103 lines
2.5 KiB
Nix
103 lines
2.5 KiB
Nix
{
|
|
config,
|
|
pkgs,
|
|
lib,
|
|
...
|
|
}:
|
|
{
|
|
custom = {
|
|
desktop.enable = true;
|
|
development.enable = true;
|
|
amdLaptop.enable = true;
|
|
hibernate.enable = true;
|
|
keychron.enable = true;
|
|
onlykey.enable = true;
|
|
trackball.enable = true;
|
|
homeWg = {
|
|
enable = true;
|
|
guaSuffix = "2";
|
|
};
|
|
printing.enable = true;
|
|
bitwarden.enable = true;
|
|
communication.enable = true;
|
|
firefox.enable = true;
|
|
i3.enable = true;
|
|
moonlight.enable = true;
|
|
redshift.enable = true;
|
|
study.enable = true;
|
|
usbAutoMount.enable = true;
|
|
syncthing.enable = true;
|
|
};
|
|
custom = {
|
|
};
|
|
system.autoUpgrade.allowReboot = lib.mkForce false;
|
|
|
|
sops.secrets.priv-netflix-wg.sopsFile = ../secrets/helium/netflix-wg.yaml;
|
|
|
|
networking = {
|
|
wg-quick.interfaces = {
|
|
wg1 = {
|
|
autostart = false;
|
|
address = [ "10.100.0.7/24" ];
|
|
dns = [ "1.1.1.1" ];
|
|
privateKeyFile = config.sops.secrets.priv-netflix-wg.path;
|
|
listenPort = 51820;
|
|
|
|
peers = [
|
|
{
|
|
publicKey = "XSYHg0utIR1j7kRsWFwuWNo4RPD47KP53cVa6qDPtRE=";
|
|
allowedIPs = [
|
|
"0.0.0.0/0"
|
|
"192.168.0.0/24"
|
|
];
|
|
endpoint = "netflix.vsinerva.fi:51821";
|
|
}
|
|
];
|
|
};
|
|
};
|
|
};
|
|
|
|
services.xserver.displayManager.setupCommands = ''
|
|
${pkgs.xorg.xrandr}/bin/xrandr --output DP-1 --auto --pos 0x0 --primary --output eDP-1 --auto --pos 3840x360
|
|
'';
|
|
|
|
system.stateVersion = "23.11";
|
|
boot = {
|
|
resumeDevice = "/dev/mapper/luks-f6e1979b-0dee-4ee9-8170-10490019854b";
|
|
kernelParams = [ "resume_offset=44537856" ];
|
|
};
|
|
|
|
boot.initrd.availableKernelModules = [
|
|
"nvme"
|
|
"xhci_pci"
|
|
"usbhid"
|
|
"usb_storage"
|
|
"sd_mod"
|
|
];
|
|
boot.initrd.kernelModules = [ ];
|
|
boot.kernelModules = [ "kvm-amd" ];
|
|
boot.extraModulePackages = [ ];
|
|
|
|
fileSystems."/" = {
|
|
device = "/dev/disk/by-uuid/25115cdc-3b55-4dbf-a414-98a1a3c44f52";
|
|
fsType = "ext4";
|
|
};
|
|
|
|
boot.initrd.luks.devices."luks-f6e1979b-0dee-4ee9-8170-10490019854b".device =
|
|
"/dev/disk/by-uuid/f6e1979b-0dee-4ee9-8170-10490019854b";
|
|
|
|
fileSystems."/boot" = {
|
|
device = "/dev/disk/by-uuid/6E23-00AF";
|
|
fsType = "vfat";
|
|
options = [
|
|
"fmask=0022"
|
|
"dmask=0022"
|
|
];
|
|
};
|
|
|
|
networking.useDHCP = lib.mkDefault true;
|
|
|
|
nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
|
|
hardware.enableRedistributableFirmware = lib.mkDefault true;
|
|
hardware.cpu.amd.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;
|
|
}
|