v/infrastructure
1
0
Fork 0
Code Issues 13 Pull requests 1 Projects Releases Packages Activity Actions

start set up for multi-location nixos flake

Browse source
This commit is contained in:
Vivian 2022-07-30 22:16:44 +02:00
parent fa09f75ac6
commit 4b7d60c090
23 changed files with 26 additions and 12 deletions
Download patch file Download diff file Expand all files Collapse all files

4
nixos/hosts/default.nix Normal file
View file

@ -0,0 +1,4 @@
{
olympus = import ./olympus;
hades = [];
}

0
nixos/hosts/_template/configuration.nix → nixos/hosts/olympus/_template/configuration.nix
View file

0
nixos/hosts/bastion/configuration.nix → nixos/hosts/olympus/bastion/configuration.nix
View file

0
nixos/hosts/bastion/hardware-configuration.nix → nixos/hosts/olympus/bastion/hardware-configuration.nix
View file

0
nixos/hosts/database/configuration.nix → nixos/hosts/olympus/database/configuration.nix
View file

153
nixos/hosts/olympus/default.nix Normal file
View file

@ -0,0 +1,153 @@
[
{
hostname = "edgerouter";
ip = "10.42.42.1";
ip6 = "2001:41f0:9639:1:b6fb:e4ff:fe53:9c0";
mac = "B4:FB:E4:53:9C:0A";
nix = false;
}
{
hostname = "unifi-ap";
ip = "10.42.42.2";
mac = "b4:fb:e4:f3:ff:1b";
nix = false;
}
{
hostname = "dhcp";
ip = "10.42.42.3";
mac = "3E:2D:E8:AA:E2:81";
}
{
hostname = "bastion";
ip = "10.42.42.4";
ip6 = "2001:41f0:9639:1:80f0:7cff:fecb:bd6d";
mac = "82:F0:7C:CB:BD:6D";
lxc = false;
}
{
hostname = "vault";
ip = "10.42.42.6";
mac = "16:2B:87:55:0C:0C";
}
{
hostname = "mosquitto";
ip = "10.42.42.7";
mac = "C6:F9:8B:3D:9E:37";
}
{
hostname = "home-assistant";
ip = "10.42.42.8";
ip6 = "2001:41f0:9639:1:bfe7:3fd9:75de:cbee";
mac = "9E:60:78:ED:81:B4";
nix = false;
}
{
hostname = "nginx";
ip = "10.42.42.9";
ip6 = "2001:41f0:9639:1:68c2:89ff:fe85:cfa6";
mac = "6A:C2:89:85:CF:A6";
tags = [ "web" ];
}
{
hostname = "k3s-node1";
profile = "k3s";
ip = "10.42.42.10";
mac = "2E:F8:55:23:D9:9B";
lxc = false;
}
{
hostname = "WoolooTV";
ip = "10.42.42.13";
mac = "74:40:be:48:85:a4";
nix = false;
}
# {
# ip = "10.42.42.14";
# }
{
hostname = "dns-1";
profile = "dns";
ip = "10.42.42.15";
mac = "5E:F6:36:23:16:E3";
}
{
hostname = "dns-2";
profile = "dns";
ip = "10.42.42.16";
mac = "B6:04:0B:CD:0F:9F";
}
{
hostname = "minio";
ip = "10.42.42.17";
mac = "0A:06:5E:E7:9A:0C";
}
# {
# ip = "10.42.42.18";
# }
{
hostname = "victoriametrics";
ip = "10.42.42.19";
mac = "9E:91:61:35:84:1F";
}
{
hostname = "unifi";
ip = "10.42.42.20";
mac = "1A:88:A0:B0:65:B4";
}
{
hostname = "minecraft";
ip = "10.42.42.21";
mac = "EA:30:73:E4:B6:69";
}
{
hostname = "gitea";
ip = "10.42.42.22";
mac = "DE:5F:B0:83:6F:34";
}
{
hostname = "hedgedoc";
ip = "10.42.42.23";
mac = "86:BC:0C:18:BC:9B";
}
{
hostname = "zmeura";
ip = "10.42.42.24";
mac = "b8:27:eb:d5:e0:f5";
nix = false;
}
{
hostname = "wireguard";
ip = "10.42.42.25";
mac = "1E:ED:97:2C:C3:9D";
}
{
hostname = "database";
ip = "10.42.42.26";
mac = "CE:6E:96:87:18:1B";
}
{
hostname = "bookwyrm";
ip = "10.42.42.27";
mac = "9E:8A:6C:39:27:DE";
nix = false;
}
{
hostname = "synapse";
ip = "10.42.42.28";
mac = "9E:86:D3:46:EE:AE";
}
{
hostname = "nuc";
ip = "10.42.42.42";
ip6 = "2001:41f0:9639:1::42";
mac = "1C:69:7A:62:30:88";
nix = false;
}
{
hostname = "eevee";
ip = "10.42.42.69";
ip6 = "2001:41f0:9639:1:a83:e416:dc99:5ed3";
mac = "34:97:f6:93:9A:AA";
nix = false;
}
]

