63 lines
1.3 KiB
Nix
Executable File
63 lines
1.3 KiB
Nix
Executable File
# Edit this configuration file to define what should be installed on
|
|
# your system. Help is available in the configuration.nix(5) man page, on
|
|
# https://search.nixos.org/options and in the NixOS manual (`nixos-help`).
|
|
|
|
{
|
|
config,
|
|
namespace,
|
|
...
|
|
}:
|
|
{
|
|
imports = [
|
|
./adguard.nix
|
|
./boot.nix
|
|
# ./networking.nix - moved to modules/nixos/network
|
|
./sops.nix
|
|
];
|
|
|
|
${namespace} = {
|
|
impermanence.enable = true;
|
|
hardware = {
|
|
disko.enable = true;
|
|
raspberry-pi = {
|
|
enable = true;
|
|
variant = "4";
|
|
};
|
|
};
|
|
user = {
|
|
name = "matt";
|
|
passwordFile = config.sops.secrets."pi4/matt-password".path;
|
|
mutableUsers = false;
|
|
extraGroups = [
|
|
"docker"
|
|
"video"
|
|
];
|
|
};
|
|
network = {
|
|
hostName = "pi4";
|
|
ipv4 = {
|
|
method = "manual";
|
|
address = "10.0.1.2/24";
|
|
gateway = "10.0.1.1";
|
|
dns = "1.1.1.1";
|
|
};
|
|
firewall = {
|
|
enable = true;
|
|
allowPing = true;
|
|
allowedTCPPorts = [ 53 ];
|
|
allowedUDPPorts = [ 53 ];
|
|
};
|
|
wifi = {
|
|
enable = true;
|
|
powersave = false;
|
|
};
|
|
};
|
|
};
|
|
|
|
# Root user configuration - explicit to avoid conflicts with home-manager
|
|
users.users.root = {
|
|
isSystemUser = true;
|
|
isNormalUser = false;
|
|
};
|
|
}
|