Set up wireguard #84
|
@ -15,9 +15,11 @@
|
||||||
(import ../modules)
|
(import ../modules)
|
||||||
|
|
||||||
./services/conduit.nix
|
./services/conduit.nix
|
||||||
|
./services/foundryvtt.nix
|
||||||
./services/gitea.nix
|
./services/gitea.nix
|
||||||
./services/nextcloud.nix
|
./services/nextcloud.nix
|
||||||
./services/webserver.nix
|
./services/webserver.nix
|
||||||
|
./services/wireguard.nix
|
||||||
./services/starbound.nix
|
./services/starbound.nix
|
||||||
./services/postgres.nix
|
./services/postgres.nix
|
||||||
./sops.nix
|
./sops.nix
|
||||||
|
@ -51,10 +53,8 @@
|
||||||
|
|
||||||
networking = {
|
networking = {
|
||||||
hostName = "tlaternet";
|
hostName = "tlaternet";
|
||||||
|
|
||||||
usePredictableInterfaceNames = false;
|
usePredictableInterfaceNames = false;
|
||||||
useDHCP = false;
|
useDHCP = false;
|
||||||
interfaces.eth0.useDHCP = true;
|
|
||||||
|
|
||||||
firewall = {
|
firewall = {
|
||||||
allowedTCPPorts = [
|
allowedTCPPorts = [
|
||||||
|
@ -95,6 +95,8 @@
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
|
systemd.network.enable = true;
|
||||||
|
|
||||||
time.timeZone = "Europe/London";
|
time.timeZone = "Europe/London";
|
||||||
|
|
||||||
users.users.tlater = {
|
users.users.tlater = {
|
||||||
|
|
|
@ -19,4 +19,42 @@
|
||||||
'';
|
'';
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
|
systemd.network.networks."10-eth0" = {
|
||||||
|
matchConfig.Name = "eth0";
|
||||||
|
|
||||||
|
networkConfig = {
|
||||||
|
DHCP = "no";
|
||||||
|
|
||||||
|
Address = "178.79.137.55/24";
|
||||||
|
Gateway = "178.79.137.1";
|
||||||
|
|
||||||
|
Domains = "ip.linodeusercontent.com";
|
||||||
|
DNS = [
|
||||||
|
"178.79.182.5"
|
||||||
|
"176.58.107.5"
|
||||||
|
"176.58.116.5"
|
||||||
|
"176.58.121.5"
|
||||||
|
"151.236.220.5"
|
||||||
|
"212.71.252.5"
|
||||||
|
"212.71.253.5"
|
||||||
|
"109.74.192.20"
|
||||||
|
"109.74.193.20"
|
||||||
|
"109.74.194.20"
|
||||||
|
"2a01:7e00::9"
|
||||||
|
"2a01:7e00::3"
|
||||||
|
"2a01:7e00::c"
|
||||||
|
"2a01:7e00::5"
|
||||||
|
"2a01:7e00::6"
|
||||||
|
"2a01:7e00::8"
|
||||||
|
"2a01:7e00::b"
|
||||||
|
"2a01:7e00::4"
|
||||||
|
"2a01:7e00::7"
|
||||||
|
"2a01:7e00::2"
|
||||||
|
];
|
||||||
|
|
||||||
|
IPv6PrivacyExtensions = "no";
|
||||||
|
IPv6AcceptRA = "yes";
|
||||||
|
};
|
||||||
|
};
|
||||||
}
|
}
|
||||||
|
|
|
@ -11,6 +11,11 @@
|
||||||
# Use the staging secrets
|
# Use the staging secrets
|
||||||
sops.defaultSopsFile = lib.mkOverride 99 ../../keys/staging.yaml;
|
sops.defaultSopsFile = lib.mkOverride 99 ../../keys/staging.yaml;
|
||||||
|
|
||||||
|
systemd.network.networks."10-eth0" = {
|
||||||
|
matchConfig.Name = "eth0";
|
||||||
|
networkConfig.DHCP = "yes";
|
||||||
|
};
|
||||||
|
|
||||||
# # Set up VM settings to match real VPS
|
# # Set up VM settings to match real VPS
|
||||||
# virtualisation.memorySize = 3941;
|
# virtualisation.memorySize = 3941;
|
||||||
# virtualisation.cores = 2;
|
# virtualisation.cores = 2;
|
||||||
|
|
Loading…
Reference in a new issue