Tom Alexander
9bbc5591c1
Add /usr/local/bin to PATH for poudboot.
2023-07-11 03:53:06 -04:00
Tom Alexander
63b8827725
Set the default branch in git to the default to suppress the warning.
2023-07-08 22:57:26 -04:00
Tom Alexander
16eb703f68
Cleanup mrmanager firewall config.
2023-07-08 22:57:26 -04:00
Tom Alexander
c34f7c0912
Install the minio plugin for kubectl in Linux.
2023-07-08 22:57:26 -04:00
Tom Alexander
625babddc4
Fix kubernetes persistent volumes with specific file ownership.
2023-07-08 22:57:26 -04:00
Tom Alexander
759fece687
Rename texlive package group.
2023-07-08 22:57:26 -04:00
Tom Alexander
55fec03445
Add a "w" alias for watch.
2023-07-08 22:57:25 -04:00
Tom Alexander
1d97921e7b
Add nfs server for k8s persistent volumes.
2023-07-08 22:57:25 -04:00
Tom Alexander
6c7265d1d3
Uncomment playbook.
2023-07-01 16:42:20 -04:00
Tom Alexander
b17a5f352d
Sanitize network interface names in jail_netgraph_bridge.bash script.
2023-07-01 16:41:41 -04:00
Tom Alexander
db17b87cb8
Enable NTP on Linux.
2023-07-01 16:41:40 -04:00
Tom Alexander
f667f50f84
Only put VM disk metadata into the ARC.
...
The guest VMs should have their own filesystem cache so I see no need to pollute the host's cache.
2023-07-01 16:41:40 -04:00
Tom Alexander
8346065c6f
Add a NFS server jail for persistent volumes.
2023-07-01 16:41:40 -04:00
Tom Alexander
ab48b1e01f
Re-enable the vulkan renderer on linux.
...
It is no longer crashing on linux.
2023-07-01 16:41:40 -04:00
Tom Alexander
eb547bf1bf
Add an endless loop to poudboot to rebuild at intervals.
2023-07-01 16:41:40 -04:00
Tom Alexander
9d16e1d42e
Add locking to poudboot.
2023-07-01 16:41:40 -04:00
Tom Alexander
0e86dac2ac
Add support for custom repos in FreeBSD.
2023-07-01 16:41:40 -04:00
Tom Alexander
edfdb203a0
Only NAT internal DNS requests.
2023-06-20 13:05:31 -04:00
Tom Alexander
310fea89ae
Fix internal access to DNS server.
2023-06-20 13:05:31 -04:00
Tom Alexander
e755cb4251
Successfully notifying hurricane electric when DNS updates are pushed.
2023-06-20 00:25:16 -04:00
Tom Alexander
2e4c2c3f9b
Improve firewall config.
2023-06-20 00:25:16 -04:00
Tom Alexander
f2526cc768
Switch to using only sqlite.
2023-06-20 00:25:16 -04:00
Tom Alexander
d78380f6bd
Generate tsig keys for dns updates.
2023-06-20 00:25:16 -04:00
Tom Alexander
b00aef9318
Add support for subdomains.
2023-06-20 00:25:16 -04:00
Tom Alexander
99ff022411
Switch to using my own nameserver.
2023-06-20 00:25:16 -04:00
Tom Alexander
5b9c1a0e0f
Add fastmail DNS records.
2023-06-20 00:25:15 -04:00
Tom Alexander
1c42f01db2
Switch public_dns to PowerDNS for RFC-2136 support.
...
This is needed for cert-manager. It will also be used for the external dns operator but the external dns operator also had a programmatic way to support CoreDNS through etcd.
2023-06-20 00:25:15 -04:00
Tom Alexander
6bded8cc7e
Forward port 53 to the public dns server.
2023-06-20 00:25:15 -04:00
Tom Alexander
a10922166b
Configure public_dns jail.
2023-06-20 00:25:15 -04:00
Tom Alexander
334ec8b49b
Add a public_dns jail.
...
This jail will host the authoritative zone for my domains.
2023-06-20 00:25:15 -04:00
Tom Alexander
f10964623d
Add port forwarding for admin_git jail.
2023-06-20 00:25:15 -04:00
Tom Alexander
62ade773d8
Add the admin_git jail.
...
This jail hosts the git repo used for the kubernetes cluster manifests. It lives in a jail instead of inside a git website hosted inside kubernetes because it is needed for the bootstrapping process, creating a chicken-and-egg type of scenario. I figure I can set up mirroring of the git repo to a hosted git website for publishing.
2023-06-20 00:25:15 -04:00
Tom Alexander
0f1769dd1f
Add admin_git jail.
