mathieu/system-config
1
0
Fork 0
Code Issues Packages Activity Actions

Misc fixes
All checks were successful
ShellCheck / shellcheck (push) Successful in 19s
Details

Browse source
This commit is contained in:
Mathieu Strypsteen 2024-12-17 19:45:16 +01:00
parent 8ba0de2b30
commit 911127eb45
Signed by: mathieu
GPG key ID: 782A42E461BC6824
7 changed files with 15 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
containers/code-server/Containerfile
View file

@ -1,6 +1,6 @@
FROM quay.io/fedora/fedora-toolbox:41 FROM quay.io/fedora/fedora-toolbox:41
RUN dnf up -y RUN dnf up -y
RUN dnf install -y bash-color-prompt clang clang-tools-extra gcc hyperfine java-devel llvm mtools nodejs-npm openssl-devel parted poetry postgresql-server python3-pip qemu-system-x86-core rustup systemd-container vim-enhanced RUN dnf install -y bash-color-prompt cargo-deny clang clang-tools-extra gcc hyperfine java-devel llvm mtools nodejs-npm openssl-devel parted poetry postgresql-server python3-pip qemu-system-x86-core rustup systemd-container vim-enhanced
RUN dnf install -y https://github.com/coder/code-server/releases/download/v4.95.3/code-server-4.95.3-amd64.rpm RUN dnf install -y https://github.com/coder/code-server/releases/download/v4.95.3/code-server-4.95.3-amd64.rpm
RUN mkdir /etc/systemd/system/user@.service.d RUN mkdir /etc/systemd/system/user@.service.d
RUN mkdir /var/lib/systemd/linger RUN mkdir /var/lib/systemd/linger

2
home/etc/containers/systemd/synapse.container
View file

@ -1,6 +1,8 @@
[Unit] [Unit]
Requires=postgresql.service Requires=postgresql.service
After=postgresql.service After=postgresql.service
[Service]
Restart=on-failure
[Container] [Container]
Image=docker.io/matrixdotorg/synapse Image=docker.io/matrixdotorg/synapse
Network=synapse.network Network=synapse.network

2
qubes-fedora/etc/systemd/logind.conf Normal file
View file

@ -0,0 +1,2 @@
[Login]
RuntimeDirectorySize=1G

2
sandbox/etc/containers/systemd/forgejo-runner.container
View file

@ -1,3 +1,5 @@
[Service]
Restart=on-failure
[Container] [Container]
Image=code.forgejo.org/forgejo/runner:5 Image=code.forgejo.org/forgejo/runner:5
SecurityLabelDisable=true SecurityLabelDisable=true

0
server/etc/containers/systemd/borgmatic-cache.volume
View file

2
server/etc/containers/systemd/borgmatic.container
View file

@ -6,10 +6,10 @@ HostName=%H
Volume=/var/lib/system-config/container-config/borgmatic/config.yaml:/etc/borgmatic/config.yaml:z,ro Volume=/var/lib/system-config/container-config/borgmatic/config.yaml:/etc/borgmatic/config.yaml:z,ro
Volume=/var/lib/system-config/container-config/borgmatic/%H.yaml:/etc/borgmatic/local.yaml:z,ro Volume=/var/lib/system-config/container-config/borgmatic/%H.yaml:/etc/borgmatic/local.yaml:z,ro
Volume=/:/run/host:ro Volume=/:/run/host:ro
Volume=borgmatic-cache.volume:/root/.cache/borg:U,Z
Volume=borgmatic-config.volume:/root/.config/borg:U,Z Volume=borgmatic-config.volume:/root/.config/borg:U,Z
Volume=borgmatic-ssh.volume:/root/.ssh:U,Z Volume=borgmatic-ssh.volume:/root/.ssh:U,Z
Tmpfs=/etc/crontabs Tmpfs=/etc/crontabs
Tmpfs=/root/.cache/borg
Environment=BACKUP_CRON="0 0 * * *" Environment=BACKUP_CRON="0 0 * * *"
Secret=BORG_PASSWORD,type=env Secret=BORG_PASSWORD,type=env
Secret=BORG_REMOTE,type=env Secret=BORG_REMOTE,type=env

7
setup-vyos.sh
View file

@ -55,15 +55,22 @@ set service dhcp-server shared-network-name server subnet 192.168.253.0/24 range
set service dhcp-server shared-network-name server subnet 192.168.253.0/24 range 0 stop 192.168.253.253 set service dhcp-server shared-network-name server subnet 192.168.253.0/24 range 0 stop 192.168.253.253
set service dhcp-server shared-network-name server subnet 192.168.253.0/24 lease 1800 set service dhcp-server shared-network-name server subnet 192.168.253.0/24 lease 1800
set service router-advert interface eth1 prefix ::/64 set service router-advert interface eth1 prefix ::/64
set service router-advert interface eth1 name-server fc00::1
set service router-advert interface eth2 prefix ::/64 set service router-advert interface eth2 prefix ::/64
set service router-advert interface eth2 name-server fc01::1
set service router-advert interface eth3 prefix ::/64 set service router-advert interface eth3 prefix ::/64
set service router-advert interface eth3 name-server fc02::1
set service dns forwarding listen-address 192.168.252.1 set service dns forwarding listen-address 192.168.252.1
set service dns forwarding listen-address 192.168.253.1 set service dns forwarding listen-address 192.168.253.1
set service dns forwarding listen-address 192.168.254.1 set service dns forwarding listen-address 192.168.254.1
set service dns forwarding listen-address 192.168.255.1 set service dns forwarding listen-address 192.168.255.1
set service dns forwarding listen-address fc00::1
set service dns forwarding listen-address fc01::1
set service dns forwarding listen-address fc02::1
set service dns forwarding name-server 127.0.0.1 set service dns forwarding name-server 127.0.0.1
set service dns forwarding dnssec validate set service dns forwarding dnssec validate
set service dns forwarding allow-from 192.168.0.0/16 set service dns forwarding allow-from 192.168.0.0/16
set service dns forwarding allow-from fc00::/7
set service tftp-server directory /config/tftp set service tftp-server directory /config/tftp
set service tftp-server listen-address 192.168.253.1 set service tftp-server listen-address 192.168.253.1
set service monitoring telegraf influxdb url http://home.server.home.arpa set service monitoring telegraf influxdb url http://home.server.home.arpa