machine_setup

Author	SHA1	Message	Date
Tom Alexander	eaf0c16c17	Add generation for in-repo secrets.	2026-05-02 15:54:30 -04:00
Tom Alexander	fd1ea9e890	Generate certificates for the aggregation layer.	2026-05-02 15:54:29 -04:00
Tom Alexander	c0ace47d95	Add a note for the cilium connectivity test.	2026-05-02 15:54:29 -04:00
Tom Alexander	1133b5cbf2	Install deferred manifests.	2026-05-02 15:54:28 -04:00
Tom Alexander	0e959cb78f	Enable the firewall. Now that we have networking working, I can enable the firewall and confirm nothing breaks.	2026-05-02 15:54:28 -04:00
Tom Alexander	58a2061c08	Build the cilium manifest automatically in nix.	2026-05-02 15:54:26 -04:00
Tom Alexander	b504dc4d66	Allow pods to directly speak to the public internet on their own public IPv6 addresses.	2026-05-02 15:54:26 -04:00
Tom Alexander	d1c7a0bfca	Enable ipv4 and tunnel routing.	2026-05-02 15:54:26 -04:00
Tom Alexander	0b291d7648	Switch to kubernetes ipam mode.	2026-05-02 15:54:26 -04:00
Tom Alexander	7e3fa38af6	Generate kubernetes secrets for ssh keys.	2026-05-02 15:54:24 -04:00
Tom Alexander	fe35b4948a	Set up flux.	2026-05-02 15:54:23 -04:00
Tom Alexander	e6daf2c304	Some networking fixes.	2026-05-02 15:54:23 -04:00
Tom Alexander	a2899d38a2	Add cilium bootstrap.	2026-05-02 15:54:23 -04:00
Tom Alexander	3ccda1d4e5	Add kube-proxy.	2026-05-02 15:54:22 -04:00
Tom Alexander	f981bfff97	Add configs for a new kubernetes cluster on NixOS.	2026-05-02 15:54:20 -04:00