diff options
Diffstat (limited to 'makefu/1systems/vbob/config.nix')
| -rw-r--r-- | makefu/1systems/vbob/config.nix | 73 |
1 files changed, 73 insertions, 0 deletions
diff --git a/makefu/1systems/vbob/config.nix b/makefu/1systems/vbob/config.nix new file mode 100644 index 000000000..d8e275bf6 --- /dev/null +++ b/makefu/1systems/vbob/config.nix @@ -0,0 +1,73 @@ +{ lib, config, pkgs, ... }: +{ + krebs.build.host = config.krebs.hosts.vbob; + makefu.awesome.modkey = "Mod1"; + imports = + [ # Include the results of the hardware scan. + ../. + (toString <nixpkgs/nixos/modules/virtualisation/virtualbox-image.nix>) + (toString <nixpkgs/nixos/modules/virtualisation/virtualbox-guest.nix>) + ../2configs/main-laptop.nix #< base-gui + ../2configs/sshd-totp.nix + + # Tools + ../2configs/tools/core.nix + ../2configs/tools/core-gui.nix + ../2configs/tools/dev.nix + ../2configs/tools/extra-gui.nix + ../2configs/tools/sec.nix + + # environment + ../2configs/tinc/retiolum.nix + + ../2configs/audio/jack-on-pulse.nix + ../2configs/audio/realtime-audio.nix + + ]; + networking.extraHosts = import (toString <secrets/extra-hosts.nix>); + + nixpkgs.config.allowUnfree = true; + fileSystems."/nix" = { + device ="/dev/disk/by-label/nixstore"; + fsType = "ext4"; + }; + + # allow vbob to deploy self + users.extraUsers = { + root = { + openssh.authorizedKeys.keys = [ config.krebs.users.makefu-vbob.pubkey ]; + }; + }; + + environment.shellAliases = { + forti = "cat ~/vpn/pw.txt | xclip; sudo forticlientsslvpn"; + }; + # TODO: for forticleintsslpn + # ln -s /r/current-system/sw/bin/pppd /usr/sbin/pppd + # ln -s /r/current-system/sw/bin/tail /usr/bin/tail + environment.systemPackages = with pkgs;[ + fortclientsslvpn ppp xclip + get + logstash + # docker + #devpi-web + #devpi-client + debmirror + ansible + ]; + # virtualisation.docker.enable = true; + + + networking.firewall.allowedTCPPorts = [ + 25 + 80 + 8010 + ]; + + fileSystems."/media/share" = { + fsType = "vboxsf"; + device = "share"; + options = [ "rw" "uid=9001" "gid=9001" ]; + }; + +} |