jungle

Author	SHA1	Message	Date
Aleix Boné	e42058f08b	Allow access to hut from fox Reviewed-by: Rodrigo Arias Mallo <rodrigo.arias@bsc.es>	2025-10-02 17:03:21 +02:00
Aleix Boné	5fcd57a061	Use hut substituter in all nodes Reviewed-by: Rodrigo Arias Mallo <rodrigo.arias@bsc.es>	2025-09-29 18:44:38 +02:00
Rodrigo Arias Mallo	f9632c37f8	Remove extra SSH jump configuration We now have direct visibility among nodes so we don't need any extra SSH configuration to reach them. Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-09-26 12:28:51 +02:00
Rodrigo Arias Mallo	1f0cb4ae76	Add raccoon peer to wireguard It routes traffic from fox, apex and the compute nodes so that we can reach the git servers and tent. Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-09-26 12:28:48 +02:00
Rodrigo Arias Mallo	6afe05b5fd	Use lowercase peer hostnames Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-09-26 12:28:25 +02:00
Rodrigo Arias Mallo	4da7780472	Add amd_hsmp module in fox for AMD uProf Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-09-19 10:54:24 +02:00
Rodrigo Arias Mallo	d6126501ba	Disable NMI watchdog in fox Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-09-19 10:54:17 +02:00
Rodrigo Arias Mallo	e6e4846529	Add AMD uProf module and enable it in fox Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-09-19 10:54:05 +02:00
Rodrigo Arias Mallo	ff0fc18d0a	Mount home via NFS from apex in fox Reviewed-by: Aleix Roca Nonell <aleix.rocanonell@bsc.es>	2025-09-03 15:34:02 +02:00
Rodrigo Arias Mallo	017c19e7d0	Use 10.106.0.0/24 subnet to avoid collisions The 106 byte is the code for 'j' (jungle) in ASCII: % printf j \| od -t d 0000000 106 0000001 Reviewed-by: Aleix Roca Nonell <aleix.rocanonell@bsc.es>	2025-09-03 12:03:13 +02:00
Rodrigo Arias Mallo	a36eff8749	Revert "Remove pam_slurm_adopt from fox" This reverts commit 1eac0fcad8211195499bc566e6c70312b31af700. Reviewed-by: Aleix Roca Nonell <aleix.rocanonell@bsc.es>	2025-09-03 12:03:06 +02:00
Rodrigo Arias Mallo	df17b11458	Enable fail2ban in fox Protect fox against ssh bruteforce attacks: fox% sudo lastb \| head root ssh:notty 200.124.28.102 Mon Sep 1 11:25 - 11:25 (00:00) root ssh:notty 200.124.28.102 Mon Sep 1 11:25 - 11:25 (00:00) root ssh:notty 200.124.28.102 Mon Sep 1 11:25 - 11:25 (00:00) root ssh:notty 200.124.28.102 Mon Sep 1 11:25 - 11:25 (00:00) root ssh:notty 200.124.28.102 Mon Sep 1 11:25 - 11:25 (00:00) root ssh:notty 200.124.28.102 Mon Sep 1 11:25 - 11:25 (00:00) root ssh:notty 200.124.28.102 Mon Sep 1 11:25 - 11:25 (00:00) root ssh:notty 200.124.28.102 Mon Sep 1 11:25 - 11:25 (00:00) root ssh:notty 200.124.28.102 Mon Sep 1 11:24 - 11:24 (00:00) root ssh:notty 200.124.28.102 Mon Sep 1 11:24 - 11:24 (00:00) Reviewed-by: Aleix Roca Nonell <aleix.rocanonell@bsc.es>	2025-09-03 12:03:02 +02:00
Rodrigo Arias Mallo	0dc7b7eb3d	Accept connections from apex to fox slurmd Reviewed-by: Aleix Roca Nonell <aleix.rocanonell@bsc.es>	2025-09-03 12:03:00 +02:00
Rodrigo Arias Mallo	4b6b67b587	Add fox machine to SLURM Reviewed-by: Aleix Roca Nonell <aleix.rocanonell@bsc.es>	2025-09-03 12:02:57 +02:00
Rodrigo Arias Mallo	6bbfb0d124	Make apex host specific to each machine Allows direct contact via the VPN when accessing from fox, but use Internet when using the rest of the machines. Reviewed-by: Aleix Roca Nonell <aleix.rocanonell@bsc.es>	2025-09-03 12:02:49 +02:00
Rodrigo Arias Mallo	e415f70bbb	Add wireguard server in fox Reviewed-by: Aleix Roca Nonell <aleix.rocanonell@bsc.es>	2025-09-03 12:02:38 +02:00
Rodrigo Arias Mallo	f89bba35a6	Access gitlab via raccoon in fox Reviewed-by: Aleix Roca Nonell <aleix.rocanonell@bsc.es>	2025-08-27 15:27:38 +02:00
