bind: microvmify

flake.nix

@@ -598,7 +598,7 @@
         bind = nixosSystem' {
           modules = [
             { nixpkgs.overlays = with secrets.overlays; [ bind ]; }
-            ./config/lxc-container.nix
+            self.nixosModules.microvm
             ./hosts/containers/bind
           ];
         };

hosts/containers/bind/default.nix

@@ -9,15 +9,13 @@ in
   c3d2 = {
     isInHq = false;
     hq.statistics.enable = true;
+    deployment = {
+      server = "server10";
+      mounts = [ "etc" "home" "var"];
+    };
   };
 
   networking.hostName = "bind";
-  networking.useNetworkd = true;
-  networking.interfaces.eth0.ipv4.addresses = [{
-    address = config.c3d2.hosts."${config.networking.hostName}".ip4;
-    prefixLength = zentralwerk.lib.config.site.net.serv.subnet4Len;
-  }];
-  networking.defaultGateway = "172.20.73.1";
 
   networking.firewall.allowedTCPPorts = [
     # DNS
@@ -82,7 +80,7 @@ in
     wantedBy = [ "multi-user.target" ];
     before = [ "bind.service" ];
     after  = [ "network-online.target" ];
-    path = with pkgs; [ git nix curl ];
+    path = with pkgs; [ git nix curl openssh ];
     script = ''
       mkdir -p .ssh
       cp ${builtins.toFile "id_ed25519" sshPrivkey} .ssh/id_ed25519