jungle

Author	SHA1	Message	Date
Rodrigo Arias Mallo	b3c8e96f6a	Remove extra SSH jump configuration We now have direct visibility among nodes so we don't need any extra SSH configuration to reach them. Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-10-01 16:40:18 +02:00
Rodrigo Arias Mallo	c069f36013	Add raccoon peer to wireguard It routes traffic from fox, apex and the compute nodes so that we can reach the git servers and tent. Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-10-01 16:40:18 +02:00
Rodrigo Arias Mallo	b0fb3c7be3	Make apex host specific to each machine Allows direct contact via the VPN when accessing from fox, but use Internet when using the rest of the machines. Reviewed-by: Aleix Roca Nonell <aleix.rocanonell@bsc.es>	2025-10-01 16:40:18 +02:00
Rodrigo Arias Mallo	b4762b2470	Prevent accidental use of nftables Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-10-01 16:40:17 +02:00
Rodrigo Arias Mallo	4fcdcd064d	Add new configuration for apex Reviewed-by: Aleix Boné <abonerib@bsc.es>	2025-10-01 16:40:17 +02:00
Rodrigo Arias Mallo	f74ec2bce1	Split xeon specific configuration from base To accomodate the raccoon knights workstation, some of the configuration pulled by m/common/main.nix has to be removed. To solve it, the xeon specific parts are placed into m/common/xeon.nix and only the common configuration is at m/common/base.nix. Reviewed-by: Aleix Roca Nonell <aleix.rocanonell@bsc.es>	2025-10-01 16:40:16 +02:00