46 lines
924 B
Nix
46 lines
924 B
Nix
{
|
|
config,
|
|
lib,
|
|
pkgs,
|
|
...
|
|
}: {
|
|
imports = [
|
|
# Include the results of the hardware scan.
|
|
./hardware-configuration.nix
|
|
./acme.nix
|
|
./backup.nix
|
|
./drone.nix
|
|
./home-assistant.nix
|
|
./nextcloud.nix
|
|
./wireguard.nix
|
|
./builder.nix
|
|
./invidious.nix
|
|
./factorio.nix
|
|
|
|
./invoiceplane.nix
|
|
#./tang.nix
|
|
#./whiteboard.nix
|
|
|
|
./libvirt-container.nix
|
|
./monitoring.nix
|
|
|
|
./authelia.nix
|
|
];
|
|
|
|
boot.loader.systemd-boot.enable = lib.mkForce false;
|
|
|
|
time.timeZone = "Europe/Berlin";
|
|
|
|
services.openssh.ports = [2222];
|
|
|
|
networking.nat.enable = true;
|
|
networking.nat.internalIPs = ["10.10.42.0/24" "10.0.1.1"];
|
|
networking.nat.externalInterface = "br0";
|
|
|
|
networking.firewall.enable = lib.mkForce true;
|
|
networking.firewall.allowedTCPPorts = [80 443 2222];
|
|
networking.firewall.allowedUDPPorts = [51899];
|
|
|
|
system.stateVersion = "21.05"; # Did you read the comment?
|
|
}
|