❄️ Infrastructure configuration for FSR-operated machines
Find a file
2024-11-12 15:12:16 +01:00
hosts close wireguard port 2024-10-13 22:53:15 +02:00
keys Add hendrik's pgp and ssh keys 2024-02-29 16:24:21 +01:00
modules courses: disable phil 2024-11-12 15:12:01 +01:00
options options: move to tree root 2024-03-12 12:06:21 +01:00
overlays monitoring: remove postfix 2024-11-08 11:19:59 +01:00
secrets remove ese wireguard 2024-10-13 22:50:06 +02:00
.gitignore fix .gitignore 2023-01-09 18:47:37 +01:00
.sops.yaml Add hendrik's pgp and ssh keys 2024-02-29 16:24:21 +01:00
flake.lock updates 2024-11-12 2024-11-12 15:12:16 +01:00
flake.nix monitoring: move to module folder 2024-11-08 11:16:21 +01:00
README.md reflect garbage collection in README.md 2023-07-19 17:52:07 +02:00

Infrastructure configuration for FSR-operated machines

This repository contains the NixOS configuration files for FSR machines.

Machines configured by this repository:

  • quitte (new server predestined to run all important services)

Setup

Clone this repository on the target machine to /etc/nixos and build the desired host configuration e.g.

# you may need to copy the generated hardware-configuration.nix to hosts/<hostname>/hardware-configuraion.nix
nixos-rebuild switch --flake .#<hostname>

Tips and Tricks

Resolving merge conflicts in sops files

Required steps

  1. Manually resolve the conflicts in the encrypted file
  2. Open the file using sops --ignore-mac secrets/<hostname>.yml
  3. Change one letter in one of the yml entries to let sops know it has to regenerate the MAC
  4. Close the file. Open it again and revert the change you just did in step 3.