2023-06-20 00:25:14 -04:00
Tom Alexander
0eddc4da52
Proxy arp.
2023-06-17 15:10:06 -04:00
Tom Alexander
6e18f5bc94
Add notes about single-interface kubernetes cluster.
2023-06-17 15:10:06 -04:00
Tom Alexander
f3980dc821
Add support for both NAT and RAW network interfaces in virtual machine.
...
This is used so metallb can announce public ip addresses.
2023-06-17 15:10:05 -04:00
Tom Alexander
bb41cb6a96
Also handle internal connections to port 6443.
2023-06-05 16:39:12 -04:00
Tom Alexander
5f590a8271
Forward port for kubernetes control plane.
2023-06-05 12:48:26 -04:00
Tom Alexander
765ee69d67
Add static mappings for more controllers and workers.
2023-06-01 16:38:54 -04:00
Tom Alexander
c91ba0953a
Add cfssl to kubernetes.
2023-06-01 16:38:54 -04:00
Tom Alexander
48bc37f450
Integrate nvm with zsh.
2023-05-30 21:19:04 -04:00
Tom Alexander
e04c4e0d4d
Install nvm and yarn for javascript/typescript development.
2023-05-30 21:19:03 -04:00
Tom Alexander
e2b82d8005
Add VNC support for bhyve.
2023-05-30 21:19:03 -04:00
Tom Alexander
11d2432478
Install plainmacs on mrmanager.
2023-05-30 19:45:59 -04:00
Tom Alexander
67da2cc7c9
Expose the built packages from the poudriere host.
2023-05-30 13:36:09 -04:00
Tom Alexander
26d3f7e736
Switch to using config files for most settings.
...
This is to make it easier to juggle all the settings.
2023-05-29 18:35:30 -04:00
Tom Alexander
5f4939c9e6
Add support for raw bridging to an external interface for bhyve.
2023-05-29 17:41:02 -04:00
Tom Alexander
11079ff524
Set up log rotation for nginx in the poudriere vm.
2023-05-29 15:37:51 -04:00
Tom Alexander
b30182060f
Set up nginx for poudriere.
2023-05-29 13:14:53 -04:00
Tom Alexander
ab0ab17201
Set up poudriere on mrmanager.
2023-05-29 08:38:31 -04:00
Tom Alexander
354c6b84ab
Set up bhyve for mrmanager.
2023-05-29 00:03:09 -04:00
Tom Alexander
e49d008d57
Set up the nat_dhcp jail for mrmanager.
2023-05-28 22:48:19 -04:00
Tom Alexander
37f8749b3c
Add wireguard configs for mrmanager.
2023-05-28 17:51:09 -04:00
Tom Alexander
d2e456c59f
Add devfs, jail, bhyve, and wireguard for mrmanager.
2023-05-28 17:44:14 -04:00
Tom Alexander
e1d56d28a8
Add the ntp, nvme, hosts, and build roles.
2023-05-28 17:30:41 -04:00
Tom Alexander
433739d768
Add AMD cpu role for mrmanager.
2023-05-28 16:51:17 -04:00
Tom Alexander
271428a6f6
Add firewall to mrmanager.
2023-05-28 16:01:02 -04:00
Tom Alexander
37a14759f7
Switch to a lagg interface.
...
This is to avoid depending on the ethernet cable being plugged into a specific port.
2023-05-28 14:22:49 -04:00
Tom Alexander
081c6946f3
Add the base role to mrmanager.
2023-05-28 13:18:56 -04:00
Tom Alexander
f15ebfb0f7
Switch to using talexander user.
2023-05-27 23:11:20 -04:00
Tom Alexander
6691cca055
Minimal shell setup for colo server.
2023-05-27 23:10:44 -04:00
Tom Alexander
d5a9ba5a84
Switch to using the LTS Linux kernel.
...
This is to avoid updating to a version that is not yet supported by ZFS, causing the DKMS build to fail.
2023-05-26 19:19:13 -04:00
Tom Alexander
64b1e95e8e
Install the doas config on Linux.
2023-05-26 19:19:13 -04:00
Tom Alexander
8b7b39f356
Update sway config for matte framework laptop screen.
2023-05-26 12:11:39 -04:00
Tom Alexander
8f9440f675
Fix networking to jails.
2023-05-13 14:58:50 -04:00
Tom Alexander
58ba39d56f
Add support for specifying CD iso image to mount in virtual machines.
2023-05-04 17:09:56 -04:00
Tom Alexander
c35b4a6c32
Add a doas role for both FreeBSD and Linux.
2023-05-04 00:54:52 -04:00
Tom Alexander
34a456c9b5
Exec the zfs send/recv commands.
