diff --git a/flake.nix b/flake.nix index cf0b676..74953b9 100644 --- a/flake.nix +++ b/flake.nix @@ -156,7 +156,7 @@ imports = let ifExists = p: if builtins.pathExists p then p else {}; in [ ./base.nix - "${self}/hosts/${hostname}/configuration.nix" + "${self}/hosts/nixos/${hostname}/configuration.nix" inputs.sops-nix.nixosModules.sops inputs.home-manager.nixosModule #inputs.nix-index-database.nixosModules.nix-index # TODO: fix? diff --git a/hosts/bjarte/configuration.nix b/hosts/bjarte/configuration.nix deleted file mode 100644 index 0641d3e..0000000 --- a/hosts/bjarte/configuration.nix +++ /dev/null @@ -1,57 +0,0 @@ -{ config, pkgs, lib, ... }: -{ - # Bootloader - boot.loader.systemd-boot.enable = true; - boot.loader.efi.canTouchEfiVariables = true; - - #boot.kernel.sysctl."vm.swappiness" = lib.mkDefault 10; # 0-100, commonly 60 - - imports = [ - ./hardware-configuration.nix - ../../profiles/sshd.nix - #../../profiles/no-suspend.nix - ../../profiles/oci/podman.nix - #../../profiles/oci/docker.nix - ../../profiles/oci/distrobox.nix - - ../../users/pbsds - ../../users/pbsds/syncthing.nix - - #../../profiles/mounts/freon-nfs.nix - #../../profiles/mounts/reidun-nfs.nix - #../../profiles/mounts/meconium-nfs.nix - - ../../profiles/shell.nix - - ../../profiles/desktop/base.nix - ../../profiles/desktop/gnome # configures gdm - #../../profiles/desktop/sound/alsa.nix - #../../profiles/desktop/sound/pulseaudio.nix - ../../profiles/desktop/sound/pipewire.nix - - ../../profiles/desktop/steam.nix - #../../profiles/desktop/xboxdrv.nix # TODO: try out - ../../profiles/desktop/lutris.nix - ../../profiles/desktop/flatpak.nix - ../../profiles/desktop/waydroid.nix - - ../../profiles/known-hosts.nix - ]; - - time.timeZone = null; # allows imperative configuring - - networking.firewall.allowedTCPPorts = [ 57621 ]; # spotify local discovery - - # services.irqbalance.enable = true; # different balancer, avoids freezes, god for old laptops - - # Networking - networking.networkmanager.enable = true; - #networking.wireless.enable = true; # Enables wireless support via wpa_supplicant. - #networking.useDHCP = true; - #TODO: avahi? resolved? https://git.pvv.ntnu.no/Drift/pvv-nixos-config/src/main/base.nix#L15-L18 - - services.printing.enable = true; - - # TODO: remove? Move? - programs.dconf.enable = true; -} diff --git a/hosts/asgaut/configuration.nix b/hosts/nixos/asgaut/configuration.nix similarity index 100% rename from hosts/asgaut/configuration.nix rename to hosts/nixos/asgaut/configuration.nix diff --git a/hosts/nixos/bjarte/configuration.nix b/hosts/nixos/bjarte/configuration.nix new file mode 100644 index 0000000..14e7476 --- /dev/null +++ b/hosts/nixos/bjarte/configuration.nix @@ -0,0 +1,57 @@ +{ config, pkgs, lib, ... }: +{ + # Bootloader + boot.loader.systemd-boot.enable = true; + boot.loader.efi.canTouchEfiVariables = true; + + #boot.kernel.sysctl."vm.swappiness" = lib.mkDefault 10; # 0-100, commonly 60 + + imports = [ + ./hardware-configuration.nix + ../../../profiles/sshd.nix + #../../../profiles/no-suspend.nix + ../../../profiles/oci/podman.nix + #../../../profiles/oci/docker.nix + ../../../profiles/oci/distrobox.nix + + ../../../users/pbsds + ../../../users/pbsds/syncthing.nix + + #../../../profiles/mounts/freon-nfs.nix + #../../../profiles/mounts/reidun-nfs.nix + #../../../profiles/mounts/meconium-nfs.nix + + ../../../profiles/shell.nix + + ../../../profiles/desktop/base.nix + ../../../profiles/desktop/gnome # configures gdm + #../../../profiles/desktop/sound/alsa.nix + #../../../profiles/desktop/sound/pulseaudio.nix + ../../../profiles/desktop/sound/pipewire.nix + + ../../../profiles/desktop/steam.nix + #../../../profiles/desktop/xboxdrv.nix # TODO: try out + ../../../profiles/desktop/lutris.nix + ../../../profiles/desktop/flatpak.nix + ../../../profiles/desktop/waydroid.nix + + ../../../profiles/known-hosts.nix + ]; + + time.timeZone = null; # allows imperative configuring + + networking.firewall.allowedTCPPorts = [ 57621 ]; # spotify local discovery + + # services.irqbalance.enable = true; # different balancer, avoids freezes, god for old laptops + + # Networking + networking.networkmanager.enable = true; + #networking.wireless.enable = true; # Enables wireless support via wpa_supplicant. + #networking.useDHCP = true; + #TODO: avahi? resolved? https://git.pvv.ntnu.no/Drift/pvv-nixos-config/src/main/base.nix#L15-L18 + + services.printing.enable = true; + + # TODO: remove? Move? + programs.dconf.enable = true; +} diff --git a/hosts/bjarte/hardware-configuration.nix b/hosts/nixos/bjarte/hardware-configuration.nix similarity index 100% rename from hosts/bjarte/hardware-configuration.nix rename to hosts/nixos/bjarte/hardware-configuration.nix diff --git a/hosts/bolle/configuration.nix b/hosts/nixos/bolle/configuration.nix similarity index 63% rename from hosts/bolle/configuration.nix rename to hosts/nixos/bolle/configuration.nix index a54afae..64ad810 100644 --- a/hosts/bolle/configuration.nix +++ b/hosts/nixos/bolle/configuration.nix @@ -11,18 +11,18 @@ imports = [ ./hardware-configuration.nix - ../../profiles/sshd.nix + ../../../profiles/sshd.nix - ../../users/pbsds - ../../users/daniel - ../../users/eirikwit - ../../users/h7x4 - ../../users/adrlau + ../../../users/pbsds + ../../../users/daniel + ../../../users/eirikwit + ../../../users/h7x4 + ../../../users/adrlau - ../../profiles/shell.nix + ../../../profiles/shell.nix - ../../profiles/domeneshop-dyndns.nix - ../../profiles/known-hosts.nix + ../../../profiles/domeneshop-dyndns.nix + ../../../profiles/known-hosts.nix ]; services.domeneshop-updater.targets = [ config.networking.fqdn ]; diff --git a/hosts/bolle/hardware-configuration.nix b/hosts/nixos/bolle/hardware-configuration.nix similarity index 100% rename from hosts/bolle/hardware-configuration.nix rename to hosts/nixos/bolle/hardware-configuration.nix diff --git a/hosts/brumlebasse/configuration.nix b/hosts/nixos/brumlebasse/configuration.nix similarity index 81% rename from hosts/brumlebasse/configuration.nix rename to hosts/nixos/brumlebasse/configuration.nix index faff1b7..825ce8a 100644 --- a/hosts/brumlebasse/configuration.nix +++ b/hosts/nixos/brumlebasse/configuration.nix @@ -12,14 +12,14 @@ imports = [ #./hardware-configuration.nix - ../../profiles/sshd.nix + ../../../profiles/sshd.nix - ../../users/pbsds + ../../../users/pbsds - ../../profiles/shell.nix + ../../../profiles/shell.nix - #../../profiles/domeneshop-dyndns.nix - ../../profiles/known-hosts.nix + #../../../profiles/domeneshop-dyndns.nix + ../../../profiles/known-hosts.nix ]; #services.domeneshop-updater.targets = [ config.networking.fqdn ]; diff --git a/hosts/eple/configuration.nix b/hosts/nixos/eple/configuration.nix similarity index 71% rename from hosts/eple/configuration.nix rename to hosts/nixos/eple/configuration.nix index c818465..d5b3dff 100644 --- a/hosts/eple/configuration.nix +++ b/hosts/nixos/eple/configuration.nix @@ -13,17 +13,17 @@ imports = [ ./hardware-configuration.nix - ../../profiles/sshd.nix + ../../../profiles/sshd.nix - ../../users/pbsds - ../../users/bartvbl + ../../../users/pbsds + ../../../users/bartvbl - ../../profiles/mounts/panorama-zfs.nix + ../../../profiles/mounts/panorama-zfs.nix - ../../profiles/shell.nix + ../../../profiles/shell.nix - ../../profiles/domeneshop-dyndns.nix - ../../profiles/known-hosts.nix + ../../../profiles/domeneshop-dyndns.nix + ../../../profiles/known-hosts.nix ]; services.domeneshop-updater.targets = [ config.networking.fqdn ]; diff --git a/hosts/eple/hardware-configuration.nix b/hosts/nixos/eple/hardware-configuration.nix similarity index 100% rename from hosts/eple/hardware-configuration.nix rename to hosts/nixos/eple/hardware-configuration.nix diff --git a/hosts/garp/configuration.nix b/hosts/nixos/garp/configuration.nix similarity index 67% rename from hosts/garp/configuration.nix rename to hosts/nixos/garp/configuration.nix index 739515e..02b1fab 100644 --- a/hosts/garp/configuration.nix +++ b/hosts/nixos/garp/configuration.nix @@ -26,27 +26,27 @@ imports = [ ./hardware-configuration.nix - ../../profiles/sshd.nix - #../../profiles/no-suspend.nix - #../../profiles/oci/podman.nix - ../../profiles/oci/docker.nix + ../../../profiles/sshd.nix + #../../../profiles/no-suspend.nix + #../../../profiles/oci/podman.nix + ../../../profiles/oci/docker.nix - ../../users/pbsds - ../../users/daniel - ../../users/eirikwit - ../../users/h7x4 - ../../users/adrlau + ../../../users/pbsds + ../../../users/daniel + ../../../users/eirikwit + ../../../users/h7x4 + ../../../users/adrlau - ../../profiles/shell.nix + ../../../profiles/shell.nix - #../../profiles/desktop/base.nix - #../../profiles/desktop/gnome # configures gdm - ##../../profiles/desktop/sound/alsa.nix - ##../../profiles/desktop/sound/pulseaudio.nix - #../../profiles/desktop/sound/pipewire.nix + #../../../profiles/desktop/base.nix + #../../../profiles/desktop/gnome # configures gdm + ##../../../profiles/desktop/sound/alsa.nix + ##../../../profiles/desktop/sound/pulseaudio.nix + #../../../profiles/desktop/sound/pipewire.nix - ../../profiles/domeneshop-dyndns.nix - ../../profiles/known-hosts.nix + ../../../profiles/domeneshop-dyndns.nix + ../../../profiles/known-hosts.nix ]; services.domeneshop-updater.targets = [ config.networking.fqdn ]; diff --git a/hosts/garp/hardware-configuration.nix b/hosts/nixos/garp/hardware-configuration.nix similarity index 100% rename from hosts/garp/hardware-configuration.nix rename to hosts/nixos/garp/hardware-configuration.nix diff --git a/hosts/hasselknippe/configuration.nix b/hosts/nixos/hasselknippe/configuration.nix similarity index 51% rename from hosts/hasselknippe/configuration.nix rename to hosts/nixos/hasselknippe/configuration.nix index 78ab956..f6ee85e 100644 --- a/hosts/hasselknippe/configuration.nix +++ b/hosts/nixos/hasselknippe/configuration.nix @@ -12,28 +12,28 @@ imports = [ #./hardware-configuration.nix - ../../profiles/auto-upgrade.nix - ../../profiles/upgrade-diff.nix - #../../profiles/sshd.nix - #../../profiles/no-suspend.nix + ../../../profiles/auto-upgrade.nix + ../../../profiles/upgrade-diff.nix + #../../../profiles/sshd.nix + #../../../profiles/no-suspend.nix - ../../users/pbsds + ../../../users/pbsds - #../../profiles/mounts/freon-nfs.nix - #../../profiles/mounts/reidun-nfs.nix - #../../profiles/mounts/meconium-nfs.nix + #../../../profiles/mounts/freon-nfs.nix + #../../../profiles/mounts/reidun-nfs.nix + #../../../profiles/mounts/meconium-nfs.nix - ../../profiles/shell.nix + ../../../profiles/shell.nix - ../../profiles/desktop/base.nix - ../../profiles/desktop/gnome # configures gdm - ../../profiles/desktop/sound/pipewire.nix + ../../../profiles/desktop/base.nix + ../../../profiles/desktop/gnome # configures gdm + ../../../profiles/desktop/sound/pipewire.nix - #../../profiles/desktop/steam.nix - #../../profiles/desktop/lutris.nix - #../../profiles/desktop/flatpak.nix + #../../../profiles/desktop/steam.nix + #../../../profiles/desktop/lutris.nix + #../../../profiles/desktop/flatpak.nix - ../../profiles/known-hosts.nix + ../../../profiles/known-hosts.nix ]; networking.firewall.allowedTCPPorts = [ 57621 ]; # spotify local discovery diff --git a/hosts/nord/configuration.nix b/hosts/nixos/nord/configuration.nix similarity index 64% rename from hosts/nord/configuration.nix rename to hosts/nixos/nord/configuration.nix index 720d4aa..6c453b9 100644 --- a/hosts/nord/configuration.nix +++ b/hosts/nixos/nord/configuration.nix @@ -15,33 +15,33 @@ imports = [ ./hardware-configuration.nix - ../../profiles/sshd.nix - #../../profiles/oci/podman.nix - #../../profiles/oci/docker.nix + ../../../profiles/sshd.nix + #../../../profiles/oci/podman.nix + #../../../profiles/oci/docker.nix - #../../profiles/vpn-pbsds/tailscale.nix + #../../../profiles/vpn-pbsds/tailscale.nix - ../../users/pbsds - ../../users/pbsds/syncthing.nix + ../../../users/pbsds + ../../../users/pbsds/syncthing.nix - ../../profiles/mounts/freon-nfs.nix - ../../profiles/mounts/reidun-nfs.nix - ../../profiles/mounts/meconium-nfs.nix - /* ../../profiles/mounts/fridge-nfs.nix */ + ../../../profiles/mounts/freon-nfs.nix + ../../../profiles/mounts/reidun-nfs.nix + ../../../profiles/mounts/meconium-nfs.nix + /* ../../../profiles/mounts/fridge-nfs.nix */ - ../../profiles/shell.nix + ../../../profiles/shell.nix - ../../profiles/desktop/base.nix - ../../profiles/desktop/gnome # configures gdm - #../../profiles/desktop/sound/alsa.nix - #../../profiles/desktop/sound/pulseaudio.nix - ../../profiles/desktop/sound/pipewire.nix + ../../../profiles/desktop/base.nix + ../../../profiles/desktop/gnome # configures gdm + #../../../profiles/desktop/sound/alsa.nix + #../../../profiles/desktop/sound/pulseaudio.nix + ../../../profiles/desktop/sound/pipewire.nix - ../../profiles/desktop/steam.nix - ../../profiles/desktop/flatpak.nix + ../../../profiles/desktop/steam.nix + ../../../profiles/desktop/flatpak.nix - ../../profiles/known-hosts.nix - #../../profiles/domeneshop-dyndns.nix # handled by noximilien + ../../../profiles/known-hosts.nix + #../../../profiles/domeneshop-dyndns.nix # handled by noximilien ]; nix.settings.max-jobs = 1; # this host do be stinky diff --git a/hosts/nord/hardware-configuration.nix b/hosts/nixos/nord/hardware-configuration.nix similarity index 100% rename from hosts/nord/hardware-configuration.nix rename to hosts/nixos/nord/hardware-configuration.nix diff --git a/hosts/nixos/noximilien/configuration.nix b/hosts/nixos/noximilien/configuration.nix new file mode 100644 index 0000000..697a7e8 --- /dev/null +++ b/hosts/nixos/noximilien/configuration.nix @@ -0,0 +1,142 @@ +{ config, pkgs, lib, ... }: +{ + # Bootloader + boot.loader.grub.enable = true; + boot.loader.grub.device = "/dev/sda"; + boot.loader.grub.useOSProber = true; + imports = [ + ./hardware-configuration.nix + ../../../profiles/sshd.nix + #../../../profiles/oci/podman.nix + + #./yt-dlp-archive.nix + + #../../../profiles/vpn-pbsds/headscale.nix # opens port 3478 # TODO: move outside of home net? + + ../../../users/pbsds + ../../../users/jornane + + ../../../profiles/mounts/freon-nfs.nix + ../../../profiles/mounts/reidun-nfs.nix + ../../../profiles/mounts/meconium-zfs.nix + #../../../profiles/mounts/fridge-nfs.nix # TODO: fix + + ../../../profiles/shell.nix + + #../../../profiles/services/tmate-server.nix # opens port 42244 # TODO: move outside of home net + + ../../../profiles/http # enables nginx+acme, defines mkDomain + ../../../profiles/http/index + ../../../profiles/http/services/cinny.nix + ../../../profiles/http/services/element.nix + ../../../profiles/http/services/flexget.nix + #../../../profiles/http/services/gitea.nix + #../../../profiles/http/services/hydra.nix + ../../../profiles/http/services/invidious.nix + #../../../profiles/http/services/rss-bridge.nix # TODO: move out of home net + #../../../profiles/http/services/jellyfin.nix + ../../../profiles/http/services/plex.nix + #../../../profiles/http/services/tautulli.nix # will run a first-time-setup where admin account is made + ../../../profiles/http/services/libreddit.nix + #../../../profiles/http/services/mattermost.nix + #../../../profiles/http/services/navidrome.nix + #../../../profiles/http/services/netdata.nix # put behind firewall + #../../../profiles/http/services/nitter.nix + #../../../profiles/http/services/ntopng.nix + #../../../profiles/http/services/microbin.nix # TODO: move out of home net + #../../../profiles/http/services/owncast.nix + #../../../profiles/http/services/paperless.nix + ../../../profiles/http/services/polaris.nix + #../../../profiles/http/services/resilio.nix + ../../../profiles/http/services/roundcube.nix + #../../../profiles/http/services/snappymail.nix # WIP + ../../../profiles/http/services/thelounge.nix + ../../../profiles/http/services/vaultwarden.nix + ../../../profiles/http/services/webdav-zotero.nix + #../../../profiles/http/services/garage/gunktrunk.nix + #../../../profiles/http/services/convos.nix + #../../../profiles/http/services/cryptpad.nix + #../../../profiles/http/services/galene.nix + #../../../profiles/http/services/graphana.nix + #../../../profiles/http/services/hedgedoc.nix # TODO: move out of home net + #../../../profiles/http/services/home-assistant.nix + #../../../profiles/http/services/jitsi-meet.nix + #../../../profiles/http/services/kukkee + #../../../profiles/http/services/matrix-synapse.nix + #../../../profiles/http/services/shlink.nix + #../../../profiles/http/services/sourcegraph.nix + #../../../profiles/http/services/censordodge.nix + #../../../profiles/http/services/openspeedtest.nix + + /**/ + # TODO: move to brumle + ../../../profiles/http/docs + ../../../profiles/http/docs/pdoc.nix + ../../../profiles/http/docs/python-docs.nix + #../../../profiles/http/docs/nixpkgs.nix # TODO: fix + ../../../profiles/http/docs/home-manager.nix + #../../../profiles/http/docs/linux-docs.nix # TODO: fix + ../../../profiles/http/docs/programs.nix + ../../../profiles/http/docs/yagcd.nix + /**/ + + # TODO: make flake inputs + #../../../profiles/http/sites/linktree-pbsds.nix # github bby!! TODO: remove + ../../../profiles/http/sites/refleksjon-no.nix + ../../../profiles/http/sites/roroslyd-no.nix + ../../../profiles/http/sites/kuklefse.nix + + #../../../profiles/http/services/trivial-gradios + + #../../../profiles/code-remote # TODO: move into web? services? + ../../../profiles/domeneshop-dyndns.nix + ../../../profiles/known-hosts.nix + /* ../../../profiles/autossh-reverse-tunnels */ + #../../../profiles/xrdp + ]; + services.domeneshop-updater.targets = [ + #"pbsds.net" # github bby!! TODO: remove + "olavtr.pbsds.net" + "kuklef.se" + ]; + + nix.settings.max-jobs = 1; # this host do be stinky + + networking.hostId = "e1ffd469"; # needed for zfs: head -c 8 /etc/machine-id + + #networking.wireguard.interfaces."wg0".ips = [ "172.22.48.3/24" ]; # fyrkat + + sops.secrets.flexget.sopsFile = ../../../secrets/${config.networking.hostName}.yaml; + + # TODO: remove? Move to where relevant? + nixpkgs.overlays = [ + /** / + (final: prev: { + mapcrafter = prev.callPackage /home/pbsds/repos/nixpkgs-mapcrafter/pkgs/tools/games/minecraft/mapcrafter/default.nix { }; + mapcrafter-world112 = prev.callPackage /home/pbsds/repos/nixpkgs-mapcrafter/pkgs/tools/games/minecraft/mapcrafter/default.nix { world="world112"; }; + }) + /**/ + ]; + + # Networking + networking.networkmanager.enable = true; + #networking.wireless.enable = true; # Enables wireless support via wpa_supplicant. + #networking.iwd.enable = true # # alternative wireless backend, doesn't support eduroam + networking.interfaces.eno1.ipv4.addresses = [ + { address = "192.168.1.9"; prefixLength = 24; } + ]; + networking.nameservers = [ + "192.168.1.254" + "8.8.8.8" + "1.1.1.1" + ]; + networking.defaultGateway = { + address = "192.168.1.254"; + interface = "eno1"; + }; + #networking.useDHCP = true; + #TODO: avahi? resolved? https://git.pvv.ntnu.no/Drift/pvv-nixos-config/src/main/base.nix#L15-L18 + + # TODO: remove? Move? + programs.dconf.enable = true; +} diff --git a/hosts/noximilien/hardware-configuration.nix b/hosts/nixos/noximilien/hardware-configuration.nix similarity index 100% rename from hosts/noximilien/hardware-configuration.nix rename to hosts/nixos/noximilien/hardware-configuration.nix diff --git a/hosts/noximilien/yt-dlp-archive.nix b/hosts/nixos/noximilien/yt-dlp-archive.nix similarity index 100% rename from hosts/noximilien/yt-dlp-archive.nix rename to hosts/nixos/noximilien/yt-dlp-archive.nix diff --git a/hosts/sopp/configuration.nix b/hosts/nixos/sopp/configuration.nix similarity index 74% rename from hosts/sopp/configuration.nix rename to hosts/nixos/sopp/configuration.nix index d799a75..b995621 100644 --- a/hosts/sopp/configuration.nix +++ b/hosts/nixos/sopp/configuration.nix @@ -23,34 +23,34 @@ imports = [ ./hardware-configuration.nix - ../../profiles/sshd.nix - ../../profiles/no-suspend.nix - #../../profiles/oci/podman.nix - ../../profiles/oci/docker.nix - ../../profiles/oci/distrobox.nix + ../../../profiles/sshd.nix + ../../../profiles/no-suspend.nix + #../../../profiles/oci/podman.nix + ../../../profiles/oci/docker.nix + ../../../profiles/oci/distrobox.nix - ../../users/pbsds - ../../users/pbsds/syncthing.nix + ../../../users/pbsds + ../../../users/pbsds/syncthing.nix - ../../profiles/mounts/freon-nfs.nix - ../../profiles/mounts/reidun-nfs.nix - ../../profiles/mounts/meconium-nfs.nix + ../../../profiles/mounts/freon-nfs.nix + ../../../profiles/mounts/reidun-nfs.nix + ../../../profiles/mounts/meconium-nfs.nix - ../../profiles/shell.nix + ../../../profiles/shell.nix - ../../profiles/desktop/base.nix - ../../profiles/desktop/gnome # configures gdm - #../../profiles/desktop/sound/alsa.nix - #../../profiles/desktop/sound/pulseaudio.nix - ../../profiles/desktop/sound/pipewire.nix + ../../../profiles/desktop/base.nix + ../../../profiles/desktop/gnome # configures gdm + #../../../profiles/desktop/sound/alsa.nix + #../../../profiles/desktop/sound/pulseaudio.nix + ../../../profiles/desktop/sound/pipewire.nix - ../../profiles/desktop/steam.nix - #../../profiles/desktop/xboxdrv.nix # TODO: try out - ../../profiles/desktop/lutris.nix - ../../profiles/desktop/flatpak.nix + ../../../profiles/desktop/steam.nix + #../../../profiles/desktop/xboxdrv.nix # TODO: try out + ../../../profiles/desktop/lutris.nix + ../../../profiles/desktop/flatpak.nix - ../../profiles/known-hosts.nix - #../../profiles/domeneshop-dyndns.nix # handled by noximilien + ../../../profiles/known-hosts.nix + #../../../profiles/domeneshop-dyndns.nix # handled by noximilien ]; networking.firewall.allowedTCPPorts = [ 57621 ]; # spotify local discovery diff --git a/hosts/sopp/hardware-configuration.nix b/hosts/nixos/sopp/hardware-configuration.nix similarity index 100% rename from hosts/sopp/hardware-configuration.nix rename to hosts/nixos/sopp/hardware-configuration.nix diff --git a/hosts/noximilien/configuration.nix b/hosts/noximilien/configuration.nix deleted file mode 100644 index 45d53e3..0000000 --- a/hosts/noximilien/configuration.nix +++ /dev/null @@ -1,142 +0,0 @@ -{ config, pkgs, lib, ... }: -{ - # Bootloader - boot.loader.grub.enable = true; - boot.loader.grub.device = "/dev/sda"; - boot.loader.grub.useOSProber = true; - imports = [ - ./hardware-configuration.nix - ../../profiles/sshd.nix - #../../profiles/oci/podman.nix - - #./yt-dlp-archive.nix - - #../../profiles/vpn-pbsds/headscale.nix # opens port 3478 # TODO: move outside of home net? - - ../../users/pbsds - ../../users/jornane - - ../../profiles/mounts/freon-nfs.nix - ../../profiles/mounts/reidun-nfs.nix - ../../profiles/mounts/meconium-zfs.nix - #../../profiles/mounts/fridge-nfs.nix # TODO: fix - - ../../profiles/shell.nix - - #../../profiles/services/tmate-server.nix # opens port 42244 # TODO: move outside of home net - - ../../profiles/http # enables nginx+acme, defines mkDomain - ../../profiles/http/index - ../../profiles/http/services/cinny.nix - ../../profiles/http/services/element.nix - ../../profiles/http/services/flexget.nix - #../../profiles/http/services/gitea.nix - #../../profiles/http/services/hydra.nix - ../../profiles/http/services/invidious.nix - #../../profiles/http/services/rss-bridge.nix # TODO: move out of home net - #../../profiles/http/services/jellyfin.nix - ../../profiles/http/services/plex.nix - #../../profiles/http/services/tautulli.nix # will run a first-time-setup where admin account is made - ../../profiles/http/services/libreddit.nix - #../../profiles/http/services/mattermost.nix - #../../profiles/http/services/navidrome.nix - #../../profiles/http/services/netdata.nix # put behind firewall - #../../profiles/http/services/nitter.nix - #../../profiles/http/services/ntopng.nix - #../../profiles/http/services/microbin.nix # TODO: move out of home net - #../../profiles/http/services/owncast.nix - #../../profiles/http/services/paperless.nix - ../../profiles/http/services/polaris.nix - #../../profiles/http/services/resilio.nix - ../../profiles/http/services/roundcube.nix - #../../profiles/http/services/snappymail.nix # WIP - ../../profiles/http/services/thelounge.nix - ../../profiles/http/services/vaultwarden.nix - ../../profiles/http/services/webdav-zotero.nix - #../../profiles/http/services/garage/gunktrunk.nix - #../../profiles/http/services/convos.nix - #../../profiles/http/services/cryptpad.nix - #../../profiles/http/services/galene.nix - #../../profiles/http/services/graphana.nix - #../../profiles/http/services/hedgedoc.nix # TODO: move out of home net - #../../profiles/http/services/home-assistant.nix - #../../profiles/http/services/jitsi-meet.nix - #../../profiles/http/services/kukkee - #../../profiles/http/services/matrix-synapse.nix - #../../profiles/http/services/shlink.nix - #../../profiles/http/services/sourcegraph.nix - #../../profiles/http/services/censordodge.nix - #../../profiles/http/services/openspeedtest.nix - - /**/ - # TODO: move to brumle - ../../profiles/http/docs - ../../profiles/http/docs/pdoc.nix - ../../profiles/http/docs/python-docs.nix - #../../profiles/http/docs/nixpkgs.nix # TODO: fix - ../../profiles/http/docs/home-manager.nix - #../../profiles/http/docs/linux-docs.nix # TODO: fix - ../../profiles/http/docs/programs.nix - ../../profiles/http/docs/yagcd.nix - /**/ - - # TODO: make flake inputs - #../../profiles/http/sites/linktree-pbsds.nix # github bby!! TODO: remove - ../../profiles/http/sites/refleksjon-no.nix - ../../profiles/http/sites/roroslyd-no.nix - ../../profiles/http/sites/kuklefse.nix - - #../../profiles/http/services/trivial-gradios - - #../../profiles/code-remote # TODO: move into web? services? - ../../profiles/domeneshop-dyndns.nix - ../../profiles/known-hosts.nix - /* ../../profiles/autossh-reverse-tunnels */ - #../../profiles/xrdp - ]; - services.domeneshop-updater.targets = [ - #"pbsds.net" # github bby!! TODO: remove - "olavtr.pbsds.net" - "kuklef.se" - ]; - - nix.settings.max-jobs = 1; # this host do be stinky - - networking.hostId = "e1ffd469"; # needed for zfs: head -c 8 /etc/machine-id - - #networking.wireguard.interfaces."wg0".ips = [ "172.22.48.3/24" ]; # fyrkat - - sops.secrets.flexget.sopsFile = ../../secrets/${config.networking.hostName}.yaml; - - # TODO: remove? Move to where relevant? - nixpkgs.overlays = [ - /** / - (final: prev: { - mapcrafter = prev.callPackage /home/pbsds/repos/nixpkgs-mapcrafter/pkgs/tools/games/minecraft/mapcrafter/default.nix { }; - mapcrafter-world112 = prev.callPackage /home/pbsds/repos/nixpkgs-mapcrafter/pkgs/tools/games/minecraft/mapcrafter/default.nix { world="world112"; }; - }) - /**/ - ]; - - # Networking - networking.networkmanager.enable = true; - #networking.wireless.enable = true; # Enables wireless support via wpa_supplicant. - #networking.iwd.enable = true # # alternative wireless backend, doesn't support eduroam - networking.interfaces.eno1.ipv4.addresses = [ - { address = "192.168.1.9"; prefixLength = 24; } - ]; - networking.nameservers = [ - "192.168.1.254" - "8.8.8.8" - "1.1.1.1" - ]; - networking.defaultGateway = { - address = "192.168.1.254"; - interface = "eno1"; - }; - #networking.useDHCP = true; - #TODO: avahi? resolved? https://git.pvv.ntnu.no/Drift/pvv-nixos-config/src/main/base.nix#L15-L18 - - # TODO: remove? Move? - programs.dconf.enable = true; -}