diff options
| author | polwex <polwex@sortug.com> | 2024-07-21 01:09:48 +0700 |
|---|---|---|
| committer | polwex <polwex@sortug.com> | 2024-07-21 01:09:48 +0700 |
| commit | 78907aa98c1af8624a62ca123d088c6c16424f41 (patch) | |
| tree | 477fe923810522acc211b7514e4931af80f33ed7 /hosts/cloud/jeet/configuration.nix | |
init
Diffstat (limited to 'hosts/cloud/jeet/configuration.nix')
| -rw-r--r-- | hosts/cloud/jeet/configuration.nix | 75 |
1 files changed, 75 insertions, 0 deletions
diff --git a/hosts/cloud/jeet/configuration.nix b/hosts/cloud/jeet/configuration.nix new file mode 100644 index 0000000..1d470e2 --- /dev/null +++ b/hosts/cloud/jeet/configuration.nix @@ -0,0 +1,75 @@ +{ modulesPath, pkgs, ... }: +{ + imports = [ + (modulesPath + "/installer/scan/not-detected.nix") + ./disk-config.nix + ./hardware-configuration.nix + ]; + + boot.loader.grub.enable = true; + # enable flakes + nix = { + package = pkgs.nixFlakes; + extraOptions = '' + experimental-features = nix-command flakes + ''; + settings = { + keep-outputs = true; + keep-derivations = true; + }; + }; + + services.openssh = { + enable = true; + passwordAuthentication = false; + # ports = [5522]; + }; + services.do-agent.enable = true; + networking = { + firewall.enable = false; + hostName = "yn-ind"; # use Digital Ocean metadata server + networkmanager.enable = true; + useDHCP = false; + interfaces.eth0.ipv4.addresses = [ + {address = "93.127.194.223"; prefixLength = 32;} + ]; + interfaces.eth0.ipv6.addresses = [ + {address = "2a02:4780:12:413b::1"; prefixLength = 64;} + ]; + defaultGateway = { + address = "169.254.0.1"; + interface = "eth0"; + }; + defaultGateway6 = { + address = "fe80:1"; + interface = "eth0"; + }; + interfaces.ens18.ipv4.addresses = [ + {address = "93.127.194.223"; prefixLength = 32;} + ]; + interfaces.ens18.ipv6.addresses = [ + {address = "2a02:4780:12:413b::1"; prefixLength = 64;} + ]; + # defaultGateway = { + # address = "169.254.0.1"; + # interface = "ens18"; + # }; + # defaultGateway6 = { + # address = "fe80:1"; + # interface = "ens18"; + # }; + nameservers = [ + "217.21.86.10" + "8.8.4.4" + "1.1.1.1" + ]; + }; + + users.users.root.openssh.authorizedKeys.keys = + [ "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIM+qXhCHNrSZmy4HEXaFn6xAp1w2GzQBMOfVdbR3E81Q cloudboxes" ]; + # networking.firewall = { + # enable = true; + # allowedTCPPorts = [ 993 465 40308 80 443 53 51820 5522 ]; + # allowedUDPPorts = [ 993 465 40308 80 443 53 50000 50001 50002 50003 50004 50005 50006 50007 50008 50009 50010 51820 5522 ]; + # }; +} |