summaryrefslogtreecommitdiffstats
path: root/makefu/1systems/drop/config.nix
diff options
context:
space:
mode:
authormakefu <github@syntax-fehler.de>2017-07-15 18:57:16 +0200
committermakefu <github@syntax-fehler.de>2017-07-15 18:57:16 +0200
commitfa38155eec9563dc9dc620a77900d87b97443cfe (patch)
tree6000436cba63e03a21556fb6c2d6ebb67eb5b3b0 /makefu/1systems/drop/config.nix
parent3698f2a40c2db7df0888974c9b2e347947088a98 (diff)
ma: move systems to subdir, init source
Diffstat (limited to 'makefu/1systems/drop/config.nix')
-rw-r--r--makefu/1systems/drop/config.nix40
1 files changed, 40 insertions, 0 deletions
diff --git a/makefu/1systems/drop/config.nix b/makefu/1systems/drop/config.nix
new file mode 100644
index 000000000..4a94c3f61
--- /dev/null
+++ b/makefu/1systems/drop/config.nix
@@ -0,0 +1,40 @@
+{ config, pkgs, ... }:
+let
+ external-ip = "45.55.145.62";
+ default-gw = "45.55.128.1";
+ prefixLength = 18;
+in {
+ imports = [
+ ../.
+ ../2configs/hw/CAC.nix
+ ../2configs/save-diskspace.nix
+ ../2configs/torrent.nix
+ ];
+ krebs = {
+ enable = true;
+ tinc.retiolum.enable = true;
+ build.host = config.krebs.hosts.drop;
+ };
+
+ boot.loader.grub.device = "/dev/vda";
+ boot.initrd.availableKernelModules = [ "ata_piix" "uhci_hcd" "ehci_pci" "virtio_pci" "virtio_blk" "virtio_net" "virtio_scsi" ];
+ fileSystems."/" = {
+ device = "/dev/vda1";
+ fsType = "ext4";
+ };
+
+ networking = {
+ firewall = {
+ allowPing = true;
+ logRefusedConnections = false;
+ allowedTCPPorts = [ ];
+ allowedUDPPorts = [ 655 ];
+ };
+ interfaces.enp0s3.ip4 = [{
+ address = external-ip;
+ inherit prefixLength;
+ }];
+ defaultGateway = default-gw;
+ nameservers = [ "8.8.8.8" ];
+ };
+}