starred/nix-config

mirror of https://github.com/ryan4yin/nix-config.git synced 2026-03-26 11:21:34 +01:00

Files

History

Ryan Yin e86d7a1020 fix: aqua - networking

2024-07-30 13:48:44 +08:00

..

feat: migrate all nixos services from idols to 12kingdoms

2024-03-31 16:50:17 +08:00

feat: migrate all nixos services from idols to 12kingdoms

2024-03-31 16:50:17 +08:00

docs: copy closure

2024-04-17 23:28:59 +08:00

feat: upgrade to 24.05

2024-06-02 11:17:32 +08:00

feat: migrate all nixos services from idols to 12kingdoms

2024-03-31 16:50:17 +08:00

caddy.nix

fix: homepage - backgroud image

2024-04-17 23:22:13 +08:00

default.nix

feat: upgrade to 24.05

2024-06-02 11:17:32 +08:00

Disk-and-Installation.md

docs: nixos-install + persistent

2024-04-20 13:29:03 +08:00

disko-fs.nix

docs: fix the maxium keyfile size of luks

2024-04-24 11:22:15 +08:00

gitea.nix

feat: upgrade to 24.05

2024-06-02 11:17:32 +08:00

hardware-configuration.nix

refactor: Use haumea for filesystem-based module system for flake outputs

2024-03-10 20:12:02 +08:00

impermanence.nix

refactor: Use haumea for filesystem-based module system for flake outputs

2024-03-10 20:12:02 +08:00

README.md

docs: minior update

2024-07-20 17:54:25 +08:00

restic.nix

feat: upgrade to 24.05

2024-06-02 11:17:32 +08:00

sftpgo.nix

feat: migrate all nixos services from idols to 12kingdoms

2024-03-31 16:50:17 +08:00

transmission.nix

feat: upgrade to 24.05

2024-06-02 11:17:32 +08:00

uptime-kuma.nix

feat: upgrade to 24.05

2024-06-02 11:17:32 +08:00

README.md

Rakushun - Orange Pi 5 Plus

LUKS encrypted SSD for NixOS, on Orange Pi 5 Plus.

Storage, operation and maintenance related services are running on this host:

Storage such as git server, file server/browser, torrent downloader,, etc.
Backup or sync my personal data to cloud or NAS.
- For safety, those data should be encrypted before sending to the cloud or my NAS.
Collect and monitor the metrics/logs of my homelab.

Showcases

Features

Services:

prometheus + alertmanager + grafana + loki: Monitor the metrics/logs of my homelab.
restic: Backup my personal data to cloud or NAS.
synthing: Sync file between android/macbook/PC and NAS.
gitea: Self-hosted git service.
sftpgo: SFTP server.
transmission & AriaNg: Torrent downloader and HTTP downloader
alist/filebrower: File browser for local/SMB/Cloud

All the services assumes a reverse proxy to be setup in the front, they are all listening on localhost, and a caddy service is listening on the local network interface and proxy the requests to the services.

TODO: create a private PKI for caddy, to achieve end-to-end encryption between caddy and the services.

Misc

# copy closure to another arm64 machine
nix-copy-closure --to root@suzu  /run/current-system