diff options
author | lassulus <lassulus@lassul.us> | 2017-07-14 00:41:36 +0200 |
---|---|---|
committer | lassulus <lassulus@lassul.us> | 2017-07-14 00:41:36 +0200 |
commit | 8d128c769aec24d8989db8220d680ea6f4735193 (patch) | |
tree | 8c8a6132fda88ba989bbb7fc170b54b1ca242987 /shared/1systems/wolf/config.nix | |
parent | c4627764062a42f8d952ff90557c1e0d8735485f (diff) | |
parent | 58380c82848c3db0bd6c3d74904153f3464c2098 (diff) |
Merge remote-tracking branch 'ni/master'
Diffstat (limited to 'shared/1systems/wolf/config.nix')
-rw-r--r-- | shared/1systems/wolf/config.nix | 107 |
1 files changed, 0 insertions, 107 deletions
diff --git a/shared/1systems/wolf/config.nix b/shared/1systems/wolf/config.nix deleted file mode 100644 index 636f8e822..000000000 --- a/shared/1systems/wolf/config.nix +++ /dev/null @@ -1,107 +0,0 @@ -{ config, pkgs, ... }: -let - shack-ip = config.krebs.build.host.nets.shack.ip4.addr; -in -{ - imports = [ - <stockholm/shared> - <nixpkgs/nixos/modules/profiles/qemu-guest.nix> - <stockholm/shared/2configs/collectd-base.nix> - <stockholm/shared/2configs/central-stats-client.nix> - <stockholm/shared/2configs/save-diskspace.nix> - - <stockholm/shared/2configs/cgit-mirror.nix> - <stockholm/shared/2configs/graphite.nix> - <stockholm/shared/2configs/repo-sync.nix> - <stockholm/shared/2configs/shared-buildbot.nix> - - <stockholm/shared/2configs/shack/worlddomination.nix> - <stockholm/shared/2configs/shack/drivedroid.nix> - # <stockholm/shared/2configs/shack/nix-cacher.nix> - <stockholm/shared/2configs/shack/mqtt_sub.nix> - <stockholm/shared/2configs/shack/muell_caller.nix> - <stockholm/shared/2configs/shack/radioactive.nix> - <stockholm/shared/2configs/shack/share.nix> - - ]; - # use your own binary cache, fallback use cache.nixos.org (which is used by - # apt-cacher-ng in first place) - - services.influxdb.enable = true; - - # local discovery in shackspace - nixpkgs.config.packageOverrides = pkgs: { tinc = pkgs.tinc_pre; }; - krebs.tinc.retiolum.extraConfig = "TCPOnly = yes"; - services.grafana = { - enable = true; - addr = "0.0.0.0"; - users.allowSignUp = true; - users.allowOrgCreate = true; - users.autoAssignOrg = true; - auth.anonymous.enable = true; - security = import <secrets/grafana_security.nix>; - }; - - nix = { - # use the up to date prism cache - binaryCaches = [ - "http://cache.prism.r" - "https://cache.nixos.org/" - ]; - binaryCachePublicKeys = [ - "cache.prism-1:+S+6Lo/n27XEtvdlQKuJIcb1yO5NUqUCE2lolmTgNJU=" - "hydra.nixos.org-1:CNHJZBh9K4tP3EKF6FkkgeVYsS3ohTl+oS0Qa8bezVs=" - ]; - }; - - networking = { - firewall.enable = false; - firewall.allowedTCPPorts = [ 8088 8086 8083 ]; - interfaces.enp0s3.ip4 = [{ - address = shack-ip; - prefixLength = 20; - }]; - - defaultGateway = "10.42.0.1"; - nameservers = [ "10.42.0.100" "10.42.0.200" ]; - }; - - ##################### - # uninteresting stuff - ##################### - krebs.build.host = config.krebs.hosts.wolf; - - boot.kernel.sysctl = { - # Enable IPv6 Privacy Extensions - "net.ipv6.conf.all.use_tempaddr" = 2; - "net.ipv6.conf.default.use_tempaddr" = 2; - }; - - boot.initrd.availableKernelModules = [ - "ata_piix" "uhci_hcd" "ehci_pci" "virtio_pci" "virtio_blk" - ]; - boot.kernelModules = [ ]; - boot.extraModulePackages = [ ]; - - boot.loader.grub.enable = true; - boot.loader.grub.version = 2; - boot.loader.grub.device = "/dev/vda"; - - fileSystems."/" = { device = "/dev/disk/by-label/nixos"; fsType = "ext4"; }; - - swapDevices = [ - { device = "/dev/disk/by-label/swap"; } - ]; - # fallout of ipv6calypse - networking.extraHosts = '' - hass.shack 10.42.2.191 - heidi.shack 10.42.2.135 - ''; - - users.extraUsers.root.openssh.authorizedKeys.keys = [ - config.krebs.users.ulrich.pubkey - ]; - - time.timeZone = "Europe/Berlin"; - sound.enable = false; -} |