381 Commits

All Branches

Search

Author	SHA1	Message	Date
Tom Alexander	edfdb203a0	Only NAT internal DNS requests.	2023-06-20 13:05:31 -04:00
Tom Alexander	310fea89ae	Fix internal access to DNS server.	2023-06-20 13:05:31 -04:00
Tom Alexander	e755cb4251	Successfully notifying hurricane electric when DNS updates are pushed.	2023-06-20 00:25:16 -04:00
Tom Alexander	2e4c2c3f9b	Improve firewall config.	2023-06-20 00:25:16 -04:00
Tom Alexander	f2526cc768	Switch to using only sqlite.	2023-06-20 00:25:16 -04:00
Tom Alexander	d78380f6bd	Generate tsig keys for dns updates.	2023-06-20 00:25:16 -04:00
Tom Alexander	b00aef9318	Add support for subdomains.	2023-06-20 00:25:16 -04:00
Tom Alexander	99ff022411	Switch to using my own nameserver.	2023-06-20 00:25:16 -04:00
Tom Alexander	5b9c1a0e0f	Add fastmail DNS records.	2023-06-20 00:25:15 -04:00
Tom Alexander	1c42f01db2	Switch public_dns to PowerDNS for RFC-2136 support. ... This is needed for cert-manager. It will also be used for the external dns operator but the external dns operator also had a programmatic way to support CoreDNS through etcd.	2023-06-20 00:25:15 -04:00
Tom Alexander	6bded8cc7e	Forward port 53 to the public dns server.	2023-06-20 00:25:15 -04:00
Tom Alexander	a10922166b	Configure public_dns jail.	2023-06-20 00:25:15 -04:00
Tom Alexander	334ec8b49b	Add a public_dns jail. ... This jail will host the authoritative zone for my domains.	2023-06-20 00:25:15 -04:00
Tom Alexander	f10964623d	Add port forwarding for admin_git jail.	2023-06-20 00:25:15 -04:00
Tom Alexander	62ade773d8	Add the admin_git jail. ... This jail hosts the git repo used for the kubernetes cluster manifests. It lives in a jail instead of inside a git website hosted inside kubernetes because it is needed for the bootstrapping process, creating a chicken-and-egg type of scenario. I figure I can set up mirroring of the git repo to a hosted git website for publishing.	2023-06-20 00:25:15 -04:00
Tom Alexander	0f1769dd1f	Add admin_git jail.	2023-06-20 00:25:14 -04:00
Tom Alexander	0eddc4da52	Proxy arp.	2023-06-17 15:10:06 -04:00
Tom Alexander	6e18f5bc94	Add notes about single-interface kubernetes cluster.	2023-06-17 15:10:06 -04:00
Tom Alexander	f3980dc821	Add support for both NAT and RAW network interfaces in virtual machine. ... This is used so metallb can announce public ip addresses.	2023-06-17 15:10:05 -04:00
Tom Alexander	bb41cb6a96	Also handle internal connections to port 6443.	2023-06-05 16:39:12 -04:00
Tom Alexander	5f590a8271	Forward port for kubernetes control plane.	2023-06-05 12:48:26 -04:00
Tom Alexander	765ee69d67	Add static mappings for more controllers and workers.	2023-06-01 16:38:54 -04:00
Tom Alexander	c91ba0953a	Add cfssl to kubernetes.	2023-06-01 16:38:54 -04:00
Tom Alexander	01ea5068b8	Merge branch 'javascript'	2023-05-31 10:22:54 -04:00
Tom Alexander	48bc37f450	Integrate nvm with zsh.	2023-05-30 21:19:04 -04:00
Tom Alexander	e2b82d8005	Add VNC support for bhyve.	2023-05-30 21:19:03 -04:00
Tom Alexander	e04c4e0d4d	Install nvm and yarn for javascript/typescript development.	2023-05-30 21:19:03 -04:00
Tom Alexander	11d2432478	Install plainmacs on mrmanager.	2023-05-30 19:45:59 -04:00
Tom Alexander	67da2cc7c9	Expose the built packages from the poudriere host.	2023-05-30 13:36:09 -04:00
Tom Alexander	9a2375b28d	Merge branch 'colo'	2023-05-29 18:45:17 -04:00
Tom Alexander	26d3f7e736	Switch to using config files for most settings. ... This is to make it easier to juggle all the settings.	2023-05-29 18:35:30 -04:00
Tom Alexander	5f4939c9e6	Add support for raw bridging to an external interface for bhyve.	2023-05-29 17:41:02 -04:00
Tom Alexander	11079ff524	Set up log rotation for nginx in the poudriere vm.	2023-05-29 15:37:51 -04:00
Tom Alexander	b30182060f	Set up nginx for poudriere.	2023-05-29 13:14:53 -04:00
Tom Alexander	ab0ab17201	Set up poudriere on mrmanager.	2023-05-29 08:38:31 -04:00
Tom Alexander	354c6b84ab	Set up bhyve for mrmanager.	2023-05-29 00:03:09 -04:00
Tom Alexander	e49d008d57	Set up the nat_dhcp jail for mrmanager.	2023-05-28 22:48:19 -04:00
Tom Alexander	37f8749b3c	Add wireguard configs for mrmanager.	2023-05-28 17:51:09 -04:00
Tom Alexander	d2e456c59f	Add devfs, jail, bhyve, and wireguard for mrmanager.	2023-05-28 17:44:14 -04:00
Tom Alexander	e1d56d28a8	Add the ntp, nvme, hosts, and build roles.	2023-05-28 17:30:41 -04:00
Tom Alexander	433739d768	Add AMD cpu role for mrmanager.	2023-05-28 16:51:17 -04:00
Tom Alexander	271428a6f6	Add firewall to mrmanager.	2023-05-28 16:01:02 -04:00
Tom Alexander	37a14759f7	Switch to a lagg interface. ... This is to avoid depending on the ethernet cable being plugged into a specific port.	2023-05-28 14:22:49 -04:00
Tom Alexander	081c6946f3	Add the base role to mrmanager.	2023-05-28 13:18:56 -04:00
Tom Alexander	f15ebfb0f7	Switch to using talexander user.	2023-05-27 23:11:20 -04:00
Tom Alexander	6691cca055	Minimal shell setup for colo server.	2023-05-27 23:10:44 -04:00
Tom Alexander	d5a9ba5a84	Switch to using the LTS Linux kernel. ... This is to avoid updating to a version that is not yet supported by ZFS, causing the DKMS build to fail.	2023-05-26 19:19:13 -04:00
Tom Alexander	64b1e95e8e	Install the doas config on Linux.	2023-05-26 19:19:13 -04:00
Tom Alexander	8b7b39f356	Update sway config for matte framework laptop screen.	2023-05-26 12:11:39 -04:00
Tom Alexander	8f9440f675	Fix networking to jails.	2023-05-13 14:58:50 -04:00