Skip to content

2140-dev/flotilla

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
.github/workflows
.github/workflows
 
 
hosts
hosts
 
 
modules
modules
 
 
secrets
secrets
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
flake.lock
flake.lock
 
 
flake.nix
flake.nix
 
 

Repository files navigation

flotilla

NixOS host configurations for the 2140.dev fleet. Consumes roost for the public Frigate silent-payments server stack, and ships per-host configurations for the bare-metal Hetzner machines that run it.

Hosts

  • kingfisher — production silent-payments server. Runs bitcoind, electrs, and Frigate; publishes frigate.2140.dev:50002 over TLS.
  • finney — secondary host for ZFS replication and ad-hoc storage. No public services.

Layout

modules/common.nix     operator-wide settings (state version, ZFS, openssh, gc, josie's user)
hosts/<name>/          per-host config: disko layout, hardware, host-specific services
secrets/secrets.nix    agenix recipient registry
flake.nix              consumes roost, defines nixosConfigurations

Deploy a host

From a fresh Hetzner box:

nix run github:nix-community/nixos-anywhere -- \
  --flake .#<host> \
  root@<host-ip>

Subsequent updates:

nixos-rebuild switch --flake .#<host> --target-host root@<host-ip>

Binary cache

Pre-built outputs are pulled from https://2140-dev.cachix.org, including the Frigate package from roost. Configure once:

cachix use 2140-dev

Tests

nix flake check builds each host's toplevel system. CI runs the same builds against the cache.

License

MIT. See LICENSE.

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages