diff options
author | Silas Schöffel <sils@sils.li> | 2025-01-04 20:09:28 +0100 |
---|---|---|
committer | Silas Schöffel <sils@sils.li> | 2025-01-04 20:11:38 +0100 |
commit | 2c4c5494327324490ca0859fe65fbcbf3ece7e0f (patch) | |
tree | 838e46de041f93fa91a906b6be60b98a14eccb18 /hosts/by-name/server3 | |
parent | feat(pkgs/back): add comments to rss feed (diff) | |
download | nixos-server-2c4c5494327324490ca0859fe65fbcbf3ece7e0f.zip |
Diffstat (limited to 'hosts/by-name/server3')
-rw-r--r-- | hosts/by-name/server3/configuration.nix | 26 | ||||
-rw-r--r-- | hosts/by-name/server3/hardware.nix | 15 | ||||
-rw-r--r-- | hosts/by-name/server3/networking.nix | 54 |
3 files changed, 95 insertions, 0 deletions
diff --git a/hosts/by-name/server3/configuration.nix b/hosts/by-name/server3/configuration.nix new file mode 100644 index 0000000..24b66e4 --- /dev/null +++ b/hosts/by-name/server3/configuration.nix @@ -0,0 +1,26 @@ +{config, ...}: { + imports = [ + ./networking.nix # network configuration that just works + ./hardware.nix + ]; + + vhack = { + fail2ban.enable = true; + openssh.enable = true; + persist = { + enable = true; + directories = [ + "/var/log" + ]; + }; + rust-motd.enable = true; + users.enable = true; + }; + + boot.tmp.cleanOnBoot = true; + zramSwap.enable = true; + networking.hostName = "server3"; + networking.domain = "vhack.eu"; + + system.stateVersion = "24.11"; +} diff --git a/hosts/by-name/server3/hardware.nix b/hosts/by-name/server3/hardware.nix new file mode 100644 index 0000000..a6e4e40 --- /dev/null +++ b/hosts/by-name/server3/hardware.nix @@ -0,0 +1,15 @@ +{modulesPath, ...}: { + imports = [ + (modulesPath + "/profiles/qemu-guest.nix") + (modulesPath + "/profiles/headless.nix") + ]; + + vhack.disko = { + enable = true; + # FIXME: Find a better way to specify the disk + disk = "/dev/vda"; + }; + + boot.initrd.availableKernelModules = ["ata_piix" "uhci_hcd" "virtio_pci" "sr_mod" "virtio_blk"]; + nixpkgs.hostPlatform = "x86_64-linux"; +} diff --git a/hosts/by-name/server3/networking.nix b/hosts/by-name/server3/networking.nix new file mode 100644 index 0000000..9f4eb27 --- /dev/null +++ b/hosts/by-name/server3/networking.nix @@ -0,0 +1,54 @@ +{lib, ...}: { + # This file was populated at runtime with the networking + # details gathered from the active system. + networking = { + nameservers = [ + "46.38.225.230" + "46.38.252.230" + "2a03:4000:0:1::e1e6" + ]; + defaultGateway = "92.60.36.1"; + defaultGateway6 = { + address = "fe80::1"; + interface = "eth0"; + }; + dhcpcd.enable = false; + usePredictableInterfaceNames = lib.mkForce false; + interfaces = { + eth0 = { + ipv4.addresses = [ + { + address = "92.60.38.179"; + prefixLength = 22; + } + ]; + ipv6.addresses = [ + { + address = "2a03:4000:33:25b::4f4e"; + prefixLength = 64; + } + { + address = "fe80::98ed:a0ff:fecb:ea48"; + prefixLength = 64; + } + ]; + ipv4.routes = [ + { + address = "92.60.36.1"; + prefixLength = 32; + } + ]; + ipv6.routes = [ + { + address = "fe80::1"; + prefixLength = 128; + } + ]; + }; + }; + }; + services.udev.extraRules = '' + ATTR{address}=="9a:ed:a0:cb:ea:48", NAME="eth0" + + ''; +} |