2023-05-03 00:15:33 -04:00
Tom Alexander
a4e75f98d7
Add scripts for zfs send and recv for making full clones.
...
I most often need to make full clones when doing zfs send or recv so this writes down all the flags I prefer to use in a script so I do not forget them.
2023-05-01 22:20:55 -04:00
Tom Alexander
34a1ed73eb
Update firewalls for new unifi controller address.
2023-05-01 21:54:59 -04:00
Tom Alexander
ad7fca700d
Build rust-analyzer on FreeBSD.
...
The official FreeBSD package rust-analyzer crashes. I suspect this is because its built for rust stable which conflicts with the rust-nightly I have installed.
2023-05-01 20:04:59 -04:00
Tom Alexander
74fb8a3969
Disable cloning the ports tree.
...
Turns out I'm not going to use it yet so I don't want to needlessly check it out on all my machines.
2023-05-01 19:06:22 -04:00
Tom Alexander
730f9483bd
Clone the FreeBSD ports tree.
2023-05-01 16:40:07 -04:00
Tom Alexander
728258d160
Add a static assignment for the unifi controller.
2023-04-30 17:18:21 -04:00
Tom Alexander
a44b8da509
Fix mac address validity.
2023-04-27 18:44:32 -04:00
Tom Alexander
740f2bdadd
Remove vm-bhyve.
2023-04-27 17:27:18 -04:00
Tom Alexander
04a8ba064f
This nat rule doesn't seem necessary.
2023-04-27 17:07:04 -04:00
Tom Alexander
8867761939
Transition the home server to the dynamic netgraph devices.
2023-04-27 17:05:33 -04:00
Tom Alexander
24bfa840ff
Starting to transition the home server to the new dynamic netgraph devices.
2023-04-27 17:05:33 -04:00
Tom Alexander
5da4f8fb99
Install the bhyve management script.
2023-04-27 17:05:33 -04:00
Tom Alexander
15d5c73b5b
Add commented out jaeger config because it is not working.
2023-04-27 17:05:33 -04:00
Tom Alexander
310837ddb3
Use statically-generated mac addresses.
2023-04-27 17:05:33 -04:00
Tom Alexander
e43fa0eab3
Destroy the bhyve vm after exit.
2023-04-27 17:05:32 -04:00
Tom Alexander
3dd710eab6
Start of a script for managing bhyve virtual machines.
2023-04-27 17:05:32 -04:00
Tom Alexander
9fcc955d13
Starting to write my own script to manage bhyve VMs.
...
vm-bhyve isn't going to allow me enough control to detect open netgraph hooks on bridges so I will manage the virtual machines myself.
2023-04-27 17:05:32 -04:00
Tom Alexander
0939203377
Switch to kea dhcp server for jail network.
2023-04-27 17:05:32 -04:00
Tom Alexander
ba7567ad9c
Switch to using a script to dynamically spin up the netgraph bridge for jails.
2023-04-27 17:05:32 -04:00
Tom Alexander
be2e0c964b
Install rust-coreutils.
2023-04-27 17:05:32 -04:00
Tom Alexander
93baeb9a98
Update gpg_auth for new path to socket.
2023-04-20 22:22:22 -04:00
Tom Alexander
d8e3e61286
Disable vscode install on FreeBSD and add new wireguard tunnels to firewall config.
2023-04-20 22:11:42 -04:00
Tom Alexander
ac57760a53
Ignore errors when setting default sound unit.
2023-04-20 22:02:17 -04:00
Tom Alexander
598ab24b84
Switch to opstunnel for drmario laptop config.
2023-04-20 21:48:58 -04:00
Tom Alexander
9c415041e4
Update to FreeBSD 13.2 sshd_config.
2023-04-20 21:43:13 -04:00
Tom Alexander
a3bedc22d4
Add the colo wireguard tunnel.
2023-04-20 21:42:53 -04:00
Tom Alexander
d820feea0c
Switch to using packages for rust-analyzer.
2023-04-19 00:48:33 -04:00
Tom Alexander
7d50c860d5
Add drmario to /etc/hosts.
2023-04-18 20:02:31 -04:00
Tom Alexander
d2df8a0d5d
Add the drmario wireguard config.
2023-04-18 16:44:14 -04:00
Tom Alexander
2be47e520a
Add uucp group for accessing tillitis tkey.
2023-04-17 14:00:58 -04:00
Tom Alexander
493da63d26
Disable ligatures in cascadia code.
2023-04-17 01:17:38 -04:00
Tom Alexander
87f31e9c85
Update rust version.
2023-04-14 18:04:49 -04:00