diff --git a/hosts/cox/configuration.nix b/hosts/cox/configuration.nix index fe367b82..3019dbe6 100644 --- a/hosts/cox/configuration.nix +++ b/hosts/cox/configuration.nix @@ -14,51 +14,17 @@ ./paperless.nix ]; - boot.loader.generic-extlinux-compatible.enable = lib.mkForce false; - - boot.loader.grub = { - enable = true; - efiSupport = true; - efiInstallAsRemovable = true; - device = "nodev"; - }; - - # Set your time zone. time.timeZone = "Europe/Berlin"; - # The global useDHCP flag is deprecated, therefore explicitly set to false here. - # Per-interface useDHCP will be mandatory in the future, so this generated config - # replicates the default behaviour. networking.useDHCP = false; networking.interfaces.eth0.useDHCP = true; networking.interfaces.wlan0.useDHCP = false; - networking.networkmanager.enable = lib.mkForce false; + networking.networkmanager.enable = false; - boot.loader.systemd-boot.enable = lib.mkForce false; + networking.firewall.allowedTCPPorts = [3689]; + networking.firewall.allowedUDPPorts = [1900]; - nix = { - #package = pkgs.nixFlakes; - extraOptions = lib.optionalString (config.nix.package == pkgs.nixFlakes) "experimental-features = nix-command flakes"; - }; + virtualisation.podman.enable = true; - # List packages installed in system profile. To search, run: - # $ nix search wget - environment.systemPackages = with pkgs; [ - vim - wget - ]; - - # Open ports in the firewall. - networking.firewall.allowedTCPPorts = [2380 6443]; - # networking.firewall.allowedUDPPorts = [ ... ]; - # Or disable the firewall altogether. - # networking.firewall.enable = false; - - # This value determines the NixOS release from which the default - # settings for stateful data, like file locations and database versions - # on your system were taken. It‘s perfectly fine and recommended to leave - # this value at the release version of the first install of this system. - # Before changing this value read the documentation for this option - # (e.g. man configuration.nix or on https://nixos.org/nixos/options.html). - system.stateVersion = "22.11"; # Did you read the comment? + system.stateVersion = "22.11"; } diff --git a/hosts/cox/hardware-configuration.nix b/hosts/cox/hardware-configuration.nix index ab2ea7af..d5e3ff1a 100644 --- a/hosts/cox/hardware-configuration.nix +++ b/hosts/cox/hardware-configuration.nix @@ -13,29 +13,24 @@ ]; boot.initrd.availableKernelModules = ["xhci_pci" "usbhid" "usb_storage" "uas"]; - boot.initrd.kernelModules = []; - boot.kernelModules = []; - boot.extraModulePackages = []; - boot.kernelPackages = pkgs.linuxPackages_6_1; - boot.supportedFilesystems = []; - boot.kernelParams = ["usb-storage.quirks=2109:0716:ouw,174c:55aa:u,2109:2813:ouw,2109:0813:ouw"]; - boot.loader.grub = { - enable = true; - efiSupport = true; - efiInstallAsRemovable = true; - device = "nodev"; + boot.loader = { + timeout = 0; + efi.canTouchEfiVariables = false; + + systemd-boot.enable = false; + generic-extlinux-compatible.enable = false; + + grub = { + enable = true; + efiSupport = true; + efiInstallAsRemovable = true; + device = "nodev"; + }; }; - boot.loader.efi.canTouchEfiVariables = false; - - boot.loader.systemd-boot.enable = false; - boot.loader.generic-extlinux-compatible.enable = false; - - boot.loader.timeout = 0; - boot.initrd.luks.devices."cryptroot" = { device = "/dev/disk/by-uuid/d86a20a6-686c-4bf8-bd3b-911901272742"; keyFile = "/dev/disk/by-id/usb-SanDisk_Cruzer_Blade_03024516121421043657-0:0-part1"; @@ -57,14 +52,6 @@ {device = "/dev/disk/by-label/swap";} ]; - # Enables DHCP on each ethernet and wireless interface. In case of scripted networking - # (the default) this is the recommended approach. When using systemd-networkd it's - # still possible to use this option, but it's recommended to use it in conjunction - # with explicit per-interface declarations with `networking.interfaces..useDHCP`. - #networking.useDHCP = lib.mkDefault true; - networking.interfaces.eth0.useDHCP = lib.mkDefault true; - # networking.interfaces.wlan0.useDHCP = lib.mkDefault true; - nixpkgs.hostPlatform = lib.mkDefault "aarch64-linux"; powerManagement.cpuFreqGovernor = lib.mkDefault "ondemand"; }