zuckerberg/nix-config
1
0
Fork 0
Code Issues Pull Requests Actions Activity
761 Commits 5 Branches 0 Tags
dc3c2194abf8ce2cb8d8ce267d6ef3f1bcc79710
Commit Graph

16 Commits

Author SHA1 Message Date
zuckerberg dc3c2194ab use port 8080 instead
Check Flake / check-flake (push) Successful in 3m21s
Details
2026-02-26 00:26:49 -08:00
zuckerberg 3365a1652c restore port option 2026-02-26 00:16:39 -08:00
zuckerberg 6466406975 fix transmission port forwarding
Check Flake / check-flake (push) Successful in 3m25s
Details
2026-02-26 00:08:40 -08:00
zuckerberg f4a4edf478 fix networking online target + ntfy notifications
Check Flake / check-flake (push) Successful in 3m36s
Details
2026-02-25 23:24:23 -08:00
zuckerberg 1ac3f05e3e define vpn container hosts within containers too 2026-02-25 23:23:49 -08:00
zuckerberg c1030c1dfe remove debugging messages
Check Flake / check-flake (push) Successful in 3m28s
Details
2026-02-25 00:31:31 -08:00
zuckerberg 52469693e3 maybe fix
Check Flake / check-flake (push) Successful in 3m17s
Details
2026-02-25 00:25:15 -08:00
zuckerberg ffce43b8d0 debug
Check Flake / check-flake (push) Has been cancelled
Details
2026-02-25 00:22:07 -08:00
zuckerberg 96a6007693 debug 2026-02-25 00:14:19 -08:00
zuckerberg 32cb438db9 networking fixes
Check Flake / check-flake (push) Successful in 3m20s
Details
2026-02-25 00:10:49 -08:00
zuckerberg 0368661e24 networking fixes
Check Flake / check-flake (push) Has been cancelled
Details
2026-02-25 00:08:27 -08:00
zuckerberg 12209b69b8 networking fixes
Check Flake / check-flake (push) Successful in 3m21s
Details
2026-02-24 23:55:02 -08:00
zuckerberg 3bc41dfdb3 networking fixes
Check Flake / check-flake (push) Failing after 1m7s
Details
2026-02-24 23:53:50 -08:00
zuckerberg 1cbbe64707 networking fixes
Check Flake / check-flake (push) Successful in 3m18s
Details
2026-02-24 23:46:51 -08:00
zuckerberg 6191e4060f networking fixes
Check Flake / check-flake (push) Successful in 3m18s
Details
2026-02-24 23:37:15 -08:00
zuckerberg a0fcacdcf9 Rewrite PIA VPN as multi-container bridge architecture
Check Flake / check-flake (push) Successful in 4m44s
Details 
Replace the single VPN container (veth pair, host-side auth scripts) with a
multi-container setup on a shared bridge network:

- Dedicated VPN container handles all PIA auth, WireGuard config, NAT, and
  optional port forwarding DNAT
- Service containers default-route through VPN container (leak-proof by topology)
- Host runs tinyproxy on bridge for PIA API bootstrap before WG is up
- WG interface is still created in host netns and moved into VPN container
  namespace
- Monthly renewal to ensure that connection stays up (PIA allows connections to
  last up to 2 months)
- Drop OpenVPN support entirely
 2026-02-24 23:11:46 -08:00