colin/nix-files
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
9,528 Commits 141 Branches 1 Tag
14d5910e790eea4b51eb581019ae1b7dbfabafa5
Commit Graph

16 Commits

Author SHA1 Message Date
Colin
acd20e23d9 common: net: switch DNS resolver from unbound to BIND 2024-12-30 07:29:01 +00:00
Colin
532194b862 servo: speculative wg tunnel fix 2024-12-03 04:49:24 +00:00
Colin
08c5f5661f modules/netns: make the wg port optional 2024-12-03 04:23:53 +00:00
Colin
6be6c08e7c servo: hardcode the doof/ovpns listen ports, and forward them through the NAT 2024-11-25 18:07:37 +00:00
Colin
3ed0ff6611 netns: make it *slightly* more debuggable 2024-11-25 15:55:23 +00:00
Colin
ec5e8a3269 netns: simplify the host -> netns response tunneling 
i don't actually need any route table that's higher priority than 'local'
 2024-11-11 11:02:42 +00:00
Colin
f6369bce8d servo: doof: dont proxy DNS inside the net namespace 2024-11-11 02:46:06 +00:00
Colin
309bd04037 modules/netns: rename options for better grouping 2024-11-11 02:37:00 +00:00
Colin
23913c9cd2 netns: configure the device in a way that should allow named endpoints to be resolved outside the netns 2024-11-11 02:19:00 +00:00
Colin
2ed633cfe8 wg-ovpns/doof: port from networking.wireguard -> sane.netns 2024-11-10 15:48:43 +00:00
Colin
2962f2dc21 refactor: modules/netns.nix 2024-11-10 14:00:29 +00:00
Colin
c30929e1a6 servo: switch to unbound for local DNS provider 2024-11-10 05:53:17 +00:00
Colin
24ed242bac servo: fix warning for getExe and iptables 2024-07-04 12:43:02 +00:00
Colin
09a615ee62 netns: factor the netns setup/teardown into distinct services, rather than trying to piggyback network-local-commands 
idk what network-local-commands is about, nor network-pre.target.
network-pre.target doesn't seem to actually be wanted by anything (?)
 2024-06-18 10:36:08 +00:00
Colin
f9091c0b0c netns: ensure that network.target depends on network-pre.target (why doesnt it by default?) 
this should fix that servo tries to start wg-ovpns before the netns is configured
 2024-06-18 09:07:40 +00:00
Colin
0d99293b2f servo: split the doof/ovpns netns config into its own module 
a big thing this gets me is that the attributes (like IP addresses) are now accessible via 'config' an i won't have to hardcode them so much
 2024-06-17 09:25:10 +00:00