pvv-nixos-config/hosts/bicep/configuration.nix

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

44 lines
1.2 KiB
Nix
Raw Permalink Normal View History

{ fp, pkgs, values, ... }:
2023-03-26 01:09:44 +01:00
{
imports = [
./hardware-configuration.nix
(fp /base)
(fp /misc/metrics-exporters.nix)
2023-05-07 10:14:09 +02:00
./services/nginx
2023-03-26 01:09:44 +01:00
2023-05-18 15:40:13 +02:00
./services/mysql.nix
2023-03-26 01:09:44 +01:00
./services/postgres.nix
2023-07-09 23:45:32 +02:00
./services/mysql.nix
2024-08-15 23:22:00 +02:00
./services/calendar-bot.nix
2023-05-07 10:14:09 +02:00
./services/matrix
2023-03-26 01:09:44 +01:00
];
sops.defaultSopsFile = fp /secrets/bicep/bicep.yaml;
2023-03-26 01:09:44 +01:00
sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
sops.age.keyFile = "/var/lib/sops-nix/key.txt";
sops.age.generateKey = true;
2023-03-26 04:21:03 +02:00
boot.loader.grub.enable = true;
boot.loader.grub.device = "/dev/disk/by-id/scsi-3600508b1001cb1a8751c137b30610682";
2023-03-26 01:09:44 +01:00
networking.hostName = "bicep";
2023-03-26 04:21:03 +02:00
systemd.network.networks."30-enp6s0f0" = values.defaultNetworkConfig // {
matchConfig.Name = "enp6s0f0";
2023-05-07 10:14:09 +02:00
address = with values.hosts.bicep; [ (ipv4 + "/25") (ipv6 + "/64") ]
++ (with values.services.turn; [ (ipv4 + "/25") (ipv6 + "/64") ]);
2023-03-26 04:21:03 +02:00
};
systemd.network.wait-online = {
anyInterface = true;
};
2023-03-26 01:09:44 +01:00
# There are no smart devices
services.smartd.enable = false;
2023-03-26 01:09:44 +01:00
# Do not change, even during upgrades.
# See https://search.nixos.org/options?show=system.stateVersion
system.stateVersion = "22.11";
}