#nixos-on-your-router on 2020-11-22

2019-08-19 13:17 eyJhb changed the topic of #nixos-on-your-router to: NixOS on your Router || https://logs.nix.samueldr.com/nixos-on-your-router

01:12 ehmry has quit [Quit: https://quassel-irc.org - Chat comfortably. Anywhere.]

10:59 ehmry has joined #nixos-on-your-router

13:03 ehmry has quit [Read error: Connection reset by peer]

13:07 ehmry has joined #nixos-on-your-router

16:33 ehmry has quit [Quit: https://quassel-irc.org - Chat comfortably. Anywhere.]

16:41 teto has joined #nixos-on-your-router

19:03 WilliButz has quit [Remote host closed the connection]

19:06 WilliButz has joined #nixos-on-your-router

20:22 early has quit [*.net *.split]

20:22 duairc has quit [*.net *.split]

20:22 Kritnich has quit [*.net *.split]

20:25 duairc has joined #nixos-on-your-router

20:25 Kritnich has joined #nixos-on-your-router

20:25 early has joined #nixos-on-your-router

21:10 <sphalerite> andi-: hm, I tried the sysctls you mentioned for stopping the firewall from applying to bridged stuff, but they're set to 1 even though I set them to 0 in the nixos config

21:10 <sphalerite> any idea what might be doing that?

21:11 <sphalerite> manually setting them to 0 does indeed fix the issue

21:11 <andi-> which ones did you set?

21:11 <sphalerite> net.bridge.bridge-nf-call-{ip6,ip,arp}tables

21:13 <andi-> do we have other code that sets them?

21:13 <andi-> or does the userspace set it?

21:14 <sphalerite> not in nixpkgs

21:14 * sphalerite grep -r nf-call $(nix-store -qR /run/current-system)

21:14 <sphalerite> I love nixos

21:15 <sphalerite> Binary file /nix/store/91s309vxhdbnqnvpgfh5if2q8vdj9jd7-docker-19.03.12/libexec/docker/dockerd matches

21:15 <sphalerite> I hate docker

21:15 <sphalerite> Firewall rules it is, then!

21:20 <andi-> hrhr

21:27 <hexa-> don't let docker ruin your day

21:27 <hexa-> switch to podman if you really need docker

21:27 <hexa-> neither support nftables afaik :)

21:32 <flokli> I'm glad systemd is getting support

21:32 <sphalerite> I guess it would be pretty much trivial to switch to podman, since I'm only using docker for one container and am specifying it via virtualisation.oci-containers :)

21:33 <sphalerite> (home assistant…)

21:33 <flokli> sphalerite: do it! :-)

21:33 <hexa-> home-assistant in docker?

21:35 <sphalerite> hexa-: yep. The nixpkgs packaging is… a little flaky IME

21:35 * hexa- sad

21:42 <sphalerite> hexa-: hm, looks like it's seen a bit more love since I last used it… :D

21:42 <hexa-> :p

21:43 <hexa-> managing hass with nix makes it a bit more palatable

21:43 <hexa-> writing functions to abstract away patterns

21:44 <hexa-> i don't think the docker usage has many benefits

21:44 <hexa-> using hass.io would probably have some benefits (like addons), but also disadvantages as its something else :D

21:46 <sphalerite> what I'm liking about running it in docker (haven't been doing so for very long, I was using a debian nspawn where I installed it with pip before that) is that updates are quick and easy to install, and not tied to my system

21:47 <sphalerite> as for add-ons... I'm not sure there are any that I want/need? x)

21:47 <hexa-> pretty sure my parents would like grafana, evcc and other stuff integrated :)

21:48 <hexa-> esphome addon

21:48 <hexa-> personally, I'd like the zigbee2mqtt addon

21:48 <sphalerite> what does that do? I'm using the esphome integration and it's fine

21:48 <sphalerite> zigbee2mqtt I'm running via nixos :p

21:48 <hexa-> tracks all your devices

21:48 <hexa-> gives you an overview

21:49 <hexa-> central management frontend

21:49 <hexa-> with z2m you iirc get a network map

21:49 <hexa-> see packet loss, snr, signal

21:49 <sphalerite> aaah

21:49 <sphalerite> meh :p

21:50 <hexa-> but addons are usually those shitty defined things that install php, drop stuff here and there

21:50 <hexa-> https://github.com/danielwelch/hassio-zigbee2mqtt/blob/master/zigbee2mqtt/config.json

21:50 <sphalerite> I mean, in my hypothetical ideal world https://github.com/NixOS/nixpkgs/pull/96131 is merged and working and I build my ESP firmware based on nix config :p

21:50 <{^_^}> #96131 (by taktoa, 12 weeks ago, open): Add basic support for the ESP32

21:51 <hexa-> in an ideal world I don't have to touch these low level devices :P

21:52 <hexa-> fwiw: running esphome is just fine

21:52 <sphalerite> eh, I really don't like platformio

21:52 <sphalerite> sure it works, but…

21:52 <hexa-> me neither, but it abstracts it away for me

21:52 <hexa-> so that is nice

21:52 <sphalerite> also yaml is a terrible way to program :p

21:53 <hexa-> funny how you call it program

21:53 <colemickens> declarative yaml > everything else I've seen in the space

21:53 <hexa-> sans new-age features of type inference

21:53 <hexa-> or … type interference

21:55 <sphalerite> hexa-: sure it's programming. Just not the fun kind :p

21:56 <colemickens> (imo, of course) Almost the entire time I was using esphome it felt "right" for the type of things that the esp32 chips tend to be used for. It was extremely easy for me to figure out how to help my dad make custom garage door openers and expose a custom sensor/service to home-assistant. I was/am pretty impressed.

21:56 <hexa-> yeah, the protobuf based integration in hass is spot on

21:56 <hexa-> and hellish fast compared to tasmota et al

21:57 <sphalerite> colemickens: I totally agree, it's really good stuff. But it still feels quite unpleasant, especially the automation-writing

21:58 <colemickens> heh, you don't feel great embedding some C fragments into a chunk of yaml?

21:59 <sphalerite> I keep imagining (in a probably unrealistic way) how dhall would be so much nicer for this :p

22:06 <flokli> #nixos-homeautomation ? ;-)

22:07 <hexa-> on your router?

22:07 <flokli> if you want to?

22:12 <hexa-> the question is, what channel would I need to give up for #nixos-homeautomation

22:59 <jasom> sphalerite: you can convert dhall to json and json to nix, so if you really want to ...