Add README and TODO files
This commit is contained in:
parent
2738f6b794
commit
55ea5aebc4
12
README.md
Normal file
12
README.md
Normal file
@ -0,0 +1,12 @@
|
|||||||
|
# My NixOS configurations
|
||||||
|
|
||||||
|
### Source Layout
|
||||||
|
- `/common` - common configuration imported into all `/machines`
|
||||||
|
- `/boot` - config related to bootloaders, cpu microcode, and unlocking LUKS root disks over tor
|
||||||
|
- `/network` - config for tailscale, zeroteir, and NixOS container with automatic vpn tunneling via PIA
|
||||||
|
- `/pc` - config that a graphical desktop computer should have. Use `de.enable = true;` to enable everthing.
|
||||||
|
- `/server` - config that creates new nixos services or extends existing ones to meet my needs
|
||||||
|
- `/ssh.nix` - all ssh public host and user keys for all `/machines`
|
||||||
|
- `/machines` - all my NixOS machines along with their machine unique configuration for hardware and services
|
||||||
|
- `/kexec` - a special machine for generating minimal kexec images. Does not import `/common`
|
||||||
|
- `/secrets` - encrypted shared secrets unlocked through `/machines` ssh host keys
|
||||||
92
TODO.md
Normal file
92
TODO.md
Normal file
@ -0,0 +1,92 @@
|
|||||||
|
# A place for brain dump ideas maybe to be taken off of the shelve one day
|
||||||
|
|
||||||
|
### NixOS webtools
|
||||||
|
- Better options search https://mynixos.com/options/services
|
||||||
|
|
||||||
|
### Interesting ideas for restructuring nixos config
|
||||||
|
- https://github.com/gytis-ivaskevicius/flake-utils-plus
|
||||||
|
- https://github.com/divnix/digga/tree/main/examples/devos
|
||||||
|
- https://digga.divnix.com/
|
||||||
|
- https://nixos.wiki/wiki/Comparison_of_NixOS_setups
|
||||||
|
|
||||||
|
### Housekeeping
|
||||||
|
- Format everything here using nixfmt
|
||||||
|
- Cleanup the line between hardware-configuration.nix and configuration.nix in machine config
|
||||||
|
- CI https://gvolpe.com/blog/nixos-binary-cache-ci/
|
||||||
|
|
||||||
|
### NAS
|
||||||
|
- helios64 extra led lights
|
||||||
|
- safely turn off NAS on power disconnect
|
||||||
|
- hardware de/encoding for rk3399 helios64 https://forum.pine64.org/showthread.php?tid=14018
|
||||||
|
- tor unlock
|
||||||
|
|
||||||
|
### bcachefs
|
||||||
|
- bcachefs health alerts via email
|
||||||
|
- bcachefs periodic snapshotting
|
||||||
|
- use mount.bcachefs command for mounting
|
||||||
|
- bcachefs native encryption
|
||||||
|
- just need a kernel module? https://github.com/firestack/bcachefs-tools-flake/blob/kf/dev/mvp/nixos/module/bcachefs.nix#L40
|
||||||
|
|
||||||
|
### Shell Comands
|
||||||
|
|
||||||
|
- myip = dig +short myip.opendns.com @resolver1.opendns.com
|
||||||
|
|
||||||
|
#### https://linuxreviews.org/HOWTO_Test_Disk_I/O_Performance
|
||||||
|
|
||||||
|
- seq read = `fio --name TEST --eta-newline=5s --filename=temp.file --rw=read --size=2g --io_size=10g --blocksize=1024k --ioengine=libaio --fsync=10000 --iodepth=32 --direct=1 --numjobs=1 --runtime=60 --group_reporting`
|
||||||
|
- seq write = `fio --name TEST --eta-newline=5s --filename=temp.file --rw=write --size=2g --io_size=10g --blocksize=1024k --ioengine=libaio --fsync=10000 --iodepth=32 --direct=1 --numjobs=1 --runtime=60 --group_reporting`
|
||||||
|
- random read = `fio --name TEST --eta-newline=5s --filename=temp.file --rw=randread --size=2g --io_size=10g --blocksize=4k --ioengine=libaio --fsync=1 --iodepth=1 --direct=1 --numjobs=32 --runtime=60 --group_reporting`
|
||||||
|
- random write = `fio --name TEST --eta-newline=5s --filename=temp.file --rw=randrw --size=2g --io_size=10g --blocksize=4k --ioengine=libaio --fsync=1 --iodepth=1 --direct=1 --numjobs=1 --runtime=60 --group_reporting`
|
||||||
|
- tailexitnode = `sudo tailscale up --exit-node=<exit-node-ip> --exit-node-allow-lan-access=true`
|
||||||
|
|
||||||
|
### Services
|
||||||
|
- setup archivebox
|
||||||
|
- radio https://tildegit.org/tilderadio/site
|
||||||
|
- music
|
||||||
|
- mopidy
|
||||||
|
- use the jellyfin plugin?
|
||||||
|
- navidrome
|
||||||
|
- spotify secrets for navidrome
|
||||||
|
- picard for music tagging
|
||||||
|
- alternative music software
|
||||||
|
- https://www.smarthomebeginner.com/best-music-server-software-options/
|
||||||
|
- https://funkwhale.audio/
|
||||||
|
- https://github.com/epoupon/lms
|
||||||
|
- https://github.com/benkaiser/stretto
|
||||||
|
- https://github.com/blackcandy-org/black_candy
|
||||||
|
- https://github.com/koel/koel
|
||||||
|
- https://airsonic.github.io/
|
||||||
|
- https://ampache.org/
|
||||||
|
- replace nextcloud with seafile
|
||||||
|
|
||||||
|
### VPN container
|
||||||
|
- use wireguard for vpn
|
||||||
|
- https://github.com/triffid/pia-wg/blob/master/pia-wg.sh
|
||||||
|
- https://github.com/pia-foss/manual-connections
|
||||||
|
- port forwarding for vpn
|
||||||
|
- transmission using forwarded port
|
||||||
|
- https://www.wireguard.com/netns/
|
||||||
|
- one way firewall for vpn container
|
||||||
|
|
||||||
|
### Networking
|
||||||
|
- tailscale for p2p connections
|
||||||
|
- remove all use of zerotier
|
||||||
|
|
||||||
|
### Archive
|
||||||
|
- https://www.backblaze.com/b2/cloud-storage.html
|
||||||
|
- email
|
||||||
|
- https://github.com/Disassembler0/dovecot-archive/blob/main/src/dovecot_archive.py
|
||||||
|
- http://kb.unixservertech.com/software/dovecot/archiveserver
|
||||||
|
|
||||||
|
### Paranoia
|
||||||
|
- https://christine.website/blog/paranoid-nixos-2021-07-18
|
||||||
|
- https://nixos.wiki/wiki/Impermanence
|
||||||
|
|
||||||
|
### Misc
|
||||||
|
- https://github.com/pop-os/system76-scheduler
|
||||||
|
- improve email a little bit https://helloinbox.email
|
||||||
|
- remap razer keys https://github.com/sezanzeb/input-remapper
|
||||||
|
|
||||||
|
### Future Interests (upon merge into nixpkgs)
|
||||||
|
- nixos/thelounge: add users option https://github.com/NixOS/nixpkgs/pull/157477
|
||||||
|
- glorytun: init at 0.3.4 https://github.com/NixOS/nixpkgs/pull/153356
|
||||||
Loading…
x
Reference in New Issue
Block a user