tristan/nix
1
0
Fork 0
Code Projects Releases Packages Activity
nix/nixos/default.nix
tristan f17722577a nixbook: update
2025-02-19 10:53:27 +00:00

112 lines
2.1 KiB
Nix
Raw Blame History

# https://search.nixos.org/options
{
inputs,
config,
pkgs,
lib,
...
}: let
user = config.user;
in {
imports = [
./modules/podman.nix
];
nix = {
settings = {
experimental-features = ["nix-command" "flakes" "pipe-operators"];
};
settings.trusted-users = ["root" user];
registry.nixpkgs.flake = inputs.nixpkgs;
};
boot.loader.grub = {
enable = true;
device = "nodev";
efiSupport = true;
};
boot.loader.efi.canTouchEfiVariables = true;
networking.networkmanager.enable = true;
programs.nm-applet.enable = true;
# fix nixos-containers
networking.nat.enable = true;
networking.nat.internalInterfaces = ["ve-+"];
networking.nat.externalInterface = "eth0";
networking.networkmanager.unmanaged = ["interface-name:ve-*"];
services.tailscale.enable = true;
networking.firewall.interfaces.tailscale0 = {
allowedTCPPortRanges = [
{
from = 0;
to = 65535;
}
];
};
time.timeZone = lib.mkDefault "Europe/London";
console = {
font = "Lat2-Terminus16";
useXkbConfig = true;
};
services.avahi = {
enable = true;
nssmdns4 = true;
};
i18n.defaultLocale = lib.mkDefault "en_GB.UTF-8";
services.xserver.xkb = {
layout = lib.mkDefault "gb";
options = "caps:escape";
};
system.configurationRevision =
pkgs.lib.mkIf (inputs.self ? rev)
inputs.self.rev;
users.users.${user} = {
isNormalUser = true;
extraGroups = ["wheel" "video" "networkmanager" "kvm"];
initialPassword = "pass";
shell = pkgs.zsh;
};
programs.zsh.enable = true;
environment.variables = {
EDITOR = "nvim";
VISUAL = "nvim";
};
environment.pathsToLink = ["/share/zsh"];
services.gvfs.enable = true;
environment.systemPackages = with pkgs; [
tealdeer
alsa-utils
trash-cli
wget
unzip
fzf
sops
lsof
nix-tree
nix-index
nh
jq
];
boot.kernel.sysctl = {
"net.ipv4.ip_unprivileged_port_start" = 53;
};
services.prometheus.exporters.node = {
enable = true;
enabledCollectors = ["systemd"];
};
}
View git blame Copy permalink