about summary refs log tree commit diff
path: root/users/tazjin/nixos/koptevo
AgeCommit message (Collapse)AuthorFilesLines
2024-02-25 r/7602 chore(tazjin/nixos): remove monica setupVincent Ambo1-1/+0
I never ended up actually using this for anything. Change-Id: I2bd9a46f6284d8283453d34eab6134efc92ea684 Reviewed-on: https://cl.tvl.fyi/c/depot/+/11023 Tested-by: BuildkiteCI Reviewed-by: tazjin <tazjin@tvl.su> Autosubmit: tazjin <tazjin@tvl.su>
2023-10-01 r/6684 fix(tazjin/koptevo): let gonic access /etc/resolv.confVincent Ambo1-0/+6
Without this line, accessing external APIs from Gonic (e.g. scrobbling to Listenbrainz) does not work (unless a local resolver exists). This is because in the pure Go DNS implementation used in gonic, only /etc/resolv.conf can provide resolvers. Change-Id: I26dd9a845b0a70c4cfb983c68da2b76b7e57dfec Reviewed-on: https://cl.tvl.fyi/c/depot/+/9502 Reviewed-by: tazjin <tazjin@tvl.su> Tested-by: BuildkiteCI
2023-10-01 r/6683 fix(tazjin/koptevo): minor reliability fixes for music setupVincent Ambo1-0/+1
* zramSwap: during reindexing, geesefs can be pushed to the boundaries of what the new overaggressive OOM killer accepts, and I don't want to bother configuring that thing instead. * umount: geesefs dying unexpectedly leaves broken mounts around, clean these up before proceeding This bakes in the assumption that there's only ever one geesefs service, but that assumption is baked in anyways. Change-Id: Id85c2f5bc2312a7246ea20229eb36d2cc1bd82c0 Reviewed-on: https://cl.tvl.fyi/c/depot/+/9500 Reviewed-by: tazjin <tazjin@tvl.su> Autosubmit: tazjin <tazjin@tvl.su> Tested-by: BuildkiteCI
2023-10-01 r/6682 feat(tazjin/koptevo): deploy airsonic at player.tazj.inVincent Ambo1-1/+2
Change-Id: I9f0dec6491906319550c97d4cc15b2cdda4a5ebe Reviewed-on: https://cl.tvl.fyi/c/depot/+/9499 Tested-by: BuildkiteCI Reviewed-by: tazjin <tazjin@tvl.su> Autosubmit: tazjin <tazjin@tvl.su>
2023-09-30 r/6680 feat(tazjin/koptevo): run gonic on music.tazj.inVincent Ambo1-2/+28
Change-Id: Id281142e59647d9db02f64a352cba768d4d83237 Reviewed-on: https://cl.tvl.fyi/c/depot/+/9497 Reviewed-by: tazjin <tazjin@tvl.su> Tested-by: BuildkiteCI
2023-09-30 r/6679 feat(tazjin/nixos): add geesefs mount unit for koptevo ...Vincent Ambo1-0/+1
... this will make sense soon! Change-Id: I1f8f32d655afdf868fff4bd09e1fea2943fd7558 Reviewed-on: https://cl.tvl.fyi/c/depot/+/9496 Tested-by: BuildkiteCI Reviewed-by: tazjin <tazjin@tvl.su>
2023-06-29 r/6360 feat(tazjin/nixos): deploy monica on koptevoVincent Ambo1-0/+1
Change-Id: Iaa74d995f3b2556673095a32ec2b718dcb2d82a4 Reviewed-on: https://cl.tvl.fyi/c/depot/+/8849 Tested-by: BuildkiteCI Reviewed-by: tazjin <tazjin@tvl.su>
2023-06-22 r/6343 feat(ops): introduce (head|tail)scale server at net.tvl.fyiVincent Ambo1-0/+5
This runs a headscale server on sanduny which lets users join their machines to the TVL tailscale network. This would theoretically let people communicate with each other on the internal network, but also more notably joined servers can advertise exit node capability so that we can have our own "VPN network", for starters with endpoints in Germany, UK and Russia (whitby, sanduny and koptevo respectively). This setup isn't fully stable yet, notably: * The IP range used by tailscale is just the default one right now, I'm not sure if that should be changed or what. * The system is stateful (on sanduny), but the state is not (yet) backed up anywhere. Use with caution. * Machine joining is a manual process requiring SSH & root access to sanduny. The process is to log in to sanduny, then get a headscale shell with `sudo -u headscale bash`, and to use the `headscale` CLI within there to administrate access. I've opted to create a user account `tvl` for TVL-owned machines, and a personal account for myself and my machines. Change-Id: I4f1be1fe8062a6c2e77203ff72fe8709f4e4dec8 Reviewed-on: https://cl.tvl.fyi/c/depot/+/8837 Reviewed-by: sterni <sternenseemann@systemli.org> Reviewed-by: flokli <flokli@flokli.de> Tested-by: BuildkiteCI
2023-06-18 r/6328 feat(tazjin/koptevo): deploy tgsaVincent Ambo1-0/+10
The main instance is still running on polyanka, but things are moving in this direction. Change-Id: Idfa9e508023c05148003ac4621ae01dceb284c66 Reviewed-on: https://cl.tvl.fyi/c/depot/+/8827 Reviewed-by: tazjin <tazjin@tvl.su> Tested-by: BuildkiteCI
2023-06-15 r/6320 feat(tazjin/koptevo): move some of my sites hereVincent Ambo1-0/+2
Change-Id: Ie7c55ee286d2a1ebcc623374fb02775ed8dfbb58 Reviewed-on: https://cl.tvl.fyi/c/depot/+/8789 Tested-by: BuildkiteCI Reviewed-by: tazjin <tazjin@tvl.su> Autosubmit: tazjin <tazjin@tvl.su>
2023-06-15 r/6319 feat(tazjin/koptevo): provision certificate (for quassel)Vincent Ambo1-2/+11
With this commit, Quassel becomes operative on koptevo. Change-Id: Ic877c5bb1525cf5288b0091cb0cd1328b5276264 Reviewed-on: https://cl.tvl.fyi/c/depot/+/8788 Tested-by: BuildkiteCI Reviewed-by: tazjin <tazjin@tvl.su>
2023-06-15 r/6316 chore(tazjin/koptevo): fix some initial growing painsVincent Ambo1-3/+6
Change-Id: I614bba9e28ca789d2e641391ccf3bdbc6ff95dd5 Reviewed-on: https://cl.tvl.fyi/c/depot/+/8785 Reviewed-by: tazjin <tazjin@tvl.su> Tested-by: BuildkiteCI
2023-06-15 r/6312 feat(tazjin/nixos): initialise koptevo systemVincent Ambo1-0/+117
This is the "new polyanka" (eventually), as I'm decommissioning that host slowly. Change-Id: Ia0fe664f3bf64513d8177434c6c0fface857cd99 Reviewed-on: https://cl.tvl.fyi/c/depot/+/8783 Tested-by: BuildkiteCI Reviewed-by: tazjin <tazjin@tvl.su>