Egor Savkin
42b3d6ccf3
Return swan into the zoo
...
Signed-off-by: Egor Savkin <es@m-labs.hk>
2024-10-09 11:08:12 +08:00
Egor Savkin
47e3d4cb88
Apply tested client configuration
...
Adds an additional route, but doesn't enforce it so other apps will remain the same, but smtp can use tunnel for sending. Also sends replies through the tunnel if connection arrives on the tunnel.
Better have something tested and working before I start doing "perfect".
Signed-off-by: Egor Savkin <es@m-labs.hk>
2024-10-09 11:08:12 +08:00
Egor Savkin
5066b8cb9e
Use wireguard instead of strongswan since its in the kernel
...
Signed-off-by: Egor Savkin <es@m-labs.hk>
2024-10-09 11:08:12 +08:00
Egor Savkin
74ecfdb430
WIP: Use gre/ipsec instead of proxy
...
Signed-off-by: Egor Savkin <es@m-labs.hk>
2024-10-09 11:08:12 +08:00
Sébastien Bourdeauducq
6e21a95ba8
nixbld/named: add qnetp slave DNS for m-labs-intl.com
2024-08-15 19:52:42 +08:00
Sébastien Bourdeauducq
d08186a27a
nixbld/named: enable CAA for m-labs-intl.com
2024-08-14 11:52:25 +08:00
Sébastien Bourdeauducq
5d132565e6
nixbld/named: add hooks.m-labs-intl.com
2024-08-14 11:42:38 +08:00
Sébastien Bourdeauducq
97ca7ea3ce
nixbld: mail setup for m-labs-intl.com WIP
2024-08-14 11:38:19 +08:00
Sébastien Bourdeauducq
4ccab3cf2b
nixbld: remove outdated DNS records
2024-08-05 19:13:34 +08:00
Sébastien Bourdeauducq
872dcaa6bc
nixbld: serve m-labs-intl.com domain
2024-06-06 17:29:07 +08:00
Sébastien Bourdeauducq
bd6c61094f
nixbld: update letsencrypt CAA URI
...
https://github.com/NixOS/nixpkgs/issues/316608
2024-06-02 13:50:48 +08:00
Sébastien Bourdeauducq
7f1972fc9d
nixbld: add backup IP to DNS
2024-05-06 10:44:54 +08:00
Sebastien Bourdeauducq
c01cea6f7a
named: add CAA records everywhere, add IP for zynq board
2024-01-09 08:33:54 +08:00
Sebastien Bourdeauducq
c34d9cc7cf
nixbld: host malloctech email
2023-12-13 18:29:51 +08:00
Sebastien Bourdeauducq
9ca16a2677
nixbld: fix 193thz.com DNS zone
2023-12-13 18:27:46 +08:00
Sebastien Bourdeauducq
3cbd3f5bf3
nixbld: try ACME-CAA
2023-11-20 12:01:37 +08:00
Sebastien Bourdeauducq
68333e5616
nixbld: add DNS entries for nasty-gareth.alt
2023-09-28 10:39:08 +08:00
Sebastien Bourdeauducq
e5257122b1
nixbld: host 193thz.com
2023-09-05 22:04:27 +08:00
Sebastien Bourdeauducq
522accf0a8
nixbld: fix sending email to altnet
2023-09-03 17:23:53 +08:00
Sebastien Bourdeauducq
98072481e7
nixbld: add atse.alt.m-labs.hk
2023-08-04 17:11:36 +08:00
Sebastien Bourdeauducq
39a6ea69f6
nixbld: altnet setup
2023-07-13 13:56:10 +08:00
Sebastien Bourdeauducq
0442916420
nixbld: afws websocket proxy settings
2023-04-05 13:37:35 +08:00
Sebastien Bourdeauducq
6d31b77f0e
add .ph site
2023-03-23 15:22:25 +08:00
Sebastien Bourdeauducq
0faa05aec3
nixbld: add back qnetp DNS
2023-01-29 18:29:16 +08:00
Sebastien Bourdeauducq
21a7d1c36e
nixbld: update LAN AAAA records
2023-01-29 18:01:31 +08:00
Sebastien Bourdeauducq
faff3a5eef
nixbld: relocation
2023-01-29 12:11:31 +08:00
Sebastien Bourdeauducq
dd0ebf1c47
nixbld: move to he.net DNS
2023-01-27 14:48:14 +08:00
Sebastien Bourdeauducq
2c770e9929
nixbld: better workaround against crappy registrar without glue records
...
PCCW's static.imsbiz.com is wonky and not always available for all IPs, so stop using it.
2023-01-16 16:07:58 +08:00
Sebastien Bourdeauducq
dbc9f4c68d
remote setup
2022-12-10 19:17:22 +08:00
Sebastien Bourdeauducq
15d99bc68b
nixbld: persist DNSSEC private key
...
https://github.com/NixOS/nixpkgs/issues/204391
2022-12-05 10:00:35 +08:00
Sebastien Bourdeauducq
fb745a11e3
nixbld: new msys2 repos
2022-11-03 19:09:35 +08:00
Sebastien Bourdeauducq
4b23f8d66f
nixbld: update DNS zone
2022-09-23 10:58:41 +08:00
Sebastien Bourdeauducq
663e030aa8
nixbld: update named zone serial
2022-09-01 11:39:56 +08:00
Sebastien Bourdeauducq
365ec54358
nixbld: install hedgedoc
2022-09-01 11:39:47 +08:00
Sebastien Bourdeauducq
20175f7bc0
nixbld: rfc2181 forbids mx cname
2022-09-01 10:55:31 +08:00
Sebastien Bourdeauducq
13bfee7be2
switch email server
2022-08-13 10:25:53 +08:00
Sebastien Bourdeauducq
80ee7911cd
nixbld: disable jitsi
...
Jitsi is bloated and overly complex, and the NixOS package is too limited.
https://discourse.nixos.org/t/setting-up-authentication-on-a-jitsi-server/17549
2022-07-25 18:33:40 +08:00
Sebastien Bourdeauducq
328a85c504
nixbld: install nextcloud
2022-06-30 17:33:09 +08:00
Sebastien Bourdeauducq
3ef19cbe93
nixbld: m-labs.hk DNS zone
2022-06-28 14:44:14 +08:00
Sebastien Bourdeauducq
08ab958a76
nixbld: use semi-automatic DNSSEC
2022-06-27 13:08:16 +08:00