machines/losurdo.nix

   1 # NixOS configuration of losurdo.sourcephile.fr
   2 # Domenico Losurdo (1941-2018), historian for the working class
   3 # https://www.monde-diplomatique.fr/2018/10/FONDU/59128
   4 { inputs, ... }:
   5 {
   6 system = "x86_64-linux";
   7 extraArgs = {
   8   ipv4 = "80.67.180.251";
   9   wireguard = rec {
  10     wg-intra = {
  11       ipv4 = "192.168.42.2";
  12       listenPort = 43642;
  13       #listenPort = null;
  14       persistentKeepalive = 25;
  15       peer = {
  16         publicKey = "xsFFep3k8z0pXgUOz4aryOF8l/KPBSOd4WQA26BkXy0=";
  17         allowedIPs = [ "${wg-intra.ipv4}/32" ];
  18       };
  19     };
  20   };
  21 };
  22 modules = [
  23   (inputs.nixpkgs + "/nixos/modules/profiles/hardened.nix")
  24   ../nixos/defaults.nix
  25   ../nixos/profiles/services/unbound.nix
  26   losurdo/acme.nix
  27   losurdo/debug.nix
  28   losurdo/fail2ban.nix
  29   losurdo/fileSystems.nix
  30   losurdo/hardware.nix
  31   losurdo/networking.nix
  32   losurdo/nginx.nix
  33   #losurdo/postgresql.nix
  34   losurdo/prosody.nix
  35   (inputs.secrets + "/machines/losurdo/prosody.nix")
  36   losurdo/sanoid.nix
  37   losurdo/security.nix
  38   losurdo/syncoid.nix
  39   losurdo/system.nix
  40   losurdo/transmission.nix
  41   losurdo/users.nix
  42   (inputs.secrets + "/machines/losurdo/users.nix")
  43 ];
  44 }