waw.hackerspace.pl dns zone is now generated from the same source of
truth as kea reservations.
drive-by changes:
* did a bit of cleanup of the zone file by not copying/converting
some records.
* added entry for craptrap's ipmi interface
Change-Id: I17cfea966e6199ebbef408c8172030b9b43d1a99
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1992
Reviewed-by: q3k <q3k@hackerspace.pl>
Instead of waiting for backports or even rolling forward unstable, let's
just patch the bug out.
This has been deployed on:
- dcr01s22.hswaw.net
- dcr01s24.hswaw.net
- dcr03s16.hswaw.net
- snowflake.hswaw.net
Change-Id: I0ad8ea37bd15bc9bd4e814cdf3eda7b2c47bb03e
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1988
Reviewed-by: implr <implr@hackerspace.pl>
prep for postgresql database migration from the instance running on old
dell blade server.
on snowflake side, mostly a copy-paste of configuration from bc01n05,
from which the database instance will be migrated from, with a few
adjustments for newer nixpkgs/nixos.
on matrix/k8s side, just a change of host.
and a drive-by rename from `.hackerspace.pl` to `.hswaw.net`
Change-Id: I0e78162270ebb3244078e34dee0cd4629d5598ca
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1986
Reviewed-by: q3k <q3k@hackerspace.pl>
attempts were made for the following:
* routed network - would require changes in more places
* macvtap - getting host/guest connectivity is annoying
* sriov with NICs hidden from host - some virtual functions randomly
wouldn't get hidden/assigned the vfio-pci driver
* basic sriov - what's here currently, works well enough for libvirt
Change-Id: Ifa5ff1ccafd5ea1d9b2c360b897390378398662d
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1983
Reviewed-by: informatic <informatic@hackerspace.pl>
SIP/dect things that weren't added before.
Change-Id: I11fb8084fb525f8f26decb0e5787f037a7da646a
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1985
Reviewed-by: ar <ar@hackerspace.pl>
This adds one of the 4 new fast machines that will run various one-off
workloads, initially mostly migrated off of the old dell m1000e blade
chassis, such as a virtualized boston-packets.
Change-Id: I4a85f8e14cd79257ad41bbe1519f33595f4e497a
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1981
Reviewed-by: q3k <q3k@hackerspace.pl>
Due to multiple cases of abuse and lack of real need to have it accessible unauthenticated (we don't have a public terminal), force users of vector/pixel labelmakers to authenticate
Change-Id: Ib8c7e2a921251b5d0cf6a0e8c488256aa9935e86
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1957
Reviewed-by: informatic <informatic@hackerspace.pl>
bridgeport is gone
kodak MAC changed
kst brought a rpi3 she wants to keep at hs for flashing things
Change-Id: I8500e0e761e1c47840b6b5cd7b2c1245e2f7c284
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1951
Reviewed-by: ar <ar@hackerspace.pl>
Moved voron static ip allocation to wired ethernet.
Added entries for Czechu's prusa mini which will be staying here for a
few months at least.
Removed oki allocation.
Added entries for new kyocera.
Kodak SBC upgrade -> new mac.
Change-Id: I503f2c1cffa913543102ee4d91a16548f9126d2d
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1947
Reviewed-by: q3k <q3k@hackerspace.pl>
Kea configuration added in its own file for general cleanness.
Migrated only lan and bms subnets; others appear to be legacy leftovers.
IP reservations migrated as-is; "one-liner" for that in comments.
Hopefully legacy "bootp" is not actually needed as that's behind a
paywall.
Generated config tested using `kea-dhcp4 -tT -c ./generated/dhcp4.conf`
Drive-by fix for checkinator to keep it working with old config with no
DHCP_SERVER config key.
Added myself to OWNERS as I'm making frequent changes here recently, and
vuko is absent.
Change-Id: I5d5dd71ab4fd3fb498bd8bc95428984b3b08f092
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1943
Reviewed-by: q3k <q3k@hackerspace.pl>
Reviewed-by: informatic <informatic@hackerspace.pl>
Also bump version number and fix typo in README.
Change-Id: I116ef706d99df4ace70ccceefc6a23d41fd1adb6
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1942
Reviewed-by: q3k <q3k@hackerspace.pl>
Somehow SHELL variable from host was still kept in pure shell.
This should prevent colmena deploys failing when host is built against
libc newer than the one in our fhsuserenv.
Change-Id: Ia98e35e71d8d3a0ae2920a18ff2fe6a2e8ed2d53
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1910
Reviewed-by: q3k <q3k@hackerspace.pl>
Misunderstood the logrotate.conf manual and somehow missed lack of the
"delaycompress" option in the output. "compress" needs to be specified
explicitly, despite the presence of other compression-related options,
and nix configuration generator requires "true", not "null", for entries
with no options to be present in output.
Change-Id: Ibe0c41a4b657ff598b2a0613f1ff6fe67f20ca3b
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1908
Reviewed-by: q3k <q3k@hackerspace.pl>
Reviewed-by: informatic <informatic@hackerspace.pl>
We need to keep a year's worth of connection logs for legal reasons, and
in uncompressed form they took around 170G, but only around 25G
compressed, while rootfs on the machine is a bit over 180G.
Also a drive-by build fix for laserproxy which also removes a workaround
that (IMHO) introduced more problems than it solved.
Change-Id: If91224b0c3bc5ccdd096f0c722e82dbe4de29b95
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1907
Reviewed-by: informatic <informatic@hackerspace.pl>
Reviewed-by: q3k <q3k@hackerspace.pl>
radex
ar
q3k
implr
etorameth
noisersup
informatic
viq
palid