2022-11-04 21:03:23 +00:00
|
|
|
{ ... }: {
|
|
|
|
imports = [
|
|
|
|
./akkoma.nix
|
|
|
|
./hardware-configuration.nix
|
|
|
|
];
|
|
|
|
|
|
|
|
boot.cleanTmpDir = true;
|
|
|
|
zramSwap.enable = true;
|
|
|
|
networking.hostName = "akko";
|
|
|
|
services.openssh.enable = true;
|
|
|
|
users.users.root.openssh.authorizedKeys.keys = [
|
|
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIM6NPbPIcCTzeEsjyx0goWyj6fr2qzcfKCCdOUqg0N/v cadey@kos-mos"
|
|
|
|
];
|
2022-11-04 21:06:40 +00:00
|
|
|
|
2022-11-04 21:34:14 +00:00
|
|
|
i18n.defaultLocale = "en_US.UTF-8";
|
|
|
|
networking.firewall.allowedTCPPorts = [ 80 443 ];
|
|
|
|
networking.firewall.allowedUDPPorts = [ 80 443 ];
|
|
|
|
networking.firewall.trustedInterfaces = [ "tailscale0" ];
|
2022-11-04 21:39:39 +00:00
|
|
|
networking.firewall.checkReversePath = "loose";
|
2022-11-04 21:34:14 +00:00
|
|
|
|
|
|
|
services.tailscale.enable = true;
|
|
|
|
|
2023-06-20 15:08:09 +00:00
|
|
|
services.postgresql = {
|
|
|
|
authentication = ''
|
|
|
|
host replication replication 100.64.0.0/10 md5
|
|
|
|
'';
|
|
|
|
enableTCPIP = true;
|
|
|
|
};
|
|
|
|
|
2022-11-04 21:08:20 +00:00
|
|
|
security.acme.acceptTerms = true;
|
|
|
|
|
2022-11-04 21:06:40 +00:00
|
|
|
services.nginx = {
|
|
|
|
enable = true;
|
|
|
|
|
|
|
|
clientMaxBodySize = "128m";
|
|
|
|
recommendedTlsSettings = true;
|
|
|
|
recommendedOptimisation = true;
|
|
|
|
recommendedGzipSettings = true;
|
|
|
|
};
|
2022-11-04 21:00:40 +00:00
|
|
|
}
|