motiejus/config
1
Fork 0
Code Packages Releases Activity

download over http

Browse Source
This commit is contained in:
Motiejus Jakštys
2026-01-27 21:25:49 +00:00
parent 18723da186
commit e0ced427d2
2 changed files with 44 additions and 31 deletions
Download Patch File Download Diff File Expand all files Collapse all files

49
hosts/mtworx/configuration.nix
View File

@@ -20,12 +20,12 @@ let
goto ''${selected} goto ''${selected}
:mrescue :mrescue
kernel tftp://10.14.143.1/mrescue/kernel kernel http://10.14.143.1/boot/mrescue/kernel
initrd tftp://10.14.143.1/mrescue/initrd initrd http://10.14.143.1/boot/mrescue/initrd
boot boot
:netbootxyz :netbootxyz
chain tftp://10.14.143.1/netboot.xyz.efi chain http://10.14.143.1/boot/netboot.xyz.efi
:shell :shell
shell shell
@@ -209,7 +209,40 @@ in
}; };
}; };
systemd.services = {
nginx.serviceConfig.BindPaths = [ "/home/motiejus/www:/var/run/nginx/motiejus" ];
};
services = { services = {
nginx = {
enable = true;
defaultListenAddresses = [ "0.0.0.0" ];
virtualHosts = {
"_" = {
default = true;
root = "/var/run/nginx/motiejus";
locations."/".extraConfig = ''
autoindex on;
'';
locations."/boot/" = {
alias = "${tftp-root}/";
extraConfig = ''
autoindex on;
'';
};
};
"go" = {
addSSL = true;
sslCertificate = "${../../shared/certs/go.pem}";
sslCertificateKey = "${../../shared/certs/go.key}";
locations."/".extraConfig = ''
return 301 https://golinks.io$request_uri;
'';
};
};
};
tlp = { tlp = {
enable = true; enable = true;
settings = { settings = {
@@ -234,7 +267,10 @@ in
users.extraGroups.vboxusers.members = [ "motiejus" ]; users.extraGroups.vboxusers.members = [ "motiejus" ];
environment = { environment = {
systemPackages = with pkgs; [ dnsmasq ]; systemPackages = with pkgs; [
dnsmasq
OVMF
];
etc."kolide-k2/secret" = { etc."kolide-k2/secret" = {
mode = "600"; mode = "600";
source = config.age.secrets.kolide-launcher.path; source = config.age.secrets.kolide-launcher.path;
@@ -277,7 +313,10 @@ in
67 # DHCP 67 # DHCP
69 # TFTP 69 # TFTP
]; ];
allowedTCPPorts = [ 53 ]; # DNS allowedTCPPorts = [
53 # DNS
80 # HTTP for boot files
];
}; };
extraCommands = '' extraCommands = ''
# Allow only through WiFi interface (to gateway and internet) # Allow only through WiFi interface (to gateway and internet)

26
shared/work/default.nix
View File

@@ -13,28 +13,6 @@
firewall.allowedTCPPorts = [ 80 ]; firewall.allowedTCPPorts = [ 80 ];
}; };
services.nginx = {
enable = true;
defaultListenAddresses = [ "0.0.0.0" ];
virtualHosts = {
"_" = {
default = true;
root = "/var/run/nginx/motiejus";
locations."/".extraConfig = ''
autoindex on;
'';
};
"go" = {
addSSL = true;
sslCertificate = "${../../shared/certs/go.pem}";
sslCertificateKey = "${../../shared/certs/go.key}";
locations."/".extraConfig = ''
return 301 https://golinks.io$request_uri;
'';
};
};
};
environment.systemPackages = with pkgs; [ environment.systemPackages = with pkgs; [
#swc #swc
turbo turbo
@@ -60,10 +38,6 @@
programs._1password.enable = true; programs._1password.enable = true;
systemd.services = {
nginx.serviceConfig.BindPaths = [ "/home/motiejus/www:/var/run/nginx/motiejus" ];
};
home-manager.users.${config.mj.username} = { home-manager.users.${config.mj.username} = {
home.sessionVariables = { home.sessionVariables = {
GOFLAGS = "-tags=big,integration,cluster_integration"; GOFLAGS = "-tags=big,integration,cluster_integration";