aboutsummaryrefslogtreecommitdiffstats
path: root/roles/space_server
AgeCommit message (Collapse)Author
2020-03-21space_server: networkd: set NTP server on wan interfaceEmil Renner Berthing
time.cloudflare.com has much lower ping than any of the default N.fedora.pool.ntp.org servers.
2020-03-20space_server: nftables: remove traffic stats rulesEmil Renner Berthing
This used to open up for polling our old switch for traffic data, but it died and it doesn't work with the new switch so let's plug the hole.
2020-03-20users: graffen: addedJesper Hess Nielsen
2020-03-14space_server: nftables: add graffens prefixes to nftablesJesper Hess Nielsen
2020-03-14space_server: bird: add ipv4 BGP session for graffenJesper Hess Nielsen
2020-03-11space_server: bird: add bgp peering for graffen/AS209616Jesper Hess Nielsen
2020-03-07space_server: nftables: forward space.labitat.dk:17380 to jumbotronEmil Renner Berthing
2020-03-01space_server: radius: configure certificatesEmil Renner Berthing
2020-02-29space_server: update to Fedora 31Emil Renner Berthing
2020-02-29space_server: networkd: set Scope=link link addressesEmil Renner Berthing
2020-02-27roles: remove useless |bool filtersEmil Renner Berthing
This used to be a fix for some bogus warnings, but they seem to have gone in recent versions of Ansible
2020-02-27space_server: show nicer loop itemsEmil Renner Berthing
2020-02-27space_server: avahi: use shorter dict formatEmil Renner Berthing
2020-02-27space_server: move sudo tasks to fedora roleEmil Renner Berthing
..to align with debian role
2020-02-27space_server: use common secrets.yml in ansible rootEmil Renner Berthing
..and generalize and move sshd tasks to fedora role.
2020-02-27fedora: update for hash_behaviour = replaceEmil Renner Berthing
2020-02-23space_server: vars: add piscreen2.sEmil Renner Berthing
2019-07-06roles: fix warnings about bare boolean variablesEmil Renner Berthing
2019-05-02space_server: renumber Fiberby linkAsbjørn Sloth Tønnesen
Signed-off-by: Asbjørn Sloth Tønnesen <asbjorn@labitat.dk>
2019-04-11space_server: dhcpd: add timezone infoEmil Renner Berthing
2019-04-07space_server: dhcpd: only do ddns for sane hostnamesEmil Renner Berthing
2019-04-05space_server: named: allow local transfer queriesEmil Renner Berthing
..so now you can see all registered dhcp hostnames with: dig axfr dhcp
2019-04-03space_server: vars: add SIP box as voip.sEmil Renner Berthing
2019-04-03space_server: dhcpd: reclaim 10.42.0.70Emil Renner Berthing
There used to be a server with this address, so the available dhcp range had to be broken up.
2019-04-03space_server: dhcpd: add hosts to .dhcp zoneEmil Renner Berthing
Only requests with the host-name header set will be added to the dhcp zone (so it can be looked up at <hostname>.dhcp). This will fail if the host-name is not a valid dns name though. Also leases on the member wired, member wireless, and free are added to the zone, but just like the s zone the dhcp zone and reverse dns for 10.42.0.0/16 cannot be queried from Labitat (free). This way you can connect gadgets to Labitat (free), but still look them up in dns and connect to them from the member networks.
2019-04-03space_server: named: support dynamic updatesEmil Renner Berthing
..of the dhcp zone and reverse dns for 10.42.0.0/16 This way the dhcp daemon can add entries when it handles out leases.
2019-04-02space_server: named: create reverse ipv4 zoneEmil Renner Berthing
2019-04-01space_server: vars: rework local_hostsEmil Renner Berthing
..to get rid of the need for ipv4/ipv6 filters and python-netaddr dependency.
2019-04-01space_server: named: use named instead of unboundEmil Renner Berthing
This reverts commit 3b795796bd03488a385f3ad42b10b8c0d61282c1, "space_server: unbound: use unbound instad of bind". Unlike unbound, bind supports synthesizing DNS64 answers only for certain clients, so only requests from the Labitat NAT64 network will get DNS64 answers.
2019-03-31space_server: kernel: make sure selinux is disabledEmil Renner Berthing
2019-03-31space_server: dhcpd: update dhcpd.confEmil Renner Berthing
Host declerations are global and dhcpd has been warning about this for some time.
2019-03-31space_server: vars: remove old APEmil Renner Berthing
..and unused ip address for ap2
2019-01-13users: add more flexible user managementEmil Renner Berthing
Now user data is in roles/users/defaults/main.yml and each server should have a hash like this users: 'foo': sudo 'bar': true 'baz': false #'qux': false This means the user foo will be created with sudo access, the user bar will be created without sudo access, while baz and qux will be removed.
2019-01-13space_server: add xeroxwax printerEmil Renner Berthing
2019-01-10space_server: fix one last reference to the old prefixAsbjørn Sloth Tønnesen
Fixes: 78688483 space_server: add Asbjorn's colo addresses and net
2018-12-06space_server: networkd: fix unneeded calculationEmil Renner Berthing
2018-12-05space_server: enable NAT64/DNS64 networkEmil Renner Berthing
2018-12-05space_server: avahi: ask myhostname 2ndEmil Renner Berthing
2018-12-05space_server: unbound: create /etc/resolv.confEmil Renner Berthing
2018-12-03space_server: networkd: announce proper DNS on mgtEmil Renner Berthing
2018-12-03space_server: networkd: disable ARP on untagged interfaceEmil Renner Berthing
2018-11-30space_server: networkd: small cleanupsEmil Renner Berthing
2018-11-30space_server: use systemd-network for RAsEmil Renner Berthing
..rather radvd
2018-11-30space_server: networkd: use Link.RequiredForOnlineEmil Renner Berthing
..rather than overriding ExecStart to call networkd-wait-online with --ignore
2018-11-29space_server: use dnf_packages when possibleEmil Renner Berthing
2018-11-29space_server: radvd: wait-online.conf no longer neededEmil Renner Berthing
The package-provided radvd.service now has After=network-online.target Wants=network-online.target
2018-11-28space_server: nat Labitat free from 185.38.175.1Emil Renner Berthing
2018-11-28space_server: add Asbjorn's colo addresses and netAsbjørn Sloth Tønnesen
2018-11-28space_server: nftables: accept all traffic to colo netsEmil Renner Berthing
..but don't let colo servers connect to internal addresses.
2018-11-27space_server: radius: omit src when state != linkEmil Renner Berthing
This fixes some ansible warnings.
generated by cgit v1.2.1 (git 2.18.0) at 2024-07-01 19:02:59 +0000