63 lines
914 B
Nix
63 lines
914 B
Nix
{
|
|
config,
|
|
hostName,
|
|
lib,
|
|
modulesPath,
|
|
pkgs,
|
|
...
|
|
}:
|
|
{
|
|
## MODULES & IMPORTS ##
|
|
|
|
## MODULES & IMPORTS ##
|
|
imports = [
|
|
# Common Modules
|
|
# ../../common/acme
|
|
../../common/ssh
|
|
|
|
# Import hardware configuration.
|
|
./hardware.nix
|
|
|
|
# Local Modules
|
|
./modules/frp
|
|
# ./modules/nginx
|
|
];
|
|
|
|
## BOOTLOADER ##
|
|
|
|
boot.loader.systemd-boot.enable = true;
|
|
boot.loader.efi.canTouchEfiVariables = true;
|
|
|
|
## NETWORKING ##
|
|
networking.firewall = {
|
|
allowedTCPPorts = [
|
|
22
|
|
80
|
|
443
|
|
4040
|
|
25565
|
|
];
|
|
allowedUDPPorts = [ 4040 ];
|
|
};
|
|
|
|
## SSH Override ##
|
|
services.openssh = {
|
|
settings = {
|
|
PermitRootLogin = lib.mkForce "yes";
|
|
};
|
|
};
|
|
|
|
## ENVIORMENT & PACKAGES ##
|
|
environment.systemPackages = with pkgs; [
|
|
git
|
|
micro
|
|
openssh
|
|
ranger
|
|
sshfs
|
|
wget
|
|
];
|
|
|
|
environment.variables = {
|
|
HOSTNAME = hostName;
|
|
};
|
|
}
|