f6183c1b10
podman: was working, now it isnt AGHHHHHHHHH
2023-05-19 19:15:22 +01:00
614d905dfd
docker: now using podman
...
had to reboot to make ti come into effect
2023-05-19 18:18:41 +01:00
7e380d6932
ldap: a mostly working ldaish setup
2023-05-18 21:59:23 +01:00
baa226cacf
ldap: cant have uppercase letters in username
2023-05-16 23:58:34 +01:00
53696c927e
ldap: first attempt at ldap
2023-05-16 22:23:04 +01:00
4ef6c14a32
feat: basic gitlab setup
2023-05-16 16:40:49 +01:00
5579de7e7c
dns: fixed issue that could cause a DOS attach (via DNS amplification)
...
ITD's router was setting teh IP of all external traffic as 193.1.99.65, which was part of the 193.1.99.64/26 subnet.
The fix is to explisitly list all our IP's
2023-05-05 14:40:27 +01:00
d750b046d1
dns: go back to basically an earlier config
2023-04-29 02:35:58 +01:00
ec8b458d75
dns: use a hash to make a unique config file
2023-04-29 01:54:17 +01:00
e8254a0d65
minecraft: got the classic server and maps up and running
2023-04-27 01:47:17 +01:00
81afc614a3
minecraft: fix up the paths
2023-04-27 00:49:55 +01:00
b85410e895
minecraft: use a better proxy
2023-04-26 02:18:21 +01:00
de87d97fbc
fmt: reduced nesting to make it easier to read/understand
2023-04-26 02:01:29 +01:00
3eac87bbd8
games: split it up into 3 different services for easier management
2023-04-26 01:52:47 +01:00
733b867f47
games: split minecraft out into its own folder for manageability
2023-04-26 00:24:54 +01:00
2603cf9584
games: turns out I wasnt treating it properly like a docker-compose file
2023-04-26 00:09:31 +01:00
4052aeac6b
dns: setup dnssec (need to backup the required folders later)
...
Also it cleared out the spam of errors
2023-04-25 15:11:02 +01:00
c0f160faa3
dns: use epoch for the serial instead of YYYYMMDDSS.
...
Lacking hours/min could mean that the YYYYMMDD could remain the same but the SS would decrece, which is not what we want
2023-04-25 14:31:19 +01:00
612ba70bbf
games: it is possible to have multiple minecraft servers running
2023-04-25 00:44:17 +01:00
d762001cb6
dns: some light reorganisation for clarity
2023-04-24 20:40:48 +01:00
695f9a5763
dns: no mailserver yet
2023-04-24 20:38:36 +01:00
e5e5350b90
dns: added a comment on teh indentation
2023-04-24 20:24:17 +01:00
78fcafc566
ssl: got the ssl certs riunning and live
2023-04-24 20:21:36 +01:00
8de2b27099
dns: reduce te time that the record is alive for
2023-04-24 20:19:16 +01:00
94784ee6d2
dns: this is supposted to cut down spam logs but it dosent
2023-04-24 20:17:24 +01:00
70f3e03b74
dns: turns out this spacing is really really important
2023-04-24 20:14:24 +01:00
3d15446d63
dns: serial of therecord is now updated dynamically
2023-04-23 13:37:42 +01:00
6119c9a88a
dns: got a working letsencrypt setup
2023-04-23 04:22:01 +01:00
ef37392f07
ulfm: initial test run
2023-04-21 01:44:11 +01:00
c2842fb766
acme: temp disable this for a bit
2023-04-21 01:20:23 +01:00
c38a2cfd7a
nginx: basic setup complete (copied from my own stuff)
2023-04-21 01:10:30 +01:00
fe93f796a6
fix: centralise the ports
2023-04-21 00:53:25 +01:00
f63aa7f245
dns: still some kinks with the dns but its easing out
2023-04-20 23:46:43 +01:00
8e3b4d0243
dns: set upstream dns resolvers
2023-04-20 23:15:08 +01:00
74c00e743c
fix: set teh user for the unlocked file
2023-04-20 23:10:47 +01:00
dae38b854b
fix: had the secret declation in teh wrong location
2023-04-20 19:22:17 +01:00
e01b0eddb6
acme: frontend with acme itself
2023-04-20 19:03:11 +01:00
e5040278ba
acme: config required for the dns side of things
2023-04-20 18:50:00 +01:00
bd9af1b0ee
fix: disable this option
2023-04-20 09:34:06 +01:00
bb0fd16903
fix: only serving ipv4 at the current time
2023-04-20 08:56:52 +01:00
b29daa0ea1
feat: I think this is a better firewall setup, still need to properly test it
2023-01-28 15:31:46 +00:00
3d7f99946a
fix: eol conversion round 2
2023-01-25 11:48:44 +00:00
180feb17ec
fix: eol conversion
2023-01-25 11:37:49 +00:00
75a63212b1
feat: games host configured
2023-01-18 20:41:10 +00:00
654d45a842
feat: can now handle two (or more) nameservers
2023-01-18 02:32:01 +00:00
8db9529449
feat: first nameserver set up
2023-01-18 02:06:08 +00:00
f3a3768f92
fix: small vanity thing to get teh records in a line
2023-01-18 00:20:18 +00:00
ea493b434b
fix: had to be in bind.zones
2023-01-17 23:37:07 +00:00
15c5005b37
feat: dns should work well with this
2023-01-17 23:21:35 +00:00
696e8a404f
fix: gonna use this as an example file
2023-01-17 23:15:36 +00:00
4177b63c4f
doc: a little bit of documentation
2023-01-17 23:02:12 +00:00
2b497b497c
feat: setting it up better
2023-01-17 22:56:05 +00:00
2d0079daa4
feat: base setup for dns
2023-01-17 22:40:04 +00:00
c2e4fde98d
feat: added better options to teh firewall
2023-01-17 15:46:07 +00:00
6ef12f03de
feat: improved config a tad
2023-01-15 19:18:24 +00:00
8f373ada01
feat: no more recusion, simplified the function
2023-01-15 18:42:01 +00:00
badcfe1ada
feat: generating firewall forwarding rules from individual machiene configs complete
2023-01-15 18:27:21 +00:00
53aff5987f
tmnp: save current state
2023-01-15 15:10:40 +00:00
c819214902
feat: can let each machiene add teh forwards it needs
2023-01-15 13:32:18 +00:00
f1a484eaff
feat: basic firewall using the previous
2023-01-13 18:34:19 +00:00
94676e929e
feat: basic firewall config to test it out
2023-01-13 17:22:29 +00:00