summary refs log tree commit diff
path: root/nixos/modules/services/networking
Commit message (Collapse)AuthorAge
* treewide: add literalDocBook text to options with complex defaultspennae2021-12-09
| | | | | | | | some options have default that are best described in prose, such as defaults that depend on the system stateVersion, defaults that are derivations specific to the surrounding context, or those where the expression is much longer and harder to understand than a simple text snippet.
* treewide: make option examples constantpennae2021-12-09
| | | | | escape interpolations in examples, or replace them where they are not useful.
* treewide: make option descriptions constantspennae2021-12-09
| | | | | | escape interpolations in descriptions where possible, replace them with sufficiently descriptive text elsewhere. also expand cfg.* paths in descriptions.
* treewide: add defaultText for options with simple cfg.* expression defaultspennae2021-12-09
| | | | | adds defaultText for options with defaults that use only literals, full config.* paths, and the cfg shortcut binding.
* treewide: set defaultText for options using simple path defaultspennae2021-12-09
| | | | | adds defaultText for all options that set their default to a path expression using the ubiquitous `cfg` shortcut bindings.
* monero: rename to monero-clirnhmjoj2021-11-28
| | | | To make repology.org happy, use the -cli suffix.
* Merge pull request #143995 from erictapen/systemd-workingdirectorySandro2021-11-22
|\
| * nixos/radicale: specify systemd WorkingDirectoryKerstin Humm2021-10-31
| |
* | Merge pull request #146445 from GTrunSec/nomadAaron Andersen2021-11-21
|\ \ | | | | | | nixos/nomad: add flag of plugin-dir
| * | nixos/nomad: add flag of plugin-dirGTrunSec2021-11-17
| | |
* | | nixos/sabnzbd: add package optionAlex Martens2021-11-19
| | |
* | | nixos/networkmanager: remove redundant ipv6.ip6-privacyArtturin2021-11-19
|/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | this setting was added in 2016 in commit bcdd81d9e14d960cf2fc910b622e236728a7fc07 the posibility to preferTempAddress was added to nixos/network-interface in 2018 in commit 1fec496f384c53df39684035bafb482865d3eff8 preferTempAddress was renamed to tempAddress in 2020 in commit 2485e6399e1737d9795f836bb057ab0daf719f03 therefore this setting is redundant since nm will use the sysctl option nixos/network-interfaces: add default to sysctl so that the value for it is set networkmanager falls back to it https://man.archlinux.org/man/NetworkManager.conf.5
* | Merge pull request #142522 from risicle/ris-strongswan-5.9.4Robert Scott2021-11-15
|\ \ | | | | | | strongswan: 5.8.1 -> 5.9.4
| * | strongswan: 5.8.1 -> 5.9.4Robert Scott2021-11-15
| | | | | | | | | | | | | | | remove two now-included patches, add new nixos module parameter ca_id
* | | Merge pull request #144965 from mkg20001/ts-firewallMaciej Krüger2021-11-14
|\ \ \
| * | | nixos/teamspeak: add openFirewall, openFirewallServerQueryMaciej Krüger2021-11-07
| | | | | | | | | | | | | | | | Also set default address to v6 as v6-any always enables v4-any, not always other way
* | | | nixos/tinc: disable chroot by defaultSandro Jäckel2021-11-09
| | | |
* | | | nixos/antennas: initial servicePascal Bach2021-11-09
|/ / /
* | | Merge pull request #144895 from arcnmx/ddclient-privsAaron Andersen2021-11-06
|\ \ \ | | | | | | | | nixos/ddclient: password permission fixes
| * | | nixos/ddclient: customizable package optionarcnmx2021-11-06
| | | |
| * | | nixos/ddclient: fix privs when loading passwordarcnmx2021-11-06
| | | |
* | | | Merge pull request #142765 from pennae/mosquitto-fixesJörg Thalheim2021-11-06
|\ \ \ \ | |/ / / |/| | | nixos/mosquitto: restore checkPasswords=false from old module, add module doc chapter
| * | | nixos/mosquitto: add module documentationpennae2021-10-28
| | | |
| * | | nixos/mosquitto: restore passwordless system featurepennae2021-10-24
| | | | | | | | | | | | | | | | | | | | | | | | during the rewrite the checkPasswords=false feature of the old module was lost. restore it, and with it systems that allow any client to use any username.
