Like said in my NixOS post Erebos is the name of my server configuration. It's running every services I need and it's easily expandable. A true pleasure to work on.
Everything is declarative appart from the Tailscale login. I did not find anything to properly get around that.
For this I'm using
- Home-Manager - Dotfiles configuration
- Disko - Declarative disk partitioning
- Agenix - Secrets encryption
- NixOS Modules - Common configuration between all of my systems
- Blog Builder - Easily build and deploy an Obsidian vault as a static website.
This configuration is made so that it can only be managed by Hades / root. So home-manager is manageable only by hades / root.
It is now at 98% done ! I know for a fact that a nice 100% is not realistic. But I've got something more than usable. The only critical thing for now is the monitoring part. I've deployed grafana and prometheus but I've no alerting running and a poor log analyzer. Need to properly configure that !
TODO:
- Monitoring
- Backups
- Auto Podman image updates