Fediversity/infra/common/nixos/networking.nix

{ config, lib, ... }:

let
  inherit (lib) mkDefault;

in
{
  config = {
    services.openssh = {
      enable = true;
      settings.PasswordAuthentication = false;
    };

    networking = {
      hostName = config.procolixVm.name;
      domain = config.procolixVm.domain;

      ## REVIEW: Do we actually need that, considering that we have static IPs?
      useDHCP = mkDefault true;

      interfaces = {
        eth0 = {
          ipv4 = {
            addresses = [
              {
                inherit (config.procolixVm.ipv4) address prefixLength;
              }
            ];
          };
          ipv6 = {
            addresses = [
              {
                inherit (config.procolixVm.ipv6) address prefixLength;
              }
            ];
          };
        };
      };

      defaultGateway = {
        address = config.procolixVm.ipv4.gateway;
        interface = "eth0";
      };
      defaultGateway6 = {
        address = config.procolixVm.ipv6.gateway;
        interface = "eth0";
      };

      nameservers = [
        "95.215.185.6"
        "95.215.185.7"
        "2a00:51c0::5fd7:b906"
        "2a00:51c0::5fd7:b907"
      ];

      firewall.enable = false;
      nftables = {
        enable = true;
        rulesetFile = ./nftables-ruleset.nft;
      };
    };
  };
}
Factorise networking config of vm02179 into `infra/common` 2024-11-20 15:07:09 +01:00			`{ config, lib, ... }:`

			`let`
Move old `procolix.vm` options to new `procolixVm` ones 2025-01-31 17:15:12 +01:00			`inherit (lib) mkDefault;`
Factorise networking config of vm02179 into `infra/common` 2024-11-20 15:07:09 +01:00
			`in`
Move networking config of vm02116 to `infra/common` 2024-11-20 15:04:48 +01:00			`{`
			`config = {`
Factorise networking config of vm02187 into `infra/common` 2024-11-20 13:29:44 +01:00			`services.openssh = {`
			`enable = true;`
			`settings.PasswordAuthentication = false;`
			`};`
Move networking config of vm02116 to `infra/common` 2024-11-20 15:04:48 +01:00
			`networking = {`
Move old `procolix.vm` options to new `procolixVm` ones 2025-01-31 17:15:12 +01:00			`hostName = config.procolixVm.name;`
			`domain = config.procolixVm.domain;`
Move nftables ruleset to separate file 2024-11-20 15:51:09 +01:00
`networking.useDHCP` 2024-11-20 16:48:36 +01:00			`## REVIEW: Do we actually need that, considering that we have static IPs?`
			`useDHCP = mkDefault true;`

Move networking config of vm02116 to `infra/common` 2024-11-20 15:04:48 +01:00			`interfaces = {`
			`eth0 = {`
			`ipv4 = {`
			`addresses = [`
			`{`
Move old `procolix.vm` options to new `procolixVm` ones 2025-01-31 17:15:12 +01:00			`inherit (config.procolixVm.ipv4) address prefixLength;`
Move networking config of vm02116 to `infra/common` 2024-11-20 15:04:48 +01:00			`}`
			`];`
			`};`
			`ipv6 = {`
			`addresses = [`
			`{`
Move old `procolix.vm` options to new `procolixVm` ones 2025-01-31 17:15:12 +01:00			`inherit (config.procolixVm.ipv6) address prefixLength;`
Move networking config of vm02116 to `infra/common` 2024-11-20 15:04:48 +01:00			`}`
			`];`
			`};`
			`};`
			`};`
Move nftables ruleset to separate file 2024-11-20 15:51:09 +01:00
Move networking config of vm02116 to `infra/common` 2024-11-20 15:04:48 +01:00			`defaultGateway = {`
Move old `procolix.vm` options to new `procolixVm` ones 2025-01-31 17:15:12 +01:00			`address = config.procolixVm.ipv4.gateway;`
Move networking config of vm02116 to `infra/common` 2024-11-20 15:04:48 +01:00			`interface = "eth0";`
			`};`
			`defaultGateway6 = {`
Move old `procolix.vm` options to new `procolixVm` ones 2025-01-31 17:15:12 +01:00			`address = config.procolixVm.ipv6.gateway;`
Move networking config of vm02116 to `infra/common` 2024-11-20 15:04:48 +01:00			`interface = "eth0";`
			`};`
Move nftables ruleset to separate file 2024-11-20 15:51:09 +01:00
Move networking config of vm02116 to `infra/common` 2024-11-20 15:04:48 +01:00			`nameservers = [`
Factorise networking config of vm02179 into `infra/common` 2024-11-20 15:07:09 +01:00			`"95.215.185.6"`
Move networking config of vm02116 to `infra/common` 2024-11-20 15:04:48 +01:00			`"95.215.185.7"`
Factorise networking config of vm02179 into `infra/common` 2024-11-20 15:07:09 +01:00			`"2a00:51c0::5fd7:b906"`
Follow @kevin's recommendations 2024-11-21 11:32:48 +01:00			`"2a00:51c0::5fd7:b907"`
Move networking config of vm02116 to `infra/common` 2024-11-20 15:04:48 +01:00			`];`
Move nftables ruleset to separate file 2024-11-20 15:51:09 +01:00
Move networking config of vm02116 to `infra/common` 2024-11-20 15:04:48 +01:00			`firewall.enable = false;`
			`nftables = {`
			`enable = true;`
Move nftables ruleset to separate file 2024-11-20 15:51:09 +01:00			`rulesetFile = ./nftables-ruleset.nft;`
Move networking config of vm02116 to `infra/common` 2024-11-20 15:04:48 +01:00			`};`
			`};`
			`};`
			`}`