autumn/nixos-conf
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

smaller change

Browse Source
This commit is contained in:
autumn
2025-12-02 11:01:47 -07:00
parent 73ac52a1f7
commit df5d85cc43
1 changed files with 59 additions and 32 deletions
Download Patch File Download Diff File Expand all files Collapse all files

87
system/hoardfrost/configuration.nix
View File

@@ -5,30 +5,32 @@
{ config, pkgs, ... }: { config, pkgs, ... }:
{ {
imports = imports = [
[ ./hardware-configuration.nix
./hardware-configuration.nix
../packages/rust-motd/rust-motd.nix ../packages/rust-motd/rust-motd.nix
../services/samba.nix ../services/samba.nix
../services/openssh.nix ../services/openssh.nix
../services/endlessh.nix ../services/endlessh.nix
# ./services/currents.nix # ./services/currents.nix
#. ./services/tailscale.nix. #. ./services/tailscale.nix.
# ./services/containerization/currents.nix # ./services/containerization/currents.nix
../services/containerization/docker.nix ../services/containerization/docker.nix
../services/containerization/mealie.nix ../services/containerization/mealie.nix
../services/containerization/transtun.nix ../services/containerization/transtun.nix
../services/containerization/stirlingpdf.nix ../services/containerization/stirlingpdf.nix
]; ];
# Bootloader. # Bootloader.
boot.loader.systemd-boot.enable = true; boot.loader.systemd-boot.enable = true;
boot.loader.efi.canTouchEfiVariables = true; boot.loader.efi.canTouchEfiVariables = true;
nix.settings.experimental-features = ["nix-command" "flakes"]; nix.settings.experimental-features = [
"nix-command"
"flakes"
];
services.tailscale.enable = true; services.tailscale.enable = true;
networking.hostName = "hoardfrost"; # Define your hostname. networking.hostName = "hoardfrost"; # Define your hostname.
@@ -68,8 +70,30 @@
}; };
networking.firewall.enable = true; networking.firewall.enable = true;
networking.firewall.allowPing = true; networking.firewall.allowPing = true;
networking.firewall.allowedTCPPorts = [ 22 53 137 138 139 389 445 2022 8080 5657 41641]; networking.firewall.allowedTCPPorts = [
networking.firewall.allowedUDPPorts = [ 22 53 137 138 139 389 445 2022 41641]; 22
53
137
138
139
389
445
2022
8080
5657
41641
];
networking.firewall.allowedUDPPorts = [
22
53
137
138
139
389
445
2022
41641
];
# Define a user account. Don't forget to set a password with passwd. # Define a user account. Don't forget to set a password with passwd.
programs.zsh.enable = true; programs.zsh.enable = true;
@@ -78,7 +102,10 @@
users.autumn = { users.autumn = {
isNormalUser = true; isNormalUser = true;
description = "autumn"; description = "autumn";
extraGroups = [ "networkmanager" "wheel" ]; extraGroups = [
"networkmanager"
"wheel"
];
}; };
}; };
@@ -88,20 +115,20 @@
# List packages installed in system profile. To search, run: # List packages installed in system profile. To search, run:
# $ nix search wget # $ nix search wget
environment.systemPackages = with pkgs; [ environment.systemPackages = with pkgs; [
helix helix
git git
nil nil
inetutils inetutils
nh nh
toybox toybox
nodejs_24 nodejs_24
jdk17 jdk17
# vim # Do not forget to add an editor to edit configuration.nix! The Nano editor is also installed by default. rustup
# wget # vim # Do not forget to add an editor to edit configuration.nix! The Nano editor is also installed by default.
# wget
]; ];
virtualisation.podman = { virtualisation.podman = {
enable = true; enable = true;
}; };
# Some programs need SUID wrappers, can be configured further or are # Some programs need SUID wrappers, can be configured further or are