76 lines
1.5 KiB
Nix
76 lines
1.5 KiB
Nix
{ config, lib, pkgs, ... }:
|
|
|
|
{
|
|
imports = [
|
|
./hardware-configuration.nix
|
|
./services
|
|
];
|
|
|
|
networking.hostName = "raven";
|
|
|
|
time.timeZone = "Etc/UTC";
|
|
|
|
networking = {
|
|
useDHCP = false;
|
|
vlans = {
|
|
jt = {
|
|
id = 2;
|
|
interface = "enp0s25";
|
|
};
|
|
labprod = {
|
|
id = 1;
|
|
interface = "enp0s25";
|
|
};
|
|
labdev = {
|
|
id = 5;
|
|
interface = "enp0s25";
|
|
};
|
|
};
|
|
interfaces = {
|
|
labprod.useDHCP = true;
|
|
jt.useDHCP = true;
|
|
labdev.ipv4.addresses = [{
|
|
address = "192.168.94.1";
|
|
prefixLength = 24;
|
|
}];
|
|
};
|
|
nat = {
|
|
enable = true;
|
|
externalInterface = "jt";
|
|
internalInterfaces = lib.singleton "labdev";
|
|
};
|
|
};
|
|
|
|
i18n.defaultLocale = "en_US.UTF-8";
|
|
console.keyMap = "de";
|
|
|
|
security.sudo.wheelNeedsPassword = false;
|
|
|
|
users.users = {
|
|
simon = {
|
|
isNormalUser = true;
|
|
extraGroups = [ "wheel" "docker" ];
|
|
openssh.authorizedKeys.keys = config.fablab.pubkeys.users.simon;
|
|
};
|
|
jalr = {
|
|
isNormalUser = true;
|
|
extraGroups = [ "wheel" "docker" ];
|
|
openssh.authorizedKeys.keys = config.fablab.pubkeys.users.jalr;
|
|
};
|
|
};
|
|
|
|
services.openssh.enable = true;
|
|
|
|
virtualisation.docker.enable = true;
|
|
|
|
services.nginx.enable = true;
|
|
|
|
networking.firewall.allowedTCPPorts = [ 80 443 ];
|
|
|
|
# FIXME
|
|
networking.hosts = {
|
|
"192.168.94.1" = [ "raven.lab.fablab-nea.de" "labsync.lab.fablab-nea.de" ];
|
|
};
|
|
|
|
system.stateVersion = "21.05";
|
|
}
|