Skip to content


Repository files navigation

Home Network


  • secrets are stored encrypted based on host SSH key
  • Following command allows you to add a key:
ssh root@host "cat /etc/ssh/ssh_host_rsa_key" | ssh-to-pgp -o nixos/secrets/keys/host.asc


  imports = [<nixpkgs/nixos/modules/installer/cd-dvd/installation-cd-minimal.nix>];
  boot.supportedFilesystems = [ "zfs" ]; # Not needed, was originally trying to use zfs but went with ext4
  boot.kernelParams = [ "console=ttyS0,115200n8" ];

To build: nix-build '<nixpkgs/nixos>' -A -I nixos-config=/home/sam/nixos-vm-config/usb.nix

To create USB disk: dd if=/nix/store/23vl3hllb7gyfsgdrbzcyx8gjk75yimm-nixos-17.09.git.d9d1469b813-x86_64-linux.iso/iso/nixos-17.09.git.d9d1469b813-x86_64-linux.iso of=/dev/sdb. Make sure to use the hash path output from previous command.

  • The apu.2c4 has 3 ethernet interfaces:
    1. Cable Modem
    2. untagged LAN
    3. tagged everything else (including LAN)


Preliminary darwin support has been added. It's a three step process:

  1. Install Nix

    curl | sh

  2. Preparation

    nix-build -I network= result/bin/prepare

  3. Deployment

    ./deploy.hs --role ohrid/default.nix

NixOS Configs

NixOS configs are in nixos/

Ones managed by deploy-rs are deployed with deploy .#. Otherwise, configuration.nix and hardware-configuration.nix is symlinked to /etc/nixos/.