haccfiles/hosts/parsons/configuration.nix

{ config, lib, pkgs, sources, modules, ... }:

{
  imports = [
   ../../common
    ./hardware.nix
    modules.encboot
    modules.network.nftables modules.nftnat
    ((import sources.nix-hexchen) {}).profiles.nopersist

    ../../services/nextcloud
    ../../services/mattermost.nix
    ../../services/thelounge.nix
  ];

  hexchen.encboot = {
    enable = true;
    dataset = "-a";
    networkDrivers = [ "igb" ];
  };

  boot.loader.grub.enable = true;
  boot.loader.grub.version = 2;
  boot.loader.grub.devices = [ "/dev/nvme0n1" "/dev/nvme1n1" ];
  boot.supportedFilesystems = [ "zfs" ];

  networking.hostId = "b2867696";
  networking.useDHCP = true;
  networking.nftables.enable = true;
  hexchen.nftables.nat.enable = true;
  networking.nat.internalInterfaces = ["ve-+"];
  networking.nat.externalInterface = "enp35s0";

  services.nginx.enable = true;
  services.nginx.recommendedProxySettings = true;
  networking.firewall.allowedTCPPorts = [ 80 443 ];

  services.restic.backups.tardis = {
    passwordFile = "/persist/restic/system";
    s3CredentialsFile = "/persist/restic/system.s3creds";
    paths = [
      "/home"
      "/persist"
    ];
    pruneOpts = [
      "--keep-daily 7"
      "--keep-weekly 5"
      "--keep-monthly 3"
    ];
    repository = "b2:tardis-parsons:system";
  };

  system.stateVersion = "21.05";
}
hosts/parsons: init minimal config 2021-07-29 20:31:52 +00:00			`{ config, lib, pkgs, sources, modules, ... }:`

			`{`
			`imports = [`
services/mattermost: init on parsons 2021-08-06 18:54:40 +00:00			`../../common`
hosts/parsons: init minimal config 2021-07-29 20:31:52 +00:00			`./hardware.nix`
			`modules.encboot`
parsons: add nftables 2021-08-04 13:59:35 +00:00			`modules.network.nftables modules.nftnat`
hosts/parsons: init minimal config 2021-07-29 20:31:52 +00:00			`((import sources.nix-hexchen) {}).profiles.nopersist`
services/nextcloud: init on parsons 2021-08-06 17:40:57 +00:00
			`../../services/nextcloud`
services/thelounge: move to parsons 2021-08-07 12:27:49 +00:00			`../../services/mattermost.nix`
			`../../services/thelounge.nix`
hosts/parsons: init minimal config 2021-07-29 20:31:52 +00:00			`];`

			`hexchen.encboot = {`
			`enable = true;`
			`dataset = "-a";`
			`networkDrivers = [ "igb" ];`
			`};`

			`boot.loader.grub.enable = true;`
			`boot.loader.grub.version = 2;`
			`boot.loader.grub.devices = [ "/dev/nvme0n1" "/dev/nvme1n1" ];`
			`boot.supportedFilesystems = [ "zfs" ];`

			`networking.hostId = "b2867696";`
			`networking.useDHCP = true;`
parsons: add nftables 2021-08-04 13:59:35 +00:00			`networking.nftables.enable = true;`
			`hexchen.nftables.nat.enable = true;`
			`networking.nat.internalInterfaces = ["ve-+"];`
			`networking.nat.externalInterface = "enp35s0";`
hosts/parsons: init minimal config 2021-07-29 20:31:52 +00:00
services/nextcloud: init on parsons 2021-08-06 17:40:57 +00:00			`services.nginx.enable = true;`
			`services.nginx.recommendedProxySettings = true;`
			`networking.firewall.allowedTCPPorts = [ 80 443 ];`

parsons: init backups 2021-08-06 18:49:27 +00:00			`services.restic.backups.tardis = {`
			`passwordFile = "/persist/restic/system";`
			`s3CredentialsFile = "/persist/restic/system.s3creds";`
			`paths = [`
			`"/home"`
			`"/persist"`
			`];`
			`pruneOpts = [`
			`"--keep-daily 7"`
			`"--keep-weekly 5"`
			`"--keep-monthly 3"`
			`];`
			`repository = "b2:tardis-parsons:system";`
			`};`

hosts/parsons: init minimal config 2021-07-29 20:31:52 +00:00			`system.stateVersion = "21.05";`
			`}`