3
nixos/hosts/dhcp/configuration.nix → nixos/hosts/olympus/dhcp/configuration.nix
View file

@ -5,6 +5,7 @@ let
hostName = hostname;
ipAddress = ip;
};
hosts' = hosts.olympus;
in {
imports = [ ];
@ -47,6 +48,6 @@ in {
range 10.42.43.1 10.42.43.254;
}
'';
machines = map hostToDhcp hosts;
machines = map hostToDhcp hosts';
};
}

8
nixos/hosts/dns/configuration.nix → nixos/hosts/olympus/dns/configuration.nix
View file

@ -2,7 +2,9 @@
let
inherit (builtins) filter hasAttr;
localdomain = "olympus";
ipv6Hosts = filter (hasAttr "ip6") hosts;
# TODO: use location attr in hosts
hosts' = hosts.${localdomain};
ipv6Hosts = filter (hasAttr "ip6") hosts';
localData = { hostname, ip, ... }: ''"${hostname}.${localdomain}. A ${ip}"'';
local6Data = { hostname, ip6, ... }: ''"${hostname}.${localdomain}. AAAA ${ip6}"'';
@ -38,8 +40,8 @@ in {
interface = [ "0.0.0.0" "::0" ];
local-zone = ''"${localdomain}." transparent'';
local-data = (map localData hosts) ++ (map local6Data ipv6Hosts);
local-data-ptr = (map ptrData hosts) ++ (map ptr6Data ipv6Hosts);
local-data = (map localData hosts') ++ (map local6Data ipv6Hosts);
local-data-ptr = (map ptrData hosts') ++ (map ptr6Data ipv6Hosts);
access-control = [
"127.0.0.1/32 allow_snoop"

0
nixos/hosts/gitea/configuration.nix → nixos/hosts/olympus/gitea/configuration.nix
View file

0
nixos/hosts/hedgedoc/configuration.nix → nixos/hosts/olympus/hedgedoc/configuration.nix
View file

0
nixos/hosts/k3s/configuration.nix → nixos/hosts/olympus/k3s/configuration.nix
View file

0
nixos/hosts/k3s/hardware-configuration.nix → nixos/hosts/olympus/k3s/hardware-configuration.nix
View file

0
nixos/hosts/minecraft/configuration.nix → nixos/hosts/olympus/minecraft/configuration.nix
View file

0
nixos/hosts/minio/configuration.nix → nixos/hosts/olympus/minio/configuration.nix
View file

0
nixos/hosts/mosquitto/configuration.nix → nixos/hosts/olympus/mosquitto/configuration.nix
View file

0
nixos/hosts/nginx/configuration.nix → nixos/hosts/olympus/nginx/configuration.nix
View file

0
nixos/hosts/synapse/configuration.nix → nixos/hosts/olympus/synapse/configuration.nix
View file

0
nixos/hosts/unifi/configuration.nix → nixos/hosts/olympus/unifi/configuration.nix
View file

0
nixos/hosts/vault/configuration.nix → nixos/hosts/olympus/vault/configuration.nix
View file

0
nixos/hosts/victoriametrics/configuration.nix → nixos/hosts/olympus/victoriametrics/configuration.nix
View file

0
nixos/hosts/wireguard/configuration.nix → nixos/hosts/olympus/wireguard/configuration.nix
View file