configuration/default.nix

@@ -15,9 +15,11 @@
     (import ../modules)
 
     ./services/conduit.nix
+    ./services/foundryvtt.nix
     ./services/gitea.nix
     ./services/nextcloud.nix
     ./services/webserver.nix
+    ./services/wireguard.nix
     ./services/starbound.nix
     ./services/postgres.nix
     ./sops.nix
@@ -51,10 +53,8 @@
 
   networking = {
     hostName = "tlaternet";
-
     usePredictableInterfaceNames = false;
     useDHCP = false;
-    interfaces.eth0.useDHCP = true;
 
     firewall = {
       allowedTCPPorts = [
@@ -95,6 +95,8 @@
     };
   };
 
+  systemd.network.enable = true;
+
   time.timeZone = "Europe/London";
 
   users.users.tlater = {

configuration/hardware-specific/linode/default.nix

@@ -19,4 +19,42 @@
       '';
     };
   };
+
+  systemd.network.networks."10-eth0" = {
+    matchConfig.Name = "eth0";
+
+    networkConfig = {
+      DHCP = "no";
+
+      Address = "178.79.137.55/24";
+      Gateway = "178.79.137.1";
+
+      Domains = "ip.linodeusercontent.com";
+      DNS = [
+        "178.79.182.5"
+        "176.58.107.5"
+        "176.58.116.5"
+        "176.58.121.5"
+        "151.236.220.5"
+        "212.71.252.5"
+        "212.71.253.5"
+        "109.74.192.20"
+        "109.74.193.20"
+        "109.74.194.20"
+        "2a01:7e00::9"
+        "2a01:7e00::3"
+        "2a01:7e00::c"
+        "2a01:7e00::5"
+        "2a01:7e00::6"
+        "2a01:7e00::8"
+        "2a01:7e00::b"
+        "2a01:7e00::4"
+        "2a01:7e00::7"
+        "2a01:7e00::2"
+      ];
+
+      IPv6PrivacyExtensions = "no";
+      IPv6AcceptRA = "yes";
+    };
+  };
 }

configuration/hardware-specific/vm.nix

@@ -11,6 +11,11 @@
   # Use the staging secrets
   sops.defaultSopsFile = lib.mkOverride 99 ../../keys/staging.yaml;
 
+  systemd.network.networks."10-eth0" = {
+    matchConfig.Name = "eth0";
+    networkConfig.DHCP = "yes";
+  };
+
   # # Set up VM settings to match real VPS
   # virtualisation.memorySize = 3941;
   # virtualisation.cores = 2;