summaryrefslogtreecommitdiff
path: root/defaults
diff options
context:
space:
mode:
Diffstat (limited to 'defaults')
-rw-r--r--defaults63
1 files changed, 59 insertions, 4 deletions
diff --git a/defaults b/defaults
index b5ec7fa..3e9d093 100644
--- a/defaults
+++ b/defaults
@@ -1,13 +1,68 @@
bashtard.backup.elements.0=filesystem
bashtard.backup.fs.paths.0=/etc
bashtard.backup.repositories.edephas=backup@edephas:{fqdn}
-k3s.network.cidr.pods=10.57.40.0/20
-k3s.network.cidr.svcs=10.57.48.0/20
-k3s.network.service.dns=10.57.48.53
-k3s.flux.repo.url=ssh://git@10.57.100.7/srv/git/tyilnet
+bashtard.ssh.host&=vpn-tinc.ipv6
dns.domain=tyil.net
dns.upstream.0=185.181.61.24
dns.upstream.1=188.68.231.82
dns.upstream.2=51.83.172.84
dns.upstream.3=2a03:94e0:1804::1
dns.upstream.4=2001:470:71:6dc::53
+etc-nixos.path=/etc/nixos
+etc-portage.path=/etc/portage
+k3s-master.bind-address&=k3s-node.bind-address
+k3s-master.cluster-cidr=fd00:8::0/48,172.28.0.0/16
+k3s-master.cluster-domain=k3s.tyil.nl
+k3s-master.external-ip&=k3s-node.internal-ip
+k3s-master.internal-ip&=k3s-node.internal-ip
+k3s-master.service-cidr=fd00:5::0/108,172.25.0.0/16
+k3s-master.service-node-port-min=1025
+k3s-master.flannel.interfaces.tinc&=k3s-node.flannel.interfaces.tinc
+k3s-node.bind-address&=vpn-tinc.ipv6
+k3s-node.cluster-cidr&=k3s-master.cluster-cidr
+k3s-node.cluster-domain&=k3s-master.cluster-domain
+k3s-node.cluster-domain=k3s.tyil.nl
+k3s-node.entry.host=[fd68:1057:1992:3381:0:1:3317:1]
+k3s-node.external-ip&=k3s-node.internal-ip
+k3s-node.flannel.interfaces.tinc=tyilnet1057
+k3s-node.role=agent
+k3s-node.service-cidr&=k3s-master.service-cidr
+k3s-node.service-node-port-min&=k3s-master.service-node-port-min
+nftables.input.icmp.ipv4.policy=accept
+nftables.input.icmp.ipv4.rate=2/second
+nftables.input.icmp.ipv6.policy=accept
+nftables.input.icmp.ipv6.rate=2/second
+nftables.input.interfaces.lo.policy=accept
+nftables.input.interfaces.tyilnet.policy=accept
+nftables.input.interfaces.tyilnet1058.policy=accept
+nftables.input.policy=drop
+nftables.input.rules.mosh.policy=accept
+nftables.input.rules.mosh.port=60000-61000
+nftables.input.rules.mosh.proto=udp
+nftables.input.rules.ssh.policy=accept
+nftables.input.rules.ssh.port=22
+nftables.input.rules.ssh.proto=tcp
+nftables.input.rules.tincd.policy=accept
+nftables.input.rules.tincd.port=655
+nftables.input.rules.tincd.proto=tcp,udp
+nftables.input.rules.wireguard.policy=accept
+nftables.input.rules.wireguard.port=51820
+nftables.input.rules.wireguard.proto=udp
+nftables.input.state.established.policy=accept
+nftables.input.state.invalid.policy=drop
+nftables.input.state.related.policy=accept
+seaweedfs-filer.ip&=vpn-wireguard.ipv6
+seaweedfs-master.replication=100
+seaweedfs-volume.ip&=vpn-wireguard.ipv6
+vpn-tinc.name=tyilnet1057
+vpn-tinc.peers.caeghi=caeghi_tyil_net
+vpn-tinc.peers.faiwoo=faiwoo_tyil_net
+vpn-tinc.peers.gaeru=gaeru_tyil_net
+vpn-tinc.peers.qohrei=qohrei_tyil_net
+vpn-tinc.peers.ricui=ricui_tyil_net
+vpn-tinc.port=657
+vpn-wireguard.interface=tyilnet1058
+vpn-wireguard.keepalive=10
+www-blog.generator=hugo
+www-blog.path=/var/www/nl.tyil.www
+www-blog.repository=https://git.tyil.nl/blog
generated by cgit v1.1 at 2024-04-28 14:02:37 +0000