Commit graph

1034 commits

Author SHA1 Message Date
5579de7e7c dns: fixed issue that could cause a DOS attach (via DNS amplification)
ITD's router was setting teh IP of all external traffic as 193.1.99.65, which was part of the 193.1.99.64/26 subnet.
The fix is to explisitly list all our IP's
2023-05-05 14:40:27 +01:00
d750b046d1 dns: go back to basically an earlier config 2023-04-29 02:35:58 +01:00
ec8b458d75 dns: use a hash to make a unique config file 2023-04-29 01:54:17 +01:00
e8254a0d65 minecraft: got the classic server and maps up and running 2023-04-27 01:47:17 +01:00
f39934a437 secrets: reorganised it so it makes more sense who has access to what secrets 2023-04-27 01:46:51 +01:00
81afc614a3 minecraft: fix up the paths 2023-04-27 00:49:55 +01:00
b85410e895 minecraft: use a better proxy 2023-04-26 02:18:21 +01:00
de87d97fbc fmt: reduced nesting to make it easier to read/understand 2023-04-26 02:01:29 +01:00
3eac87bbd8 games: split it up into 3 different services for easier management 2023-04-26 01:52:47 +01:00
733b867f47 games: split minecraft out into its own folder for manageability 2023-04-26 00:24:54 +01:00
2603cf9584 games: turns out I wasnt treating it properly like a docker-compose file 2023-04-26 00:09:31 +01:00
4052aeac6b dns: setup dnssec (need to backup the required folders later)
Also it cleared out the spam of errors
2023-04-25 15:11:02 +01:00
c0f160faa3 dns: use epoch for the serial instead of YYYYMMDDSS.
Lacking hours/min could mean that the YYYYMMDD could remain the same but the SS would decrece, which is not what we want
2023-04-25 14:31:19 +01:00
612ba70bbf games: it is possible to have multiple minecraft servers running 2023-04-25 00:44:17 +01:00
d762001cb6 dns: some light reorganisation for clarity 2023-04-24 20:40:48 +01:00
695f9a5763 dns: no mailserver yet 2023-04-24 20:38:36 +01:00
e5e5350b90 dns: added a comment on teh indentation 2023-04-24 20:24:17 +01:00
78fcafc566 ssl: got the ssl certs riunning and live 2023-04-24 20:21:36 +01:00
43111f41b3 dns: swap the order of the nameservers 2023-04-24 20:19:32 +01:00
8de2b27099 dns: reduce te time that the record is alive for 2023-04-24 20:19:16 +01:00
94784ee6d2 dns: this is supposted to cut down spam logs but it dosent 2023-04-24 20:17:24 +01:00
70f3e03b74 dns: turns out this spacing is really really important 2023-04-24 20:14:24 +01:00
a474819992 ssh: added thenobrainer to the ssh keys and rekied the secrets 2023-04-23 16:43:52 +01:00
3d15446d63 dns: serial of therecord is now updated dynamically 2023-04-23 13:37:42 +01:00
6119c9a88a dns: got a working letsencrypt setup 2023-04-23 04:22:01 +01:00
ef37392f07 ulfm: initial test run 2023-04-21 01:44:11 +01:00
ce9e245000 ulfm: prepping to setup ulfm 2023-04-21 01:22:16 +01:00
c2842fb766 acme: temp disable this for a bit 2023-04-21 01:20:23 +01:00
2c71efd56d fix: some simplificatiobn 2023-04-21 01:14:24 +01:00
c38a2cfd7a nginx: basic setup complete (copied from my own stuff) 2023-04-21 01:10:30 +01:00
fe93f796a6 fix: centralise the ports 2023-04-21 00:53:25 +01:00
f63aa7f245 dns: still some kinks with the dns but its easing out 2023-04-20 23:46:43 +01:00
80f0a6eda7 dns: set a tag for the dns servers 2023-04-20 23:15:59 +01:00
8e3b4d0243 dns: set upstream dns resolvers 2023-04-20 23:15:08 +01:00
74c00e743c fix: set teh user for the unlocked file 2023-04-20 23:10:47 +01:00
dae38b854b fix: had the secret declation in teh wrong location 2023-04-20 19:22:17 +01:00
55ce671a4b secrets: added galatea and rekeyed 2023-04-20 19:21:28 +01:00
e01b0eddb6 acme: frontend with acme itself 2023-04-20 19:03:11 +01:00
e5040278ba acme: config required for the dns side of things 2023-04-20 18:50:00 +01:00
1693a9e5fe secrets: added new secrets to handle dns auth for skynet.ie 2023-04-20 18:46:41 +01:00
7445a4e92f secrets: added more servers and rekeyed 2023-04-20 18:12:47 +01:00
8a13b6c8b1 feat: use tags to deploy now 2023-04-20 14:09:36 +01:00
1e22c814c5 feat: switching over to using domain names 2023-04-20 14:07:26 +01:00
bd9af1b0ee fix: disable this option 2023-04-20 09:34:06 +01:00
1f8c1f92e1 fix: set dns and gateway for alls ervers 2023-04-20 09:16:28 +01:00
bb0fd16903 fix: only serving ipv4 at the current time 2023-04-20 08:56:52 +01:00
9071bf1737 feat: added bind for dns stuff 2023-04-19 20:42:00 +01:00
6f6f899d3b fix: reinstate Jones's internal IP address 2023-03-15 12:34:17 +00:00
e7add7845a fix: merge, seems I had already solved the nix-shell command 2023-02-24 12:13:57 +00:00
f57fb1b846 feat: vendetta is now live on what used to be Earth 2023-02-24 12:09:21 +00:00