1
0
nixfiles/hosts/web-2/configuration.nix

67 lines
1.7 KiB
Nix
Raw Normal View History

2021-01-02 16:48:53 +01:00
{ config, pkgs, ... }:
{
imports =
[
./hardware-configuration.nix
../../configuration/common
2021-01-02 18:19:11 +01:00
./bubblesort.nix
2021-01-06 22:02:11 +01:00
./gitea.nix
2021-01-02 22:17:51 +01:00
./ip.nix
2021-01-02 21:35:21 +01:00
./meow.nix
2021-01-10 21:30:06 +01:00
./public.nix
2021-01-05 20:25:16 +01:00
./radicale.nix
2021-01-03 15:19:40 +01:00
./znc.nix
2021-01-02 16:48:53 +01:00
];
boot.loader.grub.enable = true;
boot.loader.grub.version = 2;
2021-01-02 18:19:11 +01:00
boot.loader.grub.device = "/dev/sda";
2021-01-02 16:48:53 +01:00
networking.hostName = "web-2";
networking.useDHCP = false;
# Network
networking.interfaces.ens3.ipv4.addresses = [ { address = "88.99.187.135"; prefixLength = 32; } ];
networking.interfaces.ens3.ipv6.addresses = [ { address = "2a01:4f8:c0c:c580::1"; prefixLength = 64; } ];
networking.defaultGateway = { address = "172.31.1.1"; interface = "ens3"; };
networking.defaultGateway6 = { address = "fe80::1"; interface = "ens3"; };
networking.nameservers = [ "213.133.98.98" "213.133.99.99" "213.133.100.100" ];
services.nginx = {
enable = true;
enableReload = true;
recommendedGzipSettings = true;
recommendedOptimisation = true;
recommendedProxySettings = true;
recommendedTlsSettings = true;
2021-01-05 20:27:05 +01:00
};
2021-01-02 18:19:11 +01:00
networking.firewall.allowedTCPPorts = [ 80 443 ];
2021-01-06 22:02:11 +01:00
services.postgresql = {
enable = true;
package = pkgs.postgresql_12;
};
2021-01-03 16:26:33 +01:00
services.borgbackup.jobs = {
main = {
paths = [
"/var/src"
"/var/lib"
];
doInit = true;
repo = "borg@backup.clerie.de:." ;
encryption = {
mode = "repokey-blake2";
passCommand = "cat /var/src/secrets/borg/main";
};
environment = { BORG_RSH = "ssh -i /var/src/secrets/ssh/borg-main"; };
compression = "auto,lzma";
startAt = "hourly";
};
};
2021-01-02 16:48:53 +01:00
system.stateVersion = "21.03";
}