2022-07-12 20:33:17 +02:00
|
|
|
|
{ config, pkgs, ... }:
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
imports =
|
|
|
|
|
[
|
|
|
|
|
./hardware-configuration.nix
|
|
|
|
|
|
2022-07-14 23:32:21 +02:00
|
|
|
|
./nat.nix
|
2022-07-15 01:16:51 +02:00
|
|
|
|
./ppp.nix
|
2022-07-15 02:35:35 +02:00
|
|
|
|
./prefix-delegation.nix
|
2022-07-15 01:16:51 +02:00
|
|
|
|
./uplink-selector.nix
|
2022-07-14 23:32:21 +02:00
|
|
|
|
|
2022-07-13 22:04:01 +02:00
|
|
|
|
./10-net-services.nix
|
2022-07-13 19:13:35 +02:00
|
|
|
|
./42-net-management.nix
|
|
|
|
|
./101-net-uplink-a.nix
|
|
|
|
|
./102-net-uplink-b.nix
|
|
|
|
|
./151-net-technik-iot.nix
|
2022-07-20 17:52:09 +02:00
|
|
|
|
./152-net-ikt-toys.nix
|
2022-07-13 19:13:35 +02:00
|
|
|
|
./201-net-ikt.nix
|
|
|
|
|
./202-net-technik.nix
|
|
|
|
|
./203-net-hospital.nix
|
|
|
|
|
./204-net-zoll.nix
|
|
|
|
|
./205-net-leitstelle.nix
|
|
|
|
|
./206-net-verwaltung.nix
|
|
|
|
|
./208-net-yolo.nix
|
|
|
|
|
./209-net-infojurte.nix
|
|
|
|
|
./210-net-internation.nix
|
|
|
|
|
./211-net-programmtre.nix
|
|
|
|
|
./212-net-open-office.nix
|
2022-07-12 20:33:17 +02:00
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
boot.loader.systemd-boot.enable = true;
|
|
|
|
|
boot.loader.efi.canTouchEfiVariables = true;
|
|
|
|
|
|
|
|
|
|
networking.hostName = "router";
|
|
|
|
|
|
2022-07-17 15:05:25 +02:00
|
|
|
|
networking.defaultGateway = { address = "10.42.10.25"; interface = "net-services"; };
|
|
|
|
|
networking.defaultGateway6 = { address = "2a01:4f8:1c0c:8221::25"; interface = "net-services"; };
|
2022-07-12 20:33:17 +02:00
|
|
|
|
|
2022-07-23 17:04:54 +02:00
|
|
|
|
networking.firewall.checkReversePath = false;
|
|
|
|
|
|
2022-07-20 10:40:37 +02:00
|
|
|
|
services.prometheus.exporters.node = {
|
|
|
|
|
enable = true;
|
|
|
|
|
listenAddress = "10.42.10.2";
|
|
|
|
|
openFirewall = true;
|
|
|
|
|
};
|
2022-07-12 20:33:17 +02:00
|
|
|
|
|
2022-07-13 21:22:46 +02:00
|
|
|
|
boot.kernel.sysctl = {
|
|
|
|
|
"net.ipv4.conf.all.forwarding" = true;
|
|
|
|
|
"net.ipv4.conf.default.forwarding" = true;
|
|
|
|
|
|
|
|
|
|
"net.ipv6.conf.all.accept_ra" = 0;
|
|
|
|
|
"net.ipv6.conf.default.accept_ra" = 0;
|
|
|
|
|
|
|
|
|
|
"net.ipv6.conf.all.forwarding" = true;
|
|
|
|
|
"net.ipv6.conf.default.forwarding" = true;
|
|
|
|
|
};
|
|
|
|
|
|
2022-07-13 19:13:35 +02:00
|
|
|
|
services.radvd.enable = true;
|
|
|
|
|
|
|
|
|
|
services.kea.dhcp4 = {
|
|
|
|
|
enable = true;
|
|
|
|
|
settings = {
|
|
|
|
|
interfaces-config = {
|
|
|
|
|
interfaces = [];
|
|
|
|
|
};
|
|
|
|
|
lease-database = {
|
|
|
|
|
name = "/var/lib/kea/dhcp4.leases";
|
|
|
|
|
persist = true;
|
|
|
|
|
type = "memfile";
|
|
|
|
|
};
|
|
|
|
|
option-data = [
|
|
|
|
|
{
|
|
|
|
|
name = "domain-name-servers";
|
|
|
|
|
data = "10.42.10.8";
|
|
|
|
|
}
|
|
|
|
|
{
|
|
|
|
|
name = "domain-name";
|
|
|
|
|
data = "bula22.de";
|
|
|
|
|
}
|
|
|
|
|
];
|
|
|
|
|
subnet4 = [];
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
2022-07-13 22:17:53 +02:00
|
|
|
|
clerie.forward-filter.enable = true;
|
|
|
|
|
|
2022-07-13 22:52:50 +02:00
|
|
|
|
services.pppd.enable = true;
|
|
|
|
|
|
2022-07-12 20:33:17 +02:00
|
|
|
|
# This value determines the NixOS release from which the default
|
|
|
|
|
# settings for stateful data, like file locations and database versions
|
|
|
|
|
# on your system were taken. It‘s perfectly fine and recommended to leave
|
|
|
|
|
# this value at the release version of the first install of this system.
|
|
|
|
|
# Before changing this value read the documentation for this option
|
|
|
|
|
# (e.g. man configuration.nix or on https://nixos.org/nixos/options.html).
|
|
|
|
|
system.stateVersion = "22.05"; # Did you read the comment?
|
|
|
|
|
|
|
|
|
|
}
|