configurations of hq services
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

configuration.nix 1.5KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172
  1. # Edit this configuration file to define what should be installed on
  2. # your system. Help is available in the configuration.nix(5) man page
  3. # and in the NixOS manual (accessible by running ‘nixos-help’).
  4. { config, pkgs, lib, ... }:
  5. {
  6. imports =
  7. [ ../../../lib/lxc-container.nix
  8. ../../../lib/shared.nix
  9. ../../../lib/admins.nix
  10. ];
  11. environment.systemPackages = with pkgs; [
  12. nixops
  13. pass
  14. gnupg
  15. ansible
  16. manpages
  17. man
  18. zsh
  19. vim
  20. screen
  21. tmux
  22. ];
  23. networking = {
  24. hostName = "deployer";
  25. # usePredictableInterfacenames = false;
  26. # interfaces.ens18.ipv4.addresses = [{
  27. # address = "172.20.73.7";
  28. # prefixLength = 26;
  29. # }];
  30. # interfaces.ens18.ipv6.addresses = [{
  31. # address= "2a02:8106:208:5282:8c15:86ff:fe0f:b018";
  32. # prefixLength = 64;
  33. # }];
  34. # nameservers = [ "172.20.72.6" "9.9.9.9" ];
  35. # defaultGateway = {
  36. # address = "172.20.73.1";
  37. # interface = "eth0@if23";
  38. # };
  39. # #defaultGateway6 = {
  40. # address = "fe80::a800:42ff:fe7a:3246";
  41. # interface = "ens18";
  42. #};
  43. firewall.allowedTCPPorts = [
  44. 22
  45. ];
  46. };
  47. services.openssh = {
  48. enable = true;
  49. permitRootLogin = "yes";
  50. };
  51. nix.buildCores = 16;
  52. nix.maxJobs = 16;
  53. users.extraUsers.k-ot = {
  54. isNormalUser = true;
  55. uid = 1000;
  56. extraGroups = [ "wheel" ];
  57. };
  58. security.sudo.wheelNeedsPassword = false;
  59. system.stateVersion = "19.03"; # Did you read the comment?
  60. }