Skip to content
This repository was archived by the owner on Jul 7, 2024. It is now read-only.

mcpt/qrystal

1 Branch0 Tags
This branch is up to date with nyiyui/qrystal:main.

Folders and files

NameName
Last commit message
Last commit date

Latest commit

nyiyuinyiyui
add govulncheck to ci
Oct 6, 2023
9c56c36 · Oct 6, 2023

History

577 Commits
.github/workflows
.github/workflows
Oct 6, 2023
api
api
Aug 31, 2023
central
central
Sep 4, 2023
cert
cert
Dec 30, 2022
cmd
cmd
Aug 31, 2023
config
config
Jul 16, 2023
cs
cs
Oct 3, 2023
csadmin
csadmin
Mar 31, 2023
hokuto
hokuto
Sep 4, 2023
mio
mio
Oct 2, 2023
node
node
Oct 2, 2023
profile
profile
Feb 9, 2023
runner
runner
Jul 13, 2023
util
util
Jul 24, 2023
.envrc
.envrc
Jan 10, 2023
.gitignore
.gitignore
Feb 7, 2023
CHANGELOG.md
CHANGELOG.md
Mar 23, 2023
LICENSE
LICENSE
Sep 22, 2022
Makefile
Makefile
Jul 16, 2023
PKGBUILD
PKGBUILD
Dec 30, 2022
README.md
README.md
Aug 31, 2023
_config.yml
_config.yml
Oct 16, 2022
base64-hex
base64-hex
Jun 24, 2023
config.md
config.md
Jan 1, 2023
cs-backport.md
cs-backport.md
Mar 31, 2023
endpoint-override.md
endpoint-override.md
Jun 27, 2023
flake.lock
flake.lock
Jul 28, 2023
flake.nix
flake.nix
Jul 28, 2023
go.mod
go.mod
Jul 28, 2023
go.sum
go.sum
Jul 28, 2023
nixos-modules.nix
nixos-modules.nix
Sep 2, 2023
notify.py
notify.py
Oct 22, 2022
pkg-generic-inside.sh
pkg-generic-inside.sh
Jan 1, 2023
pkg-generic.sh
pkg-generic.sh
Sep 2, 2023
pkg.sh
pkg.sh
Jun 24, 2023
result
result
Jul 24, 2023
srv.md
srv.md
Sep 2, 2023
test.nix
test.nix
Sep 1, 2023
trace.md
trace.md
Jul 4, 2023

Repository files navigation

Qrystal

Website/Docs / Github.com

Qrystal /kristl/ sets up several WireGuard tunnels between servers. In addition, it provides centralised configuration management. Nodes and tokens can be dynamically added (and removed, in a future version).

Installation

Make sure to open the appropriate ports (defaults listed below):

  • CS: 39252/tcp for Nodes and 39253 for utilities
  • The WireGuard ports for UDP (from the expected peers)

Most Linux distros

$ git clone https://github.com/nyiyui/qrystal
$ cd qrystal
$ mkdir build && cd build
$ make src=.. -f ../Makefile
# make src=.. -f ../Makefile install

Then, enable/start qrystal-runner.service (Node) and/or qrystal-cs.service (CS) (depending on what you want to run).

NixOS

Flakes are recommended. See flake.nix for options.

Installation from Generic Archive

# make pre_install # if Qrystal services are already running
# make src=. install
# systemctl start qrystal-runner # for Node
# systemctl start qrystal-cs # for CS

TODO

  • node: test node backport (in test.nix)
  • confine qrystal-node and qrystal-cs (using systemd's options)
  • configure existing interfaces without disrupting connections (as much as possible)
  • support multiple hosts
    • e.g. specify VPC network IP address first, and then public IP address
    • heuristics for a successful wg connection?
  • test all fails on host cs but after waiting a few hours, host cs works so I'll have to figure that out...
  • if azusa contains configuration for a network that isn't in config.cs.networks, warn about this (possible misconfiguration)
  • SRV records

About

No description, website, or topics provided.

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Go 69.6%
  • Nix 25.6%
  • Shell 2.4%
  • Makefile 1.8%
  • Python 0.6%