diff --git a/etc/systemd/network/3.ns1.grapheneos.org.link b/etc/systemd/network/3.ns1.grapheneos.org.link new file mode 100644 index 0000000..67b4f6f --- /dev/null +++ b/etc/systemd/network/3.ns1.grapheneos.org.link @@ -0,0 +1,5 @@ +[Match] +MACAddress=fa:16:3e:f7:ba:47 + +[Link] +Name=public diff --git a/etc/systemd/network/3.ns1.grapheneos.org.network b/etc/systemd/network/3.ns1.grapheneos.org.network new file mode 100644 index 0000000..5d6d15b --- /dev/null +++ b/etc/systemd/network/3.ns1.grapheneos.org.network @@ -0,0 +1,23 @@ +[Match] +Name=public + +[Network] +DHCP=ipv4 +LinkLocalAddressing=no +Address=2402:1f00:8000:800::3966/128 + +[Route] +Destination=::/0 +Gateway=2402:1f00:8000:800::1 +PreferredSource=2402:1f00:8000:800::3966 + +[Route] +Destination=2402:1f00:8000:800::1 +PreferredSource=2402:1f00:8000:800::3966 + +[DHCP] +UseMTU=true + +[CAKE] +Bandwidth=500M +PriorityQueueingPreset=besteffort diff --git a/hosts.sh b/hosts.sh index 3b0d227..c409627 100644 --- a/hosts.sh +++ b/hosts.sh @@ -2,6 +2,7 @@ declare -Ar hosts_hostname=( [ns1.staging.grapheneos.org]=ns1-staging [0.ns1.grapheneos.org]=0-ns1 [2.ns1.grapheneos.org]=2-ns1 + [3.ns1.grapheneos.org]=3-ns1 [0.ns2.grapheneos.org]=0-ns2 [1.ns2.grapheneos.org]=1-ns2 [2.ns2.grapheneos.org]=2-ns2 @@ -45,6 +46,7 @@ declare -Ar hosts_hardware_watchdog=( declare -Ar hosts_authorized_keys=( [2.ns1.grapheneos.org]=authorized_keys-replica-ns1 + [3.ns1.grapheneos.org]=authorized_keys-replica-ns1 [1.ns2.grapheneos.org]=authorized_keys-replica-ns2 [2.ns2.grapheneos.org]=authorized_keys-replica-ns2 [1.grapheneos.org]=authorized_keys-replica-grapheneos @@ -62,6 +64,7 @@ declare -Ar hosts_firewall=( [ns1.staging.grapheneos.org]=ns1 [0.ns1.grapheneos.org]=ns1 [2.ns1.grapheneos.org]=ns1 + [3.ns1.grapheneos.org]=ns1 [0.ns2.grapheneos.org]=ns2 [1.ns2.grapheneos.org]=ns2 [2.ns2.grapheneos.org]=ns2 @@ -114,6 +117,7 @@ declare -Ar hosts_conntrack_size=( [ns1.staging.grapheneos.org]=65536 [0.ns1.grapheneos.org]=131072 [2.ns1.grapheneos.org]=131072 + [3.ns1.grapheneos.org]=131072 [0.ns2.grapheneos.org]=65536 [1.ns2.grapheneos.org]=65536 [2.ns2.grapheneos.org]=65536 @@ -177,6 +181,7 @@ declare -Ar hosts_journald_max_retention_sec=( [ns1.staging.grapheneos.org]=4day [0.ns1.grapheneos.org]=4day [2.ns1.grapheneos.org]=4day + [3.ns1.grapheneos.org]=4day [0.ns2.grapheneos.org]=4day [1.ns2.grapheneos.org]=4day [2.ns2.grapheneos.org]=4day @@ -190,6 +195,7 @@ declare -Ar hosts_ipv4_address=( [ns1.staging.grapheneos.org]=198.98.56.238 [0.ns1.grapheneos.org]=51.161.34.158 [2.ns1.grapheneos.org]=57.129.65.223 + [3.ns1.grapheneos.org]=15.235.197.61 [0.ns2.grapheneos.org]=198.98.53.141 [1.ns2.grapheneos.org]=205.185.124.155 [2.ns2.grapheneos.org]=107.189.3.168 @@ -217,6 +223,7 @@ declare -Ar hosts_ipv6_address=( [ns1.staging.grapheneos.org]=2605:6400:10:c41:de92:c534:326a:711a [0.ns1.grapheneos.org]=2607:5300:205:200::eaa [2.ns1.grapheneos.org]=2001:41d0:701:1100::245b + [3.ns1.grapheneos.org]=2402:1f00:8000:800::3966 [0.ns2.grapheneos.org]=2605:6400:10:102e:95bc:89ef:2e7f:49bb [1.ns2.grapheneos.org]=2605:6400:20:1c8f:a0c9:372d:482e:945b [2.ns2.grapheneos.org]=2605:6400:30:ec25:102c:af6d:5be:1eb8 @@ -242,7 +249,7 @@ declare -Ar hosts_ipv6_address=( readonly hosts_dns=( ns1.staging.grapheneos.org - {0,2}.ns1.grapheneos.org + {0,2,3}.ns1.grapheneos.org {0..2}.ns2.grapheneos.org ) @@ -325,7 +332,7 @@ readonly hosts_buyvm=( ) readonly hosts_ovh=( - {0,2}.ns1.grapheneos.org + {0,2,3}.ns1.grapheneos.org mail.grapheneos.org {0,2,3}.grapheneos.org {0,2,3}.grapheneos.network diff --git a/packages/3.ns1.grapheneos.org b/packages/3.ns1.grapheneos.org new file mode 100644 index 0000000..c9199b2 --- /dev/null +++ b/packages/3.ns1.grapheneos.org @@ -0,0 +1,40 @@ +base +bird +chrony +cloud-guest-utils +conntrack-tools +fish +geoip +geoipupdate +grub +htop +ioping +iperf +libmaxminddb +linux-lts +logrotate +man-db +mmdblookup +moreutils +mtr +neovim +nftables +nginx +nginx-mod-stream +nmap +openssh +pacman-contrib +pacutils +plocate +powerdns +pv +rsync +strace +stress +sysstat +tinyxxd +tree +unbound +xfsprogs +yaml-cpp +zerotier-one