deployment: beherbergung-warhelp/configuration.nix
This commit is contained in:
parent
298b2e4357
commit
67bc963efc
|
@ -0,0 +1,57 @@
|
||||||
|
{ config, pkgs, modulesPath, ... }:
|
||||||
|
{
|
||||||
|
system.stateVersion = "21.11";
|
||||||
|
|
||||||
|
networking.hostName = "beherbergung-warhelp";
|
||||||
|
|
||||||
|
|
||||||
|
## The next part is copied from https://github.com/Mic92/dotfiles/commit/be6b898e8fbd12716cce380d8f3889a926003990
|
||||||
|
|
||||||
|
imports = [
|
||||||
|
"${toString modulesPath}/virtualisation/lxc-container.nix"
|
||||||
|
];
|
||||||
|
services.openssh = {
|
||||||
|
enable = true;
|
||||||
|
passwordAuthentication = false;
|
||||||
|
useDns = false;
|
||||||
|
};
|
||||||
|
systemd.network.enable = true;
|
||||||
|
networking.useDHCP = false;
|
||||||
|
networking.useHostResolvConf = false;
|
||||||
|
|
||||||
|
systemd.network.networks."50-container-host0.network".extraConfig = ''
|
||||||
|
[Match]
|
||||||
|
Virtualization = container
|
||||||
|
Name = host0
|
||||||
|
[Network]
|
||||||
|
# increment this for new servers...
|
||||||
|
Address = 2a01:4f8:10b:49f:1::1/80
|
||||||
|
# ... and this
|
||||||
|
Address = 192.168.21.1/24
|
||||||
|
Gateway = 192.168.21.254
|
||||||
|
LinkLocalAddressing = yes
|
||||||
|
LLDP = yes
|
||||||
|
EmitLLDP = customer-bridge
|
||||||
|
IPv6AcceptRA = yes
|
||||||
|
[DHCP]
|
||||||
|
UseTimezone = yes
|
||||||
|
'';
|
||||||
|
|
||||||
|
users.users.root.openssh.authorizedKeys.keys = [
|
||||||
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKbBp2dH2X3dcU1zh+xW3ZsdYROKpJd3n13ssOP092qE joerg@turingmachine"
|
||||||
|
"ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDW+YfsFtRz1h/0ubcKU+LyGfxH505yUkbWa5VtRFNWF2fjTAYGj6o5M4dt+fv1h370HXvvOBtt8sIlWQgMsD10+9mvjdXWhTcpnYPx4yWuyEERE1/1BhItrog6XJKAedbCDpQQ+POoewouiHWVAUfFByPj5RXuE8zKUeIEkGev/QKrKTLnTcS8zFs/yrokf1qYYR571B3U8IPDjpV/Y1GieG3MSNaefIMCwAAup1gPkUA0XZ4A1L7NdEiUEHlceKVu9eYiWUM+wDRunBXnLHubeGyP8KmBA7PNKgml3WWRNTZjqNQk4u9Bl+Qea5eCkD8KI257EqgXYXy0QBWNyF8X j03@l302"
|
||||||
|
];
|
||||||
|
|
||||||
|
|
||||||
|
## Service specific configuration
|
||||||
|
|
||||||
|
users.users."beherbergung" = {
|
||||||
|
group = "beherbergung";
|
||||||
|
isSystemUser = true;
|
||||||
|
createHome = true;
|
||||||
|
home = "/var/lib/beherbergung";
|
||||||
|
openssh.authorizedKeys.keys = config.users.users.root.openssh.authorizedKeys.keys;
|
||||||
|
shell = "${pkgs.bash}/bin/bash";
|
||||||
|
};
|
||||||
|
users.groups."beherbergung" = {};
|
||||||
|
}
|
|
@ -59,6 +59,15 @@
|
||||||
];
|
];
|
||||||
});
|
});
|
||||||
|
|
||||||
|
beherbergung-warhelp = nixpkgs.lib.nixosSystem (lib.mergeAttrs commonAttrs {
|
||||||
|
modules = # commonModules ++
|
||||||
|
[
|
||||||
|
./deployment/hosts/beherbergung-warhelp/configuration.nix
|
||||||
|
./deployment/modules/nix.nix
|
||||||
|
./deployment/modules/default.nix
|
||||||
|
];
|
||||||
|
});
|
||||||
|
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in New Issue