Commit graph

37 commits

Author SHA1 Message Date
Rouven Seifert b12ed4b803
zfs: add some maintenance services 2024-04-01 16:12:53 +02:00
Rouven Seifert 58e9794dff
network: enable lldp 2024-03-28 23:49:49 +01:00
Rouven Seifert 4334b5ef50
treewide: minor cleanups 2024-03-28 20:55:47 +01:00
Rouven Seifert f2af8d0a75
quitte: move back to bare-metal
Das Proxmox ist tot. Lang lebe NixOS!
2024-03-28 18:06:41 +01:00
Rouven Seifert d086eed901
network: clean up secrets 2024-03-21 15:49:50 +01:00
Rouven Seifert 3be5380c58
quitte: network fixes 2024-03-21 15:47:32 +01:00
Rouven Seifert 1e47c01032
ulimit: limit nix builders to 10000 processes at once 2024-03-03 11:39:52 +01:00
Rouven Seifert d611cc5a26
ulimit: limit maximum number of processes per user
- Limits the number of processes a user can start to 2000
  Mostly in place to prevent fork bombs taking down the host.
- If anyone encounters problems with this number we can raise it
2024-03-03 11:34:39 +01:00
Rouven Seifert 522351905c
quitte: enable memory resource control
Limits the Memory of some important slices via systemd cgroup management.

- nix-daemon may not use more than 32 GB of Memory
- all users together may not use more than 32GB of Memory

See man systemd.resource-control(5) for more detailed information.
2024-02-25 21:52:36 +01:00
Rouven Seifert 7e2dc399bb
formatting 2024-02-03 20:03:45 +01:00
Rouven Seifert 175e2750ce
quitte: fix hosts 2024-02-03 20:02:15 +01:00
Rouven Seifert b8c31b4e4a
initrd: fix network 2024-01-29 16:23:56 +01:00
Rouven Seifert e86fdf1819
tomate: init 2023-11-28 11:37:35 +01:00
Rouven Seifert 4324dceddc
firewall: stop logging every refused connection 2023-11-14 14:00:22 +01:00
Rouven Seifert 6e269d8dc7
firewall: use nftables 2023-10-23 11:59:12 +02:00
Rouven Seifert 02cd8440f1
refactor: ran deadnix 2023-09-17 20:14:32 +02:00
Rouven Seifert 62825e357f
refactor: fsr.domain -> networking.domain 2023-09-17 20:10:55 +02:00
Rouven Seifert 0e0b3b0454
networking: update rDNS 2023-09-15 16:49:21 +02:00
Rouven Seifert 6dd628403c
networking: introduce rdns option 2023-09-01 10:42:22 +02:00
Rouven Seifert f141dcddc3
format hardware-configuration.nix 2023-07-26 16:44:32 +02:00
quitte 186f4ccb08 encrypted setup 2023-07-26 16:41:55 +02:00
Rouven Seifert 8285c750a6
enable the qemu guest agent 2023-07-13 12:59:24 +02:00
Rouven Seifert 6e4e213b0f
chore: flake updates 2023-07-11 18:21:48 +02:00
Rouven Seifert 7331eef574
switch to the 23.05 release 2023-05-25 22:58:14 +02:00
revol-xut 8e1543bb14
nixpkgs fmt 2023-04-23 19:43:53 +02:00
Sebastian Heiden 71eb19b82b
Update configuration.nix
- Disable ZFS specific tweaks
2023-04-23 18:16:38 +02:00
Sebastian Heiden c54c7382e8
Update network.nix
- Change network adapter
2023-04-23 18:15:13 +02:00
Sebastian Heiden b1b8dcd024
Update hardware-configuration.nix
- adapt to QEMU-Guest
- use XFS instead of ZFS inside VM
2023-04-23 18:12:54 +02:00
Rouven Seifert a3d73cf6cd
removed old wireguard 2023-03-10 15:51:38 +01:00
Hendrik Wolff 02dfd380fb [quitte] Add video kernel parameter 2023-02-15 16:46:48 +01:00
revol-xut c137ef004d
formatting 2023-02-15 13:35:32 +01:00
revol-xut d3113be693
changing config for static ip 2023-02-15 13:34:14 +01:00
revol-xut ec704eb11d
updating network to networkd 2022-12-09 16:18:57 +01:00
revol-xut 7279ea13e9
more test vm config 2022-11-11 16:39:48 +01:00
revol-xut 877da5918f
removed some config from streaming setup 2022-10-18 10:52:48 +02:00
revol-xut 87bd442eed
secrets for mediawiki and formatting 2022-09-06 17:16:31 +02:00
revol-xut 1d4acbb6ac
add hedgedoc module 2022-09-06 15:09:30 +02:00