Merge remote-tracking branch 'ni/master'
This commit is contained in:
lassulus
commit
61689ca451
|
|
@ -4,13 +4,13 @@ in {
|
|||
users.Ra33it0 = {
|
||||
mail = "Ra33it0@posteo.net";
|
||||
};
|
||||
hosts.DUMMYHOST = {
|
||||
hosts.unispore = {
|
||||
owner = config.krebs.users.Ra33it0;
|
||||
nets.retiolum = {
|
||||
aliases = [ "Ra33it0.Ra33it0.r" ];
|
||||
aliases = [ "unispore.Ra33it0.r" ];
|
||||
ip6.addr = (slib.krebs.genipv6 "retiolum" "Ra33it0" { hostName = "unispore"; }).address;
|
||||
tinc.pubkey = ''
|
||||
-----BEGIN RSA PUBLIC KEY-----
|
||||
-----BEGIN RSA PUBLIC KEY-----
|
||||
MIICCgKCAgEA6Cb+b+snYpsQv1J0yMPSL4P0iKs2EkDtqtt6kBOvqFTr2lRB2thp
|
||||
mu9fRbz/CFmcvFXoEMWQEEkKcyhgJEola2+7Ra49iMNX55o/I0iZ499ZI5rIK/JG
|
||||
+A60ijPCh5TSGYIMiD7VWRsxoAtzB1DZ6n4z94KN0wQB5dXKuLPjk/TDfJPuzMrS
|
||||
|
|
@ -22,7 +22,7 @@ CWYM/HzSffzztK8bF0DwhdWzjtNcwZ05XfA2krGZyMj9UxpwN84o1syCnnYC1Xzg
|
|||
4r48fUhubXXE4SbdnN68pCNCct9DT8exPeYeJL2FHi6s+EsfBY+NGEAaQGJTeQEW
|
||||
zUSnX/txoZV6xGUKZ4iOgfQ4MBCVVdtPAaurNP/esVwOr0WF0DTuBDPGBaOqo+Us
|
||||
Ef5cREwrCE8nEY8tu3xl4M9iuCTwBuT79YFhfNI3jr1lcg6f8wGaTYsCAwEAAQ==
|
||||
-----END RSA PUBLIC KEY-----
|
||||
-----END RSA PUBLIC KEY-----
|
||||
'';
|
||||
tinc.pubkey_ed25519 = "cFCAfLbDYv/Ty3m34aHgHr1dXGp2DSwfP0K7GG1TA7D";
|
||||
};
|
||||
|
|
|
|||
|
|
@ -2,29 +2,57 @@
|
|||
let
|
||||
inherit (lib) flip mapAttrs optionalAttrs recursiveUpdate;
|
||||
slib = import ../../lib/pure.nix { inherit lib; };
|
||||
hostDefaults = hostName: host: flip recursiveUpdate host ({
|
||||
ci = false;
|
||||
external = true;
|
||||
monitoring = false;
|
||||
owner = config.krebs.users.dbalan;
|
||||
} // optionalAttrs (host.nets?retiolum) {
|
||||
nets.retiolum = {
|
||||
ip6.addr = (slib.krebs.genipv6 "retiolum" "external" { inherit hostName; }).address;
|
||||
};
|
||||
} // optionalAttrs (host.nets?wiregrill) {
|
||||
nets.wiregrill = {
|
||||
ip6.addr = (slib.krebs.genipv6 "wiregrill" "external" { inherit hostName; }).address;
|
||||
};
|
||||
});
|
||||
in
|
||||
{
|
||||
hostDefaults = hostName: host:
|
||||
flip recursiveUpdate host ({
|
||||
ci = false;
|
||||
external = true;
|
||||
monitoring = false;
|
||||
owner = config.krebs.users.dbalan;
|
||||
} // optionalAttrs (host.nets ? retiolum) {
|
||||
nets.retiolum = {
|
||||
ip6.addr = (slib.krebs.genipv6 "retiolum" "external" {
|
||||
inherit hostName;
|
||||
}).address;
|
||||
};
|
||||
} // optionalAttrs (host.nets ? wiregrill) {
|
||||
nets.wiregrill = {
|
||||
ip6.addr = (slib.krebs.genipv6 "wiregrill" "external" {
|
||||
inherit hostName;
|
||||
}).address;
|
||||
};
|
||||
});
|
||||
in {
|
||||
users = rec {
|
||||
dbalan = {
|
||||
mail = "dbalan@thaum.space";
|
||||
pubkey = "sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIAiWF+U3VHNfp1IPU0/TWhMioxJvmoyG1AMZMvnQjy5QAAAABHNzaDo= dj@v60";
