1
0

Compare commits

..

No commits in common. "f0271b86c02caaad6a98d21b1e2313cd39fe3379" and "a2b942e440900acf49acb9719f7d4beb37279400" have entirely different histories.

7 changed files with 12 additions and 75 deletions

View File

@ -90,11 +90,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1707317562, "lastModified": 1707178626,
"narHash": "sha256-0wj5AS8RLVr+S/QWWxCsMvmVjmXUWGfR9kPaZimJEss=", "narHash": "sha256-dWjRyJ6bN7Ku9MmE1xsnCB8jOtFoGiK+HjS/EgI149A=",
"owner": "wobcom", "owner": "wobcom",
"repo": "fernglas", "repo": "fernglas",
"rev": "25020466957dbe0e193f7857d827020f5c1aa996", "rev": "70146ddd80a4c8ebd0c2f522f7bd556bd5b2f1b0",
"type": "github" "type": "github"
}, },
"original": { "original": {
@ -127,11 +127,11 @@
"systems": "systems_2" "systems": "systems_2"
}, },
"locked": { "locked": {
"lastModified": 1705309234, "lastModified": 1694529238,
"narHash": "sha256-uNRRNRKmJyCRC/8y1RqBkqWBLM034y4qN7EprSdmgyA=", "narHash": "sha256-zsNZZGTGnMOf9YpHKJqMSsa0dXbfmxeoJ7xHlrt+xmY=",
"owner": "numtide", "owner": "numtide",
"repo": "flake-utils", "repo": "flake-utils",
"rev": "1ef2e671c3b0c19053962c07dbda38332dcebf26", "rev": "ff7b65b44d01cf9ba6a71320833626af21126384",
"type": "github" "type": "github"
}, },
"original": { "original": {

View File

@ -72,12 +72,7 @@
porter = { name = "porter"; }; porter = { name = "porter"; };
storage-2 = { name = "storage-2"; }; storage-2 = { name = "storage-2"; };
web-2 = { name = "web-2"; }; web-2 = { name = "web-2"; };
zinc = { zinc = { name = "zinc"; };
name = "zinc";
modules = [
nixos-hardware.nixosModules.common-cpu-intel
];
};
# nixfiles-auto-install: add new host above # nixfiles-auto-install: add new host above
_iso = { name = "_iso"; }; _iso = { name = "_iso"; };
}; };

View File

@ -264,7 +264,7 @@
ip46tables -A forward-filter -o enp1s0.202 -j DROP ip46tables -A forward-filter -o enp1s0.202 -j DROP
''; '';
clerie.firewall.extraForwardMangleCommands = '' clerie.firewall.extraForwardMangleCommands = ''
ip46tables -t mangle -A forward-mangle -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --set-mss 1416 ip46tables -t mangle -A forward-mangle -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --set-mss 1452
''; '';
services.pppd = { services.pppd = {
@ -280,7 +280,7 @@
noipdefault noipdefault
lcp-echo-interval 20 lcp-echo-interval 20
lcp-echo-failure 3 lcp-echo-failure 3
mtu 1456 mtu 1492
hide-password hide-password
defaultroute defaultroute
+ipv6 +ipv6

View File

@ -8,7 +8,6 @@
../../configuration/desktop ../../configuration/desktop
./initrd.nix ./initrd.nix
./programs.nix
]; ];
# Use the systemd-boot EFI boot loader. # Use the systemd-boot EFI boot loader.

View File

@ -1,31 +1,6 @@
{ config, pkgs, lib, ... }: { config, ... }:
with lib; {
let
configure_network = pkgs.writeScriptBin "configure-network" ''
ifdisplay=""
while true; do
ifdisplay_new=$(ipconfig -t 10 all)
ipconfig_status=$?
# Only show network config if something changes
if [[ "$ifdisplay" != "$ifdisplay_new" ]]; then
ifdisplay=$ifdisplay_new
echo
echo "$ifdisplay"
echo
fi
# Wait a little before checking again
if [[ $ipconfig_status == 0 ]]; then
sleep 5
fi
done
'';
in {
boot.initrd.network.enable = true; boot.initrd.network.enable = true;
boot.initrd.network.ssh = { boot.initrd.network.ssh = {
@ -37,30 +12,11 @@ in {
"/var/src/secrets/initrd/ssh_host_ed25519_key" "/var/src/secrets/initrd/ssh_host_ed25519_key"
]; ];
}; };
boot.initrd.extraFiles."/root/.ash_history".source = pkgs.writeText ".ash_history" ''
cryptsetup-askpass
'';
boot.initrd.kernelModules = [ boot.initrd.kernelModules = [
"igc" # integrated rj45 network interface "igc" # integrated rj45 network interface
"cdc_ether" # external 5G modem via usb "cdc_ether" # external 5G modem via usb
]; ];
boot.kernelParams = [ "ip=dhcp" ];
boot.initrd.extraUtilsCommands = ''
copy_bin_and_libs ${configure_network}/bin/configure-network
'';
boot.initrd.network.postCommands = mkBefore ''
configure-network &
'';
boot.initrd.postMountCommands = mkBefore ''
pkill -x configure-network
# Override the previously set interfaces with the ones that really exist
ifaces=$(ip -o link show | grep "link/ether" | cut -d: -f2 | xargs -n 1)
'';
boot.initrd.network.wireguard = { boot.initrd.network.wireguard = {
enable = true; enable = true;

View File

@ -1,12 +0,0 @@
{ pkgs, ... }:
{
users.users.clerie.packages = with pkgs; [
firefox
blender
cura
];
}

View File

@ -41,7 +41,6 @@ in
boot.initrd.network.postCommands = '' boot.initrd.network.postCommands = ''
ip link add dev "wg-initrd" type wireguard ip link add dev "wg-initrd" type wireguard
ip link set "wg-initrd" mtu 1280
${concatMapStringsSep "\n" (ip: '' ${concatMapStringsSep "\n" (ip: ''
ip address add "${ip}" dev "wg-initrd" ip address add "${ip}" dev "wg-initrd"