Bun/nixos-config
1
0
Fork 1
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Get a lot closer to the server working

Browse source
This commit is contained in:
Jimbo 2025-01-01 14:32:15 -05:00
parent a48cb3515b
commit a7181f6a85
7 changed files with 10 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

1
hosts/kitty/boot/default.nix
View file

@ -2,6 +2,7 @@
{
boot = {
kernelPackages = pkgs.linuxPackages_hardened;
initrd.systemd.services.root-reset.enable = lib.mkForce false;
swraid = {
enable = true;
mdadmConf = "MAILADDR contact@${config.domains.p2}";

4
hosts/kitty/default.nix
View file

@ -1,4 +1,4 @@
{ ... }:
{ lib, ... }:
{
imports = [
./boot
@ -13,6 +13,8 @@
hostId = "38ba3f57";
};
environment.persistence."/persist".enable = lib.mkForce false;
system = {
desktop.enable = false;
server.enable = true;

4
hosts/kitty/firewall/default.nix
View file

@ -31,12 +31,12 @@
chain POSTROUTING {
type nat hook postrouting priority 100; policy accept;
oifname "${config.ips.netInt}" masquerade
oifname "eno1" masquerade
}
'';
};
};
# Enable IP forwarding for the server configuration
boot.kernel.sysctl."net.ipv4.ip_forward" = lib.mkIf config.system.firewall.server.enable 1;
boot.kernel.sysctl."net.ipv4.ip_forward" = 1;
}