for hot storage
Adding a new PCIe device changes the names of the network interfaces, so
they need to be adapted.
2023-06-28 23:13:57 +02:00
Simon Bruder 5cd4845dbf
fuuko/router: Add wireless AP
It is anything but great, though I will try to find a better solution
for this.
2023-04-05 10:11:39 +02:00
Simon Bruder 444aa962b5
fuuko: Add router service
This now mostly replaces ayu, which has been sitting between upstream
and the switch the last 6 months.

It now also configures routing over Mullvad, which also finally enables
IPv6 (I don’t understand how people get away with not providing it
natively in 2023).

Once I get a WLAN card, it will also host its own access point, which
currently still relies on ayu as “dumb AP” (as OpenWRT calls it).
2023-04-02 01:14:01 +02:00
Simon Bruder 4e78d87bde
restic: Use storage box and restic-rest-server
While this setup complicates things, it also should protect me against
(malicious) deletion of old backups.
2022-08-25 23:12:42 +02:00
Simon Bruder 67b30a52af
Remove private binary cache
I don’t actually use it and it adds complexity to installing new
machines.
2022-06-10 00:03:03 +02:00
Simon Bruder a3784e51de
fuuko/secrets: Remove unused restic credentials
They are specified in the global secrets file.
2022-03-25 21:52:56 +01:00
Simon Bruder ebfa0ec16a
fuuko: Migrate matrix and monitoring to renge
Sadly, they are so interconnected, that it is not easily possible to
migrate it in smaller steps. It should be refactored to make them more
modularised and independent of each other.
2022-03-25 21:49:08 +01:00
Simon Bruder a9b6a17818
fuuko/aria2: Replace with qbittorrent 2022-03-18 23:25:05 +01:00
Simon Bruder a0946951e8
fuuko/gitea: Migrate to okarin 2022-03-18 16:22:23 +01:00
Simon Bruder 8748cfdf11
fuuko: Remove drone
I don’t actually use it and it is somewhat of a risk to run
code-execution-as-a-service. Also, the confinement does not work
currently (tries to write to /var/empty), which prompted the removal,
because the low usage does not justify that amount of maintainance.
2022-01-14 17:20:52 +01:00
Simon Bruder 9f4ffa5932
fuuko: Add hcloud_exporter 2021-08-28 13:53:38 +02:00
Simon Bruder 51f814c70d
fuuko/go-neb: Use sops for secrets 2021-05-03 10:16:59 +02:00
Simon Bruder 8d9e3af211
Add binary cache hosted on fuuko
See machines/fuuko/services/binary-cache.nix for limitations.
2021-04-08 16:19:57 +02:00
Simon Bruder 9dbd7f9c85
vueko/coturn: Manage shared secret with sops
This requires not using the NixOS module, since it does not support
loading it from a file.
2021-04-07 12:23:48 +02:00
Simon Bruder 4a8a7e0a4f
Use sops for secrets
Since I currently do not have access to sayuri, sayuri’s migration is
not done yet. The host keys and wg-home-private-key secret still have to
be added.
2021-04-06 14:05:48 +02:00