69 lines
1.5 KiB
Nix
Executable File
69 lines
1.5 KiB
Nix
Executable File
# Edit this configuration file to define what should be installed on
|
|
# your system. Help is available in the configuration.nix(5) man page, on
|
|
# https://search.nixos.org/options and in the NixOS manual (`nixos-help`).
|
|
|
|
{
|
|
namespace,
|
|
...
|
|
}:
|
|
{
|
|
imports = [
|
|
./adguard.nix
|
|
./boot.nix
|
|
./sops.nix
|
|
];
|
|
|
|
nixpkgs.overlays = [
|
|
(_self: super: {
|
|
# This is used in (modulesPath + "/hardware/all-firmware.nix") when at least
|
|
# enableRedistributableFirmware is enabled
|
|
inherit (super) raspberrypiWirelessFirmware;
|
|
# Some derivations want to use it as an input,
|
|
# e.g. raspberrypi-dtbs, omxplayer, sd-image-* modules
|
|
inherit (super) raspberrypifw;
|
|
})
|
|
];
|
|
|
|
${namespace} = {
|
|
impermanence.enable = true;
|
|
hardware = {
|
|
disko.enable = true;
|
|
raspberry-pi = {
|
|
enable = true;
|
|
variant = "4";
|
|
};
|
|
};
|
|
user = {
|
|
name = "matt";
|
|
mutableUsers = false;
|
|
extraGroups = [
|
|
"docker"
|
|
"video"
|
|
];
|
|
};
|
|
network = {
|
|
hostName = "pi4";
|
|
ipv4 = {
|
|
method = "manual";
|
|
address = "10.0.1.2/24";
|
|
gateway = "10.0.1.1";
|
|
dns = "1.1.1.1";
|
|
interface = "enabcm6e4ei0";
|
|
};
|
|
firewall = {
|
|
enable = true;
|
|
allowPing = true;
|
|
allowedTCPPorts = [ 53 ];
|
|
allowedUDPPorts = [ 53 ];
|
|
};
|
|
networkmanger = {
|
|
profiles = {
|
|
"static-enabcm6e4ei0" = {
|
|
type = "ethernet";
|
|
};
|
|
};
|
|
};
|
|
};
|
|
};
|
|
}
|