cschmatzler/nixos-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

up

Browse Source
This commit is contained in:
Christoph Schmatzler
2025-08-12 17:29:58 +00:00
parent a1967cefe5
commit 2c4fb98fc7
2 changed files with 13 additions and 19 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
hosts/nixos/tahani/default.nix
View File

@@ -40,7 +40,13 @@
networking = { networking = {
hostName = hostname; hostName = hostname;
useDHCP = true; useDHCP = false;
interfaces.eno1.ipv4.addresses = [{
address = "192.168.1.10";
prefixLength = 24;
}];
defaultGateway = "192.168.1.1";
nameservers = ["1.1.1.1"];
}; };
services.postgresql = { services.postgresql = {

24
profiles/nixos/default.nix
View File

@@ -13,7 +13,6 @@ in {
]; ];
system.stateVersion = "25.11"; system.stateVersion = "25.11";
time.timeZone = "UTC"; time.timeZone = "UTC";
nix = { nix = {
@@ -27,9 +26,10 @@ in {
networking.firewall = { networking.firewall = {
enable = true; enable = true;
trustedInterfaces = ["tailscale0"]; trustedInterfaces = ["eno1" "tailscale0"];
allowedUDPPorts = [config.services.tailscale.port]; allowPing = true;
allowedTCPPorts = [22]; allowedUDPPorts = [53 10000 config.services.tailscale.port];
allowedTCPPorts = [22 53];
checkReversePath = "loose"; checkReversePath = "loose";
}; };
@@ -47,8 +47,8 @@ in {
}; };
adguardhome = { adguardhome = {
enable = true; enable = true;
port = 10000;
settings = { settings = {
http.address = "0.0.0.0:10000";
dns = { dns = {
upstream_dns = [ upstream_dns = [
"1.1.1.1" "1.1.1.1"
@@ -88,22 +88,10 @@ in {
security.sudo = { security.sudo = {
enable = true; enable = true;
extraRules = [
{
commands = [
{
command = "${pkgs.systemd}/bin/reboot";
options = ["NOPASSWD"];
}
];
groups = ["wheel"];
}
];
}; };
environment.systemPackages = with pkgs; [ environment.systemPackages = [
agenix.packages."${pkgs.system}".default agenix.packages."${pkgs.system}".default
inetutils
]; ];
home-manager = { home-manager = {