lgmrszd/nix-cfg
1
0
Fork 0
mirror of https://git.lgmrszd.xyz/Lgmrszd/nix-cfg.git synced 2025-12-14 15:48:21 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Local akkoma for testing

Browse source
This commit is contained in:
Lgmrszd 2024-02-18 12:48:52 +03:00
parent b317cd7865
commit 85654ce3a9
No known key found for this signature in database
GPG key ID: 9396B8BA6FBB14DE
8 changed files with 361 additions and 17 deletions
Download patch file Download diff file Expand all files Collapse all files

16
hosts/laptop/configuration.nix
View file

@ -9,6 +9,9 @@ let
in
{
imports = [
./akkotest.nix
];
# boot.kernelPackages = pkgs.linuxPackages_zen;
# Use the systemd-boot EFI boot loader.
@ -291,7 +294,6 @@ in
defaultSopsFile = ../../secrets/secrets.yaml;
defaultSopsFormat = "yaml";
secrets.example_key = {};
gnupg.home = "/home/lgm/.gnupg";
};
# OnlyKey
@ -360,13 +362,25 @@ in
# Enable the OpenSSH daemon.
# services.openssh.enable = true;
services.openssh = {
enable = true;
settings.PermitRootLogin = "no";
};
# Open ports in the firewall.
networking.firewall.trustedInterfaces = [ "p2p-wl+" ];
networking.firewall.allowedTCPPorts = [ 5900 5905 7236 7250 ];
networking.firewall.allowedUDPPorts = [ 5900 5905 7236 5353 ];
# Or disable the firewall altogether.
# networking.firewall.enable = false;
# enable NAT for the containers
networking.nat.enable = true;
networking.nat.internalInterfaces = ["ve-+"];
networking.nat.externalInterface = "wlp3s0";
networking.networkmanager.unmanaged = [ "interface-name:ve-*" ];
# Copy the NixOS configuration file and link it from the resulting system
# (/run/current-system/configuration.nix). This is useful in case you
# accidentally delete configuration.nix.