* | | | nixos/unifi: refactor mountpointsPascal Bach2021-11-05
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Use service internal bind mounts instead of global ones. This also moves the logs to /var/log/unifi on the host and the run directory to /run/unifi. Closes #61424
* | | | nixos/lxd-image-server: initMaciej Krüger2021-11-03
| | | | | | | | | | | | | | | | Co-authored-by: Aaron Andersen <aaron@fosslib.net>
* | | | Merge pull request #143705 from felschr/ddclient-password-fileAaron Andersen2021-11-02
|\ \ \ \ | | | | | | | | | | nixos/ddclient: replace password with passwordFile option
| * | | | nixos/ddclient: replace password with passwordFile optionFelix Tenley2021-10-30
| | |_|/ | |/| |
* | | | Merge master into staging-nextgithub-actions[bot]2021-11-02
|\ \ \ \
| * | | | nixos/smokeping: Add nh2 to maintainersNiklas Hambüchen2021-11-01
| | | | |
| * | | | nixos/smokeping: Don't listen on all interfaces by default.Niklas Hambüchen2021-11-01
| | | | | | | | | | | | | | | | | | | | | | | | | In general, NixOS services are configured such that by default they are not exposed to the Internet for security, see #100192.
| * | | | nixos/smokeping: Use requiredBy instead of wantedBy.Niklas Hambüchen2021-11-01
| | | | | | | | | | | | | | | | | | | | | | | | | This makes switch-configuration fail if something is wrong with it, which is desired especially for NixOps deployments.
| * | | | nixos/smokeping: Remove partOf to ensure restarts work.Niklas Hambüchen2021-11-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Details on https://github.com/NixOS/nixops/issues/1063#issuecomment-453253666. `partOf` makes that if `smokeping.service` is stopped, `thttpd.service` will be stopped as well. (But not that `thttpd` will be started when `smokeping` is started). Once `thttpd.service` is stopped that way, `Restart = always` will not apply. When the smokeping config options are changed, NixOS's `switch-configuration.pl` will stop `smokeping` (whit shuts down thttpd due to `partOf`), and then restart smokeping; but this does not start thttpd. As a result, thttpd will be off after changing the config, which isn't desired. This commit fixes it by removing the `partOf`, which makes `Restart` work as expected.
| * | | | nixos/smokeping: Make default imgUrl relative.Niklas Hambüchen2021-11-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This avoids a common problem: Until now, port forwarding to multiple hosts running smokeping did not work; they all show the data of the first smokeping instance. That ws because the image URLs generated by smokeping are absolute (`imgurl` setting). Consequently, if you ran ssh node-1 -L 8081:localhost:8081 ssh node-2 -L 8081:localhost:8082 ssh node-3 -L 8081:localhost:8083 and try to open http://localhost:8081, http://localhost:8082 and http://localhost:8083, they all would show the images of node-1! Using a relative `imgurl` fixes that. As per smokeping docs on `imgurl`: > Either an absolute URL to the `imgcache` directory or one relative to the > directory where you keep the SmokePing cgi.
| * | | | nixos/smokeping: Add host option.Niklas Hambüchen2021-11-01
| | | | | | | | | | | | | | | | | | | | Allows setting smokeping to not listen on the public Internet.
| * | | | nixos/smokeping: Remove bash wrapper, refactor.Niklas Hambüchen2021-11-01
| |/ / / | | | | | | | | | | | | | | | | The bash wrapper process served no purpose, and systemd directly controlling the processes is more reliable / more responsive to systemctl commands.
* | | | Merge master into staging-nextgithub-actions[bot]2021-10-26
|\| | |
| * | | Merge pull request #119719 from greizgh/seafileSandro2021-10-26
| |\ \ \
| | * | | nixos/seafile: init serviceGreizgh2021-10-23
| | |/ /
* | | | Merge master into staging-nextgithub-actions[bot]2021-10-26
|\| | |
| * | | nixos/jibri: add nixos testCleeyv2021-10-25
| | | |
| * | | nixos/jibri: fix & docs for enable not via meetCleeyv2021-10-25
| | | |
| * | | nixos/jibri: add finalize script optionCleeyv2021-10-25
| | | |
| * | | nixos/jibri: init at 8.0-93-g51fe7a2Cleeyv2021-10-25
| | | | | | | | | | | | | | | | | | | | | | | | This module was written by @puckipedia for nixcon-video-infra 2020. Minor changes made by @cleeyv for compat with existing jibri package. Co-authored-by: Puck Meerburg <puck@puck.moe>
| * | | nixos/jitsi-meet: add jibri.enableCleeyv2021-10-25
| |/ / | | | | | | | | | | | | | | | | | | This option enables a jibri service on the same host that is running jitsi-meet. It was written, along with the jibri module, by @puckipedia for nixcon-video-infra 2020. Co-authored-by: Puck Meerburg <puck@puck.moe>
* | | Merge master into staging-nextgithub-actions[bot]2021-10-23
|\| |
| * | nixos/mosquitto: rewrite the modulepennae2021-10-22
| |/ | | | | | | | | | | | | | | | | | | | | mosquitto needs a lot of attention concerning its config because it doesn't parse it very well, often ignoring trailing parts of lines, duplicated config keys, or just looking back way further in the file to associated config keys with previously defined items than might be expected. this replaces the mosquitto module completely. we now have a hierarchical config that flattens out to the mosquitto format (hopefully) without introducing spooky action at a distance.
* | Merge remote-tracking branch 'origin/master' into staging-nextMartin Weinelt2021-10-15
|\|
| * nixos/unifi, unifi: add pennae to maintainerspennae2021-10-15
| |
* | Merge remote-tracking branch 'origin/staging' into staging-nextMartin Weinelt2021-10-15
|\ \ | |/ |/|
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-01 18:06:15 +0000