-
Notifications
You must be signed in to change notification settings - Fork 0
/
nuckie.nix
87 lines (74 loc) · 2.18 KB
/
nuckie.nix
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
{ lib, pkgs, ... }: {
myme.machine = {
role = "server";
user = {
name = "myme";
config = {
isNormalUser = true;
initialPassword = "nixos";
extraGroups = [ "libvirtd" "wheel" ]; # Enable ‘sudo’ for the user.
openssh.authorizedKeys.keys = [
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKff0OXZApWIawdc6tymlGjaBXvPKMt4UwPcGF12w3Wz myme@stack"
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIH+9tnNlMesGrK/lDvycgzyS4pPrsGqcGQP6yLCsr/LN myme@Tuple"
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAII1Qsv8MA+cyu7n+4H1kpbVrAmOosJJxjPWAdl08YDvL myme@map"
];
};
profile = {
imports = [
../home-manager
];
myme.irc.enable = true;
};
};
};
nix.binaryCachePublicKeys = [
"tuple:RLwVT0X7XUres7PkgkMLgsMfWhbHP0PYIfQmqJ2M6Ac="
];
boot.loader.systemd-boot.enable = true;
boot.loader.efi.canTouchEfiVariables = true;
boot.initrd.availableKernelModules = [ "xhci_pci" "ahci" "nvme" "usbhid" "usb_storage" "sd_mod" "sdhci_pci" ];
boot.initrd.kernelModules = [ ];
boot.kernelModules = [ "kvm-intel" ];
boot.extraModulePackages = [ ];
fileSystems."/" =
{ device = "/dev/disk/by-uuid/663eb7a2-61a1-497e-8e25-2a9138fbe41c";
fsType = "ext4";
};
fileSystems."/boot" =
{ device = "/dev/disk/by-uuid/60EC-0B67";
fsType = "vfat";
};
swapDevices =
[ { device = "/dev/disk/by-uuid/a7610703-0458-4de9-92dd-229d69dc8936"; }
];
powerManagement.cpuFreqGovernor = lib.mkDefault "powersave";
# high-resolution display
hardware.video.hidpi.enable = lib.mkDefault true;
networking = {
defaultGateway = "192.168.1.1";
nameservers = [ "8.8.8.8" ];
bridges.br0.interfaces = ["eno1"];
interfaces = {
# wlp0s20f3.useDHCP = true;
br0 = {
useDHCP = false;
ipv4.addresses = [{
"address" = "192.168.1.5";
"prefixLength" = 24;
}];
};
};
};
environment.systemPackages = with pkgs; [
virt-manager
];
services.tailscale.enable = true;
# Virtualization
virtualisation = {
libvirtd = {
enable = true;
qemu.ovmf.enable = true;
};
podman.enable = true;
};
}