configuration
flake
hosts
_iso
aluminium
configuration.nix
fieldpoc.nix
hardware-configuration.nix
secrets.json
ssh.pub
astatine
backup-4
beryllium
carbon
clerie-backup
dn42-il-gw1
dn42-il-gw5
dn42-il-gw6
dn42-ildix-clerie
dn42-ildix-service
gatekeeper
hydra-1
hydra-2
krypton
mail-2
monitoring-3
nonat
osmium
palladium
porter
storage-2
tungsten
web-2
zinc
lib
modules
pkgs
profiles
users
.gitignore
README.md
flake.lock
flake.nix
38 lines
847 B
Nix
38 lines
847 B
Nix
{ config, pkgs, lib, ... }:
|
|
|
|
{
|
|
imports =
|
|
[
|
|
./hardware-configuration.nix
|
|
|
|
./fieldpoc.nix
|
|
];
|
|
|
|
boot.kernelParams = [ "console=ttyS0,115200n8" ];
|
|
|
|
boot.loader.grub.enable = true;
|
|
boot.loader.grub.device = "/dev/sda";
|
|
boot.loader.grub.extraConfig = "
|
|
serial --speed=115200 --unit=0 --word=8 --parity=no --stop=1
|
|
terminal_input serial
|
|
terminal_output serial
|
|
";
|
|
|
|
services.wg-clerie = {
|
|
enable = true;
|
|
ipv6s = [ "2a01:4f8:c0c:15f1::8106/128" ];
|
|
ipv4s = [ "10.20.30.106/32" ];
|
|
privateKeyFile = "/var/src/secrets/wireguard/wg-clerie";
|
|
};
|
|
|
|
clerie.monitoring = {
|
|
enable = true;
|
|
id = "212";
|
|
pubkey = "P1ONelxezvkcLJFyvuCVeIUd3uewPIlONfKk9y6h9QE=";
|
|
serviceLevel = "event";
|
|
privateKeyFile = "/var/src/secrets/wireguard/wg-monitoring";
|
|
};
|
|
|
|
system.stateVersion = "22.11";
|
|
}
|