❄️ Infrastructure configuration for FSR-operated machines

Find a file

Rouven Seifert 48c04ce61e updates 2024-11-12		2024-11-12 15:12:16 +01:00
hosts	close wireguard port	2024-10-13 22:53:15 +02:00
keys	Add hendrik's pgp and ssh keys	2024-02-29 16:24:21 +01:00
modules	courses: disable phil	2024-11-12 15:12:01 +01:00
options	options: move to tree root	2024-03-12 12:06:21 +01:00
overlays	monitoring: remove postfix	2024-11-08 11:19:59 +01:00
secrets	remove ese wireguard	2024-10-13 22:50:06 +02:00
.gitignore	fix .gitignore	2023-01-09 18:47:37 +01:00
.sops.yaml	Add hendrik's pgp and ssh keys	2024-02-29 16:24:21 +01:00
flake.lock	updates 2024-11-12	2024-11-12 15:12:16 +01:00
flake.nix	monitoring: move to module folder	2024-11-08 11:16:21 +01:00
README.md	reflect garbage collection in README.md	2023-07-19 17:52:07 +02:00

README.md

Infrastructure configuration for FSR-operated machines

This repository contains the NixOS configuration files for FSR machines.

Machines configured by this repository:

quitte (new server predestined to run all important services)

Setup

Clone this repository on the target machine to /etc/nixos and build the desired host configuration e.g.

# you may need to copy the generated hardware-configuration.nix to hosts/<hostname>/hardware-configuraion.nix
nixos-rebuild switch --flake .#<hostname>

Tips and Tricks

Resolving merge conflicts in sops files

Required steps

Manually resolve the conflicts in the encrypted file
Open the file using sops --ignore-mac secrets/<hostname>.yml
Change one letter in one of the yml entries to let sops know it has to regenerate the MAC
Close the file. Open it again and revert the change you just did in step 3.