Vesuvius dnsmasq netboot #6
Conversation
…ted addresses for dhcp clients on cluster vlan
this is hugely important and a major blocker
| inherit role clusterInit; | ||
|
|
||
| enable = true; | ||
| token = "garbage secret"; |
There was a problem hiding this comment.
Could be added to the agenix secrets
mikhail729
left a comment
mikhail729
left a comment
There was a problem hiding this comment.
Incorrect cluster master IP address. Ideally the k3s server should only be listening on the cluster Vlan rather than all interfaces as well.
there's still some possible issues with the script (hence the paranoid `echo` after `hostname`)
|
summary for myself tomorrow (yes i mean wednesday): there's some lingering bugs and misconfigurations + we need like fifty new |
kurisufriend
force-pushed
the
vesuvius-dnsmasq-netboot
branch
from
b977dc7 to
95545c0
Compare
|
moved eri's commit to #11 |
…ping the store off the root ssd note that this is live on the machine, which *no longer has a native /nix*. this means that deploying any config which does not include the bind mount (e.g. master) will **break everything**. be duly warned.
| ./ipa.nix | ||
| ./netboot.nix | ||
|
|
||
| ../common/nfs.nix |
There was a problem hiding this comment.
Should we mount Dirtycow on Vesuvius? We're planning to migrate most things onto Bastille and Dirtycow will be moved to McBryde so the latency might not be very good. Also in that migration, the IP will change too (probably should use IPv6 addresses too so we're 21st century compliant. Dirtycow's shares are already setup for our IPv6 subnet).
There was a problem hiding this comment.
it's so ipa users (which you should use!!!!!) have homedirs. also: why not?
when the IP changes we can change the config.
…me script in favor of dhcp hostnames
there's some minor problems