2023-01-06 12:26:32 +00:00
|
|
|
{ config, lib, pkgs, modulesPath, ... }:
|
2022-11-23 05:27:01 +00:00
|
|
|
|
2022-11-25 13:27:23 +00:00
|
|
|
# Most of the filesystems listed here are supposed to be overriden to default
|
|
|
|
|
# settings of whatever image format configuration this host system will import
|
|
|
|
|
# from nixos-generators.
|
2023-01-16 03:44:21 +00:00
|
|
|
let
|
|
|
|
|
network = import ./networks.nix;
|
|
|
|
|
inherit (network) publicIP publicIPv6 privateNetworkGatewayIP;
|
|
|
|
|
in
|
|
|
|
|
|
2022-11-23 05:27:01 +00:00
|
|
|
{
|
2023-01-05 03:08:45 +00:00
|
|
|
imports = [
|
|
|
|
|
(modulesPath + "/profiles/qemu-guest.nix")
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
boot.loader.grub.device = "/dev/sda";
|
2023-01-06 12:26:32 +00:00
|
|
|
boot.initrd.availableKernelModules = [ "ata_piix" "virtio_pci" "virtio_scsi" "xhci_pci" "sd_mod" "sr_mod" ];
|
2023-01-05 03:08:45 +00:00
|
|
|
boot.initrd.kernelModules = [ "nvme" ];
|
|
|
|
|
|
2022-11-25 13:27:23 +00:00
|
|
|
fileSystems."/" = lib.mkOverride 2000 {
|
2022-11-23 05:27:01 +00:00
|
|
|
label = "nixos";
|
|
|
|
|
fsType = "ext4";
|
2023-01-05 02:56:35 +00:00
|
|
|
options = [ "defaults" ];
|
2022-11-23 05:27:01 +00:00
|
|
|
};
|
2023-01-05 02:56:35 +00:00
|
|
|
|
|
|
|
|
fileSystems."/boot" = lib.mkOverride 2000 {
|
|
|
|
|
label = "boot";
|
|
|
|
|
fsType = "vfat";
|
|
|
|
|
};
|
|
|
|
|
|
2023-01-06 12:26:32 +00:00
|
|
|
zramSwap = {
|
|
|
|
|
enable = true;
|
|
|
|
|
numDevices = 1;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
|
|
|
|
|
hardware.cpu.intel.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;
|
|
|
|
|
|
2023-01-14 07:55:30 +00:00
|
|
|
networking = {
|
|
|
|
|
useDHCP = false;
|
2023-01-16 03:44:21 +00:00
|
|
|
useNetworkd = true;
|
|
|
|
|
|
|
|
|
|
# We're using networkd to configure so we're disabling this
|
|
|
|
|
# service.
|
|
|
|
|
dhcpcd.enable = false;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
# The interface configuration is based from the following discussion:
|
|
|
|
|
# https://discourse.nixos.org/t/nixos-on-hetzner-cloud-servers-ipv6/221/
|
|
|
|
|
systemd.network = {
|
|
|
|
|
enable = true;
|
|
|
|
|
networks."20-wan" = {
|
|
|
|
|
matchConfig.Name = "ens3";
|
2023-01-14 07:55:30 +00:00
|
|
|
|
2023-01-16 03:44:21 +00:00
|
|
|
address = [
|
|
|
|
|
# Public IPs.
|
|
|
|
|
publicIP
|
|
|
|
|
"${publicIPv6}1/64"
|
2023-01-14 07:55:30 +00:00
|
|
|
|
2023-01-16 03:44:21 +00:00
|
|
|
# The private network IP.
|
|
|
|
|
"172.23.0.1/32"
|
|
|
|
|
|
|
|
|
|
# Randomly generate from the IPv6 range.
|
|
|
|
|
"::"
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
routes = [
|
|
|
|
|
# Configuring the route with the gateway addresses for this network.
|
|
|
|
|
{ routeConfig.Gateway = "fe80::1"; }
|
|
|
|
|
{ routeConfig.Destination = privateNetworkGatewayIP; }
|
|
|
|
|
{ routeConfig = { Gateway = privateNetworkGatewayIP; GatewayOnLink = true; }; }
|
|
|
|
|
|
|
|
|
|
# Private addresses.
|
|
|
|
|
{ routeConfig = { Destination = "172.16.0.0/12"; Type = "unreachable"; }; }
|
|
|
|
|
{ routeConfig = { Destination = "192.168.0.0/16"; Type = "unreachable"; }; }
|
|
|
|
|
{ routeConfig = { Destination = "10.0.0.0/8"; Type = "unreachable"; }; }
|
|
|
|
|
{ routeConfig = { Destination = "fc00::/7"; Type = "unreachable"; }; }
|
|
|
|
|
];
|
2023-01-14 07:55:30 +00:00
|
|
|
};
|
|
|
|
|
};
|
2023-01-16 03:44:21 +00:00
|
|
|
|
|
|
|
|
# This is to look out for any errors that will occur for my networking setup
|
|
|
|
|
# which is always a possibility.
|
|
|
|
|
systemd.services.systemd-networkd.serviceConfig.Environment = "SYSTEMD_LOG_LEVEL=debug";
|
2022-11-23 05:27:01 +00:00
|
|
|
}
|