Rodrigo Arias Mallo	3f3dc2d037	Disable automatic August shutdown for Fox The UPC has different dates for the yearly power cut, and Fox can recover properly from a power loss, so we don't need to have it turned off before the power cut. Simply disabling the timer is enough. Reviewed-by: Aleix Roca Nonell <aleix.rocanonell@bsc.es> Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-07-24 11:22:10 +02:00
Aleix Boné	f3733418b2	Move shared nvidia settings to a separate module Reviewed-by: Rodrigo Arias Mallo <rodrigo.arias@bsc.es>	2025-07-22 17:06:45 +02:00
Rodrigo Arias Mallo	750504744f	Enable open source NVidia driver in fox It is recommended for newer versions. Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-07-18 09:57:38 +02:00
Rodrigo Arias Mallo	c26ec1b6f1	Remove option allowUnfree from fox and raccoon It is already set to true for all machines. Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-07-18 09:57:21 +02:00
Rodrigo Arias Mallo	479ca1b671	Disable kptr_restrict in fox Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-07-02 15:08:42 +02:00
Rodrigo Arias Mallo	40529fbdcb	Disable NUMA balancing in fox See: https://www.kernel.org/doc/html/latest/admin-guide/sysctl/kernel.html#numa-balancing Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-07-02 15:08:02 +02:00
Rodrigo Arias Mallo	9b0d3fb21e	Load amd_uncore module in fox Needed for L3 events in perf. Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-07-02 15:07:58 +02:00
Rodrigo Arias Mallo	d8444131d8	Enable SSH X11 forwarding Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-07-02 15:07:54 +02:00
Rodrigo Arias Mallo	7d3c7342ae	Use performance governor in fox Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-06-11 12:08:55 +02:00
Rodrigo Arias Mallo	8f80ed2cce	Add hut as nix cache in fox Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-06-11 12:08:51 +02:00
Rodrigo Arias Mallo	e40fd24f26	Use DHCP for Ethernet in fox Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-06-11 10:24:53 +02:00
Rodrigo Arias Mallo	83efd6c876	Use UPC time servers as others are blocked Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-06-11 10:24:47 +02:00
Rodrigo Arias Mallo	6c1afa3fd8	Update configuration for UPC network The fox machine will be placed in the UPC network, so we update the configuration with the new IP and gateway. We won't be able to reach hut directly so we also remove the host entry and proxy. Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-06-02 11:26:48 +02:00
Rodrigo Arias Mallo	008584b465	Disable home via NFS in fox It won't be accesible anymore as we won't be in the same LAN. Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-06-02 11:26:46 +02:00
Rodrigo Arias Mallo	9bee145e25	Remove Ceph module from fox It will no longer be accesible from the UPC. Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-06-02 11:26:36 +02:00
Rodrigo Arias Mallo	4528b7c2a6	Remove fox from SLURM Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-06-02 11:26:20 +02:00
Rodrigo Arias Mallo	1eac0fcad8	Remove pam_slurm_adopt from fox We no longer will be able to use SLURM from jungle. Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-06-02 11:26:02 +02:00
Rodrigo Arias Mallo	5487a93972	Reject SSH connections without SLURM allocation Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-04-08 17:15:15 +02:00
Rodrigo Arias Mallo	71164400d4	Mount NVME disks in /nvme{0,1} Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-04-08 17:15:06 +02:00
Rodrigo Arias Mallo	2b04812320	Add new fox machine Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-04-08 17:14:42 +02:00

37 Commits