summaryrefslogtreecommitdiffstats
path: root/lass/1systems/neoprism/physical.nix
blob: f2092d9aab73dd5618161872eefd145c25d98ec1 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
{ config, lib, pkgs, ... }:

{

  imports = [
    ./config.nix
    <nixpkgs/nixos/modules/installer/scan/not-detected.nix>
  ];

  disko.devices = import ./disk.nix;
  networking.hostId = "9c0a74ac";

  boot.loader.grub.enable = true;
  boot.loader.grub.version = 2;
  boot.loader.grub.efiSupport = true;
  boot.loader.grub.devices = [ "/dev/nvme0n1" "/dev/nvme1n1" ];
  boot.initrd.availableKernelModules = [ "xhci_pci" "ahci" "nvme" "sd_mod" ];
  boot.kernelModules = [ "kvm-amd" ];
  hardware.cpu.amd.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;

  # networking config
  networking.useNetworkd = true;
  systemd.network = {
    enable = true;
    config = {
      networkConfig.SpeedMeter = true;
    };
    # netdevs.ext-br.netdevConfig = {
    #   Kind = "bridge";
    #   Name = "ext-br";
    #   MACAddress = "a8:a1:59:0f:2d:69";
    # };
    # networks.ext-br = {
    #   name = "ext-br";
    #   address = [
    #     "95.217.192.59/26"
    #     "2a01:4f9:4a:4f1a::1/64"
    #   ];
    #   gateway = [
    #     "95.217.192.1"
    #     "fe80::1"
    #   ];
    # };
    networks.eth0 = {
      #bridge = [ "ext-br" ];
      matchConfig.Name = "eth0";
       address = [
         "95.217.192.59/26"
         "2a01:4f9:4a:4f1a::1/64"
       ];
       gateway = [
         "95.217.192.1"
         "fe80::1"
       ];
    };
  };

  networking.useDHCP = false;
  boot.initrd.network = {
    enable = true;
    ssh = {
      enable = true;
      authorizedKeys = [ config.krebs.users.lass.pubkey ];
      port = 2222;
      hostKeys = [
        (toString <secrets/ssh.id_ed25519>)
        (toString <secrets/ssh.id_rsa>)
      ];
    };
  };
  boot.kernelParams = [
    "net.ifnames=0"
    "ip=dhcp"
    "boot.trace"
  ];
}