wip vm

2023-07-17 16:35:45 +03:00 · 2023-07-17 16:35:45 +03:00 · 855bffb200
commit 855bffb200
parent 0d804c2adb
2 changed files with 59 additions and 0 deletions
--- a/flake.nix
+++ b/flake.nix
@ -36,6 +36,16 @@
    myData = import ./data.nix;
  in
    {
+      nixosConfigurations.vm = nixpkgs.lib.nixosSystem {
+        system = "x86_64-linux";
+        modules = [
+          ./hosts/vm/configuration.nix
+          ./modules
+        ];
+
+        specialArgs = {inherit myData;} // inputs;
+      };
+
      nixosConfigurations.hel1-a = nixpkgs.lib.nixosSystem {
        system = "x86_64-linux";
        modules = [
--- a/hosts/vm/configuration.nix
+++ b/hosts/vm/configuration.nix
@ -0,0 +1,49 @@
+{
+  config,
+  pkgs,
+  lib,
+  myData,
+  ...
+}: let
+in {
+  mj = {
+    stateVersion = "23.05";
+    timeZone = "UTC";
+  };
+
+  users.users.vm.isSystemUser = true;
+  users.users.vm.initialPassword = "test";
+
+  environment = {
+    systemPackages = with pkgs; [
+      tmux
+      htop
+    ];
+  };
+
+  services = {
+    nsd = {
+      enable = true;
+      zones = {
+        "jakstys.lt.".data = myData.jakstysLTZone;
+      };
+    };
+  };
+
+  networking = {
+    hostName = "vm";
+    domain = "jakstys.lt";
+    firewall = {
+      allowedTCPPorts = [53];
+      allowedUDPPorts = [53];
+      logRefusedConnections = false;
+    };
+  };
+
+  nix = {
+    extraOptions = ''
+      experimental-features = nix-command flakes
+      trusted-users = vm
+    '';
+  };
+}