|
||||
pubkey =
|
||||
"sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIAiWF+U3VHNfp1IPU0/TWhMioxJvmoyG1AMZMvnQjy5QAAAABHNzaDo= dj@v60";
|
||||
};
|
||||
};
|
||||
hosts = mapAttrs hostDefaults {
|
||||
tofu = {
|
||||
nets.retiolum = {
|
||||
aliases = [ "tofu.dbalan.r" ];
|
||||
ip4.addr = "10.243.43.12";
|
||||
tinc.pubkey = ''
|
||||
-----BEGIN RSA PUBLIC KEY-----
|
||||
MIICCgKCAgEAlBMwSkdI+3CWPVazfDoPCoqYJH1MLd8Z/ZQCTFx4MhLO/DvJrb7H
|
||||
HJEwvFuImk2yy4oYfcRz8pK+ymBDArdVT5aeTwztTbjkcWa5RTm2d2xuYppTUPZB
|
||||
L0/yY+a+mP1eRa8O6HAoNx3ETvC5euJS40qISTh6grPGFV7i1HhGNPUkvYFlNF6q
|
||||
rJs7RgC8Y2/OSNed5WdJfNYNBeB4xUiKtg3sShKQGO++860yNV4G+J+PtBVnMs8/
|
||||
MnxQbJxnMbhAHNQt5nV+Z66Ewy/2qcn4clrGB3SG1v9fFizzh9mAFK3Udfa+6s8r
|
||||
JaM4BL41uOgHxiiKovmudxIRtts31cKzwPkMyThQpK8hdxJxrCzSQSbiDUkckE+5
|
||||
CeLgAh5jMwEkT6OvYOGZbyeqvZX5gX+yErJyRlsjgYs5TTlfUnpg1BKz2BErzb1b
|
||||
+lWsZXjO03BpNXsuWhC2sspKfuB3+fjlNwR+ov8/UDTOwhzBz15TlufcxiqzA08d
|
||||
yJiNylm07C19qxlffqSZ5KSZGTT+DZg53ror1PLMoxLApV5MgHiM6oltDxemSegb
|
||||
yySGz/EFDDbQQYLYOPu6seLt+ktudvFTERmetV0Bn37Ok8Avs2y6BIgXWjVxcb5p
|
||||
EDbE5tAvX/MZIU9rAXRqDAOulumfvsyFpK8RkXDEoIQEt+gDoZ5OzJsCAwEAAQ==
|
||||
-----END RSA PUBLIC KEY-----
|
||||
'';
|
||||
tinc.pubkey_ed25519 = "b355fDYFQgFFj3KfzUCv4DPSfoFTKklsB12imwci7fH";
|
||||
};
|
||||
};
|
||||
|
||||
v60 = {
|
||||
nets.retiolum = {
|
||||
aliases = [ "v60.dbalan.r" ];
|
||||
|
|
|
|||
|
|
@ -0,0 +1,24 @@
|
|||
{
|
||||
nets = {
|
||||
retiolum = {
|
||||
ip4.addr = "10.243.13.43";
|
||||
aliases = [
|
||||
"zoppo.r"
|
||||
];
|
||||
tinc.pubkey = ''
|
||||
-----BEGIN RSA PUBLIC KEY-----
|
||||
MIIBCgKCAQEAtMzW+RL4mik0JHLL2p21bWy81bVv84mi/NKHyewXxx9EahD3cyOP
|
||||
D/2gLipJnzyjxvM7HzR0FQpBCD5VLmRk2MrRENUGYzrNFhSu36gVg5bGngr0pZld
|
||||
Fosd5wemGx6SUoXMzuBT/st0sg1Azg5mtA1joQTr47NlcwfFrUe7YT8i67szxJSO
|
||||
Qo6BP+Zl6uVr9m8zSVwrj7TAoC7DQLhCTb3QJdpyYibHwpo0bMyyJjeuL/NpnOpH
|
||||
Bv1pZ0oXr/nzCo+8jyQY4L2NonJnHtlzYOQf1cHJ+v+P1jOgGgBGqjo0LOE29Tvx
|
||||
cfQYGLLZc4mRjVQJF3NYW6kHFqKmuu/y5QIDAQAB
|
||||
-----END RSA PUBLIC KEY-----
|
||||
'';
|
||||
tinc.pubkey_ed25519 = "nVIMNp7r21MYneV24x6qVesCjQYM/pvF6nzaihH7GfD";
|
||||
};
|
||||
};
|
||||
secure = true;
|
||||
ssh.pubkey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMk5DVtgzKmbJTsJs81GIMYE3YblnJJTc/FtVukKJK4J root@zoppo";
|
||||
syncthing.id = "F4GDV3I-QX6QAA5-32MXHXE-2RJDYBO-RFXGDFR-EGMN4IQ-OJDKL62-NCUWOAQ";
|
||||
}
|
||||
|
|
@ -0,0 +1 @@
|
|||
5YFGAb9Tg/5HH+XHSKanh4P6jE7KTrViwqVuEkmQeSg=
|
||||
|
|
@ -17,6 +17,8 @@ with lib; {
|
|||
@ 3600 IN NS ns3.he.net.
|
||||
@ 3600 IN NS ns2.hosting.de.
|
||||
|
||||
_acme-challenge IN NS ns1
|
||||
|
||||
panda NS panda
|
||||
panda A 130.61.237.100
|
||||
'';
|
||||
|
|
|
|||
Loading…
Reference in New Issue