felixalb/nixos-config
1
0
Fork 0
Code Issues Pull Requests 1 Projects Releases Wiki Activity

nixos-26.05 #7

Open
felixalb wants to merge 8 commits from nixos-26.05 into main
pull from: nixos-26.05
merge into: felixalb:main
Conversation 0 Commits 8 Files Changed 18
+27 -16
6 changed files with 27 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit f474909415 - Show all commits
hosts/defiant/filesystems.nix
+5 -1
View File
@@ -3,7 +3,11 @@
# Boot drives are defined in ./hardware-configuration.nix # Boot drives are defined in ./hardware-configuration.nix
boot = { boot = {
zfs.extraPools = [ "tank" ]; zfs = {
extraPools = [ "tank" ];
forceImportRoot = false;
};
supportedFilesystems = [ "zfs" ]; supportedFilesystems = [ "zfs" ];
}; };
services.prometheus.exporters.zfs.enable = true; services.prometheus.exporters.zfs.enable = true;
hosts/defiant/libvirt.nix
+1
View File
@@ -11,6 +11,7 @@
fileSystems."/var/lib/libvirt/images" = { fileSystems."/var/lib/libvirt/images" = {
device = "/tank/iso"; device = "/tank/iso";
options = [ "bind" ]; options = [ "bind" ];
fsType = "auto";
}; };
# On a gui-enabled machine, connect with: # On a gui-enabled machine, connect with:
hosts/defiant/services/monitoring/grafana.nix
+9 -4
View File
@@ -9,10 +9,15 @@ in {
# TODO: Migrate sqlite to postgres # TODO: Migrate sqlite to postgres
settings.server = { settings = {
domain = "grafana.home.feal.no"; server = {
http_port = 2342; domain = "grafana.home.feal.no";
http_addr = "127.0.0.1"; http_port = 2342;
http_addr = "127.0.0.1";
};
security = {
secret_key = "SW2YcwTIb9zpOOhoPsMm"; # TODO - Rotate
};
}; };
provision = { provision = {
hosts/defiant/services/monitoring/snmp-exporter.nix
+9 -8
View File
@@ -1,12 +1,13 @@
{ config, pkgs, ... }: { config, pkgs, ... }:
{ {
services.prometheus.exporters.snmp = { # TODO - Fix. Broken in 26.05
enable = true; # services.prometheus.exporters.snmp = {
configurationPath = ./snmp-exporter-conf.yml; # enable = true;
# snmp.yml is built from # configurationPath = ./snmp-exporter-conf.yml;
# https://github.com/prometheus/snmp_exporter/blob/main/snmp.yml # # snmp.yml is built from
# and # # https://github.com/prometheus/snmp_exporter/blob/main/snmp.yml
# https://global.download.synology.com/download/Document/Software/DeveloperGuide/Firmware/DSM/All/enu/Synology_DiskStation_MIB_Guide.pdf # # and
}; # # https://global.download.synology.com/download/Document/Software/DeveloperGuide/Firmware/DSM/All/enu/Synology_DiskStation_MIB_Guide.pdf
# };
} }
hosts/defiant/services/pihole.nix
+1 -1
View File
@@ -4,7 +4,7 @@ let
dnsHost = "192.168.10.175"; dnsHost = "192.168.10.175";
webuiListen = "127.0.1.2:5053"; webuiListen = "127.0.1.2:5053";
in { in {
# Flame - Homelab dashboard/linktree # Pihole - Ad-blocking DNS recursor and authoritative DNS/DHCP
virtualisation.oci-containers.containers = { virtualisation.oci-containers.containers = {
pihole = { pihole = {
image = "pihole/pihole"; image = "pihole/pihole";
hosts/defiant/services/wireguard.nix
+2 -2
View File
@@ -16,10 +16,10 @@ in {
privateKeyFile = "/etc/wireguard/defiant.private"; privateKeyFile = "/etc/wireguard/defiant.private";
postSetup = '' postSetup = ''
${pkgs.iptables}/bin/iptables -t nat -A POSTROUTING -s 10.100.0.0/24 -d 192.168.10.0/24 -o eth0 -j MASQUERADE ${pkgs.iptables}/bin/iptables -t nat -A POSTROUTING -s 10.100.0.0/24 -d 192.168.10.0/24 -o enp3s0 -j MASQUERADE
''; '';
postShutdown = '' postShutdown = ''
${pkgs.iptables}/bin/iptables -t nat -D POSTROUTING -s 10.100.0.0/24 -d 192.168.10.0/24 -o eth0 -j MASQUERADE ${pkgs.iptables}/bin/iptables -t nat -D POSTROUTING -s 10.100.0.0/24 -d 192.168.10.0/24 -o enp3s0 -j MASQUERADE
''; '';
peers = (import ../../../common/wireguard-peers.nix); peers = (import ../../../common/wireguard-peers.nix);