Commit graph

43 commits

Author SHA1 Message Date
Simon Bruder 959f7be3d0
Connect home network with IPv6 addresses
It adds a bit of latency (and is definitely not the best solution in
theory), but finally allows dropping IPv6 NAT and it works within the
constraits my home network has to live in.
2024-09-08 13:30:18 +02:00
Simon Bruder 134d58a3c7
hiroshi: Init 2024-08-21 01:30:21 +02:00
Simon Bruder ef488cdfd9
koyomi: Init 2024-06-01 13:57:58 +02:00
Simon Bruder d93d724b9f
okarin: Migrate to different VPS
Previously, it was hosted on Ionos’s VMware-based infrastructure. I
already had a VPS on their new KVM-based infrastructure, as I was
planning to migrate okarin to it eventually (as it is cheaper). However,
the new infrastructure does not offer PTR records for IPv6 addresses.
Therefore, I was waiting until they would implement that feature (as the
support promised me they would to in the near future).

However, they are now migrating the (at least my) guests from their
VMware hypervisors onto the KVM ones, assigning new IPv6 addresses to
them. This makes the old VPS essentially the same as the old one, but
with less memory and more expensive. So I decided to migrate now.
2024-06-01 13:57:33 +02:00
Simon Bruder 10b8d432d5
Relicense
This applies the REUSE specification to the repository, so the licensing
information can be tracked for every file individually.
2024-01-13 14:39:22 +01:00
Simon Bruder 0393661579
yuzuru: Init 2024-01-03 11:44:34 +01:00
Simon Bruder eef5f9b617
renge: Migrate to larger server 2023-12-31 17:31:17 +01:00
Simon Bruder 8519bada60
authoritative-dns: Init 2023-10-25 21:16:43 +02:00
Simon Bruder dc3a17ffe0
wireguard/support: Remove DNS records for peers
For this use case, DNS is not very useful.
2023-10-23 19:38:00 +02:00
Simon Bruder 7fc8a4694c
nazuna: Init 2023-10-04 23:19:44 +02:00
Simon Bruder 1b44e31627
shinobu: Init 2023-07-01 12:37:12 +02:00
Simon Bruder cc47b75704
okarin: Init 2023-05-06 11:39:31 +02:00
Simon Bruder 89bc09dcce
wireguard/home: Expose subnet 2023-05-06 11:39:31 +02:00
Simon Bruder 2f39d10a8a
vueko: Migrate to new server 2023-05-03 12:31:11 +02:00
Simon Bruder a9e9032ab3
Revert "wireguard/home: Add basic overview page"
This reverts commit 642d97cb52.
2023-04-15 18:09:52 +02:00
Simon Bruder 4d93272cb0
wireguard/home: Switch to systemd-networkd 2023-04-07 14:14:31 +02:00
Simon Bruder 642d97cb52
wireguard/home: Add basic overview page
It is very basic and not pretty, but it is a base that can be extended.
2023-04-07 13:47:40 +02:00
Simon Bruder fec939d816
wireguard/support: Init 2023-03-09 21:21:13 +01:00
Simon Bruder 03492fccad
Migrate sayuri to hitagi 2022-12-30 19:52:58 +01:00
Simon Bruder f51bc637da
wireguard/home: Hardcode server’s IPv4 address
Some devices (like fuuko) sadly do not have IPv6 connectivity which
makes their connection fail.
2022-10-15 23:28:33 +02:00
Simon Bruder b948f46fad
nunotaba: Re-init 2022-06-10 00:03:03 +02:00
Simon Bruder 98cd9fee9c
okarin: Remove
It was too slow to do anything useful with, so I cancelled it. Unless
something dramatically changes, I won’t rent servers from Contabo
anymore.
2022-06-01 15:39:02 +02:00
Simon Bruder 141bfa4f46
yuzuru: Remove
It no longer hosts any services so it is going to be removed.
2022-04-09 10:12:12 +02:00
Simon Bruder 954849f763
renge: Init 2022-03-23 17:34:56 +01:00
Simon Bruder 7ed13269a7
okarin: Init 2022-03-03 10:51:19 +01:00
Simon Bruder f4bf1ced57
yuzuru: Init 2021-11-01 10:10:40 +01:00
Simon Bruder d52084a79b
nunotaba: Remove 2021-10-10 11:40:20 +02:00
Simon Bruder 31cec022e8
Revert "wireguard/home: Use peer-to-peer connections if possible"
This reverts commit bab6c5e5dc.
2021-10-05 21:37:38 +02:00
Simon Bruder 7a08083af1
Revert "wireguard/home: Fix peer-to-peer connection"
This reverts commit d621e84a00.
2021-10-05 21:31:37 +02:00
Simon Bruder 8bf63db6e5
mayushii: Init 2021-10-05 21:26:39 +02:00
Simon Bruder d621e84a00
wireguard/home: Fix peer-to-peer connection
Public clients also need to have all peers configured, so they can
connect to them.
2021-09-03 15:31:45 +02:00
Simon Bruder bab6c5e5dc
wireguard/home: Use peer-to-peer connections if possible 2021-08-31 11:20:06 +02:00
Simon Bruder 9025dfffb5
wireguard/dns: Make zone master zone
Since 21.05 it does not work when this is not set.
2021-05-28 14:24:50 +02:00
Simon Bruder 5b5bf546b3
wireguard: Simplify sopsFile path 2021-05-01 16:53:06 +02:00
Simon Bruder 4a8a7e0a4f
Use sops for secrets
Since I currently do not have access to sayuri, sayuri’s migration is
not done yet. The host keys and wg-home-private-key secret still have to
be added.
2021-04-06 14:05:48 +02:00
Simon Bruder ce7425d8c4
Remove issei from vpn and prometheus 2021-04-02 18:13:09 +02:00
Simon Bruder 785bb2214b
wireguard/home: Add dns server 2021-02-20 19:57:10 +01:00
Simon Bruder be7e67cf1f
wireguard/home: Make vueko central server
This also restructures the wireguard/home configuration, since now
better peer management is possible.
2021-02-20 19:57:04 +01:00
Simon Bruder 9cdf89fe15
firewall: Trust wg-home
Fixes regression introduced in 126a0dad4b.
2021-01-18 00:05:18 +01:00
Simon Bruder 7b2da0349c
Overhaul secrets management 2021-01-06 13:09:29 +01:00
Simon Bruder 903041b6e1
Use pass for secrets management
Fixes #4
2020-12-13 17:57:08 +01:00
Simon Bruder 74ddf83617
Parameterise wireguard 2020-12-05 15:40:44 +01:00
Simon Bruder a05102e91c
Initial commit 2020-08-22 17:44:39 +02:00