nixos-conf/machine-confs/exoplasim.nix

{ config, pkgs, ... }:
{
  imports = [ ../base.nix ];

  # Networking conf including WireGuard
  networking = {
    hostName = "exoplasim";

    firewall.allowedUDPPorts = [ 51821 ];

    wg-quick.interfaces = {
      wg0 = {
        address = [ "10.0.0.1/24" ];
        privateKeyFile = "/root/wireguard-keys/privatekey";
        listenPort = 51821;

        peers = [
          #          {
          #            publicKey = "TODO";
          #            presharedKeyFile = "/root/wireguard-keys/psk";
          #            allowedIPs = [ "10.0.0.2/32" ];
          #          }
        ];
      };
    };
  };

  # User worker
  users.users.worker = {
    isNormalUser = true;
    home = "/home/worker";
    description = "ExoPlaSim Worker";
    uid = 1001;
    extraGroups = [ "networkmanager" ];
    openssh.authorizedKeys.keys = config.users.users.root.openssh.authorizedKeys.keys ++ [
      # TODO add user-specific key
    ];
  };
  users.groups.worker.gid = 1001;

  system.autoUpgrade.allowReboot = pkgs.lib.mkForce false;

  programs.rust-motd = {
    enable = true;
    enableMotdInSSHD = true;
    refreshInterval = "*:*:0/5";
    settings = {
      banner = {
        color = "green";
        command = ''
          ${pkgs.figlet}/bin/figlet "ExoPlaSim Worker";
          ${pkgs.coreutils-full}/bin/echo -e "$(${pkgs.procps}/bin/ps --User worker --user worker --forest --format start_time=STARTED,time=CPU_TIME,%cpu,%mem,comm)";
        '';
      };
      uptime.prefix = "System has been running for";
      filesystems = {
        Main = "/";
      };
      memory.swap_pos = "beside";
    };
  };

  # HARDWARE SPECIFIC
  services.qemuGuest.enable = true;
}
Add minimal exoplasim VM conf 2024-11-06 22:14:25 +02:00			`{ config, pkgs, ... }:`
			`{`
			`imports = [ ../base.nix ];`

Remove temp public key for wireguard 2024-11-08 15:41:54 +02:00			`# Networking conf including WireGuard`
Some foundation for exoplasim worker 2024-11-08 13:21:13 +02:00			`networking = {`
			`hostName = "exoplasim";`

WG config test for exoplasim 2024-11-08 14:39:53 +02:00			`firewall.allowedUDPPorts = [ 51821 ];`
Some foundation for exoplasim worker 2024-11-08 13:21:13 +02:00
WG config test for exoplasim 2024-11-08 14:39:53 +02:00			`wg-quick.interfaces = {`
			`wg0 = {`
			`address = [ "10.0.0.1/24" ];`
			`privateKeyFile = "/root/wireguard-keys/privatekey";`
			`listenPort = 51821;`

			`peers = [`
Remove temp public key for wireguard 2024-11-08 15:41:54 +02:00			`# {`
			`# publicKey = "TODO";`
			`# presharedKeyFile = "/root/wireguard-keys/psk";`
			`# allowedIPs = [ "10.0.0.2/32" ];`
			`# }`
WG config test for exoplasim 2024-11-08 14:39:53 +02:00			`];`
			`};`
			`};`
Some foundation for exoplasim worker 2024-11-08 13:21:13 +02:00			`};`

			`# User worker`
			`users.users.worker = {`
			`isNormalUser = true;`
			`home = "/home/worker";`
			`description = "ExoPlaSim Worker";`
			`uid = 1001;`
			`extraGroups = [ "networkmanager" ];`
WG config test for exoplasim 2024-11-08 14:39:53 +02:00			`openssh.authorizedKeys.keys = config.users.users.root.openssh.authorizedKeys.keys ++ [`
			`# TODO add user-specific key`
			`];`
Some foundation for exoplasim worker 2024-11-08 13:21:13 +02:00			`};`
			`users.groups.worker.gid = 1001;`

ExoPlaSim motd 2024-11-11 01:20:48 +02:00			`system.autoUpgrade.allowReboot = pkgs.lib.mkForce false;`

			`programs.rust-motd = {`
			`enable = true;`
			`enableMotdInSSHD = true;`
			`refreshInterval = "::0/5";`
			`settings = {`
			`banner = {`
			`color = "green";`
			`command = ''`
			`${pkgs.figlet}/bin/figlet "ExoPlaSim Worker";`
			`${pkgs.coreutils-full}/bin/echo -e "$(${pkgs.procps}/bin/ps --User worker --user worker --forest --format start_time=STARTED,time=CPU_TIME,%cpu,%mem,comm)";`
			`'';`
			`};`
			`uptime.prefix = "System has been running for";`
			`filesystems = {`
			`Main = "/";`
			`};`
			`memory.swap_pos = "beside";`
			`};`
			`};`

Add minimal exoplasim VM conf 2024-11-06 22:14:25 +02:00			`# HARDWARE SPECIFIC`
			`services.qemuGuest.enable = true;`
			`}`