starred/nix-config

mirror of https://github.com/ryan4yin/nix-config.git synced 2026-03-18 15:34:13 +01:00

Files

History

Ryan Yin 9a0e41429a docs: nixos-install + persistent

2024-04-20 13:29:03 +08:00

..

feat: migrate all nixos services from idols to 12kingdoms

2024-03-31 16:50:17 +08:00

default.nix

feat: migrate all nixos services from idols to 12kingdoms

2024-03-31 16:50:17 +08:00

Disk-and-installation.md

docs: nixos-install + persistent

2024-04-20 13:29:03 +08:00

disko-fs.nix

feat(modules/nixos/base,hosts): add btrbk for filesystem backup

2024-03-31 15:35:08 +08:00

hardware-configuration.nix

refactor: Use haumea for filesystem-based module system for flake outputs

2024-03-10 20:12:02 +08:00

impermanence.nix

refactor: Use haumea for filesystem-based module system for flake outputs

2024-03-10 20:12:02 +08:00

networking.nix

feat(hosts,lib): adjust kernel sysctl for k8s/dae

2024-03-29 23:58:50 +08:00

README.md

docs: add todo

2024-04-11 10:50:39 +08:00

README.md

Suzu - Orange Pi 5

LUKS encrypted SSD for NixOS, on Orange Pi 5.

TODOs

Add support for BGP routing.
- Comparing Open Source BGP Stacks
- services.frr.* - search.nixos.org

Showcases

Features

Micro VMs:

suzi: dae router(transparent proxy, dhcp)
mitsuha: tailscale gateway(sub router)

Services:

OCI Containers: to run some servides that's not available in NixOS.
ddns
uptime-kuma: uptime monitoring
excalidraw/DDTV/owncast/jitsi-meet/...

All the services assumes a reverse proxy to be setup in the front, they are all listening on localhost, and a caddy service is listening on the local network interface and proxy the requests to the services.

TODO: create a private PKI for caddy, to achieve end-to-end encryption between caddy and the services.