jahanson/mochi
1
0
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity Actions

Compare commits

base: jahanson:715239373d4e475769649b8c000e82682d101c07
Branches Tags
jahanson:main
jahanson:talos-pxe-bootstrap
jahanson:update_flake_lock_action
jahanson:renovate/lock-file-maintenance
...
compare: jahanson:a55db1401ad533bfa604da7878a34945b70b7e05
Branches Tags
jahanson:main
jahanson:talos-pxe-bootstrap
jahanson:update_flake_lock_action
jahanson:renovate/lock-file-maintenance

4 commits
715239373d ... a55db1401a

Author SHA1 Message Date
Joseph Hanson
a55db1401a
remove redundant config 2024-07-13 05:05:06 -05:00
Joseph Hanson
ced8aa083e
add/enable Samba and ZFS. 2024-07-13 05:04:49 -05:00
Joseph Hanson
e94ec78209
enable = false 2024-07-13 05:02:58 -05:00
Joseph Hanson
78f9908a26
Add Samba Module. 2024-07-13 05:01:09 -05:00
7 changed files with 103 additions and 10 deletions
Show stats Expand all files Collapse all files

11
nixos/hosts/gandalf/config/samba-config.nix Normal file
View file

@ -0,0 +1,11 @@
{ config, ... }:
''
workgroup = WORKGROUP
server string = gandalf
netbios name = gandalf
security = user
# note: localhost is the ipv6 localhost ::1
hosts allow = 0.0.0.0/0
guest account = nobody
map to guest = bad user
''

44
nixos/hosts/gandalf/config/samba-shares.nix Normal file
View file

@ -0,0 +1,44 @@
{ ... }: {
xen = {
path = "/eru/xen-backups";
browseable = "yes";
"read only" = "no";
"guest ok" = "no";
"create mask" = "0644";
"directory mask" = "0755";
"force user" = "apps";
"force group" = "apps";
};
hansonhive = {
path = "/eru/hansonhive";
browseable = "yes";
"read only" = "no";
"guest ok" = "no";
"create mask" = "0644";
"directory mask" = "0755";
"force user" = "www-data";
"force group" = "www-data";
};
tm_joe = {
path = "/eru/tm_joe";
"valid users" = "jahanson";
public = "no";
writeable = "yes";
"guest ok" = "no";
"force user" = "jahanson";
"fruit:aapl" = "yes";
"fruit:time machine" = "yes";
"vfs objects" = "catia fruit streams_xattr";
};
tm_elisia = {
path = "/eru/tm_elisia";
"valid users" = "emhanson";
public = "no";
writeable = "yes";
"guest ok" = "no";
"force user" = "emhanson";
"fruit:aapl" = "yes";
"fruit:time machine" = "yes";
"vfs objects" = "catia fruit streams_xattr";
};
}

23
nixos/hosts/gandalf/default.nix
View file

@ -10,11 +10,15 @@
]; ];
boot = { boot = {
initrd.availableKernelModules = [ "ehci_pci" "ahci" "mpt3sas" "isci" "usbhid" "usb_storage" "sd_mod" ]; initrd = {
initrd.kernelModules = [ ]; availableKernelModules = [ "ehci_pci" "ahci" "mpt3sas" "isci" "usbhid" "usb_storage" "sd_mod" ];
kernelModules = [ "nfs" ];
supportedFilesystems = [ "nfs" ];
};
kernelModules = [ "kvm-intel" "vfio" "vfio_iommu_type1" "vfio_pci" "vfio_virqfd" ]; kernelModules = [ "kvm-intel" "vfio" "vfio_iommu_type1" "vfio_pci" "vfio_virqfd" ];
extraModulePackages = [ ]; extraModulePackages = [ ];
kernelParams = [ "iommu=pt" "intel_iommu=on" ]; kernelParams = [ "iommu=pt" "intel_iommu=on" "zfs.zfs_arc_max=107374182400" ]; # 100GB
}; };
# Network settings # Network settings
@ -65,6 +69,17 @@
# System settings and services. # System settings and services.
mySystem = { mySystem = {
purpose = "Production"; purpose = "Production";
system.motd.networkInterfaces = [ "enp130s0f0" "enp130s0f1" ]; system = {
motd.networkInterfaces = [ "enp130s0f0" "enp130s0f1" ];
# ZFS
zfs.enable = true;
zfs.mountPoolsAtBoot = [ "eru" ];
# NFS
nfs.enable = true;
# Samba
samba.enable = true;
samba.shares = import ./config/samba-shares.nix { };
samba.extraConfig = import ./config/samba-config.nix { };
};
}; };
} }

2
nixos/modules/nixos/services/haproxy/default.nix
View file

@ -6,7 +6,7 @@ let
in in
{ {
options.mySystem.services.haproxy = { options.mySystem.services.haproxy = {
enable = mkEnableOption "haproxy"; enable = mkEnableOption "haproxy" // { default = false; };
package = mkPackageOption pkgs "haproxy" { }; package = mkPackageOption pkgs "haproxy" { };
config = mkOption { config = mkOption {
type = types.str; type = types.str;

1
nixos/modules/nixos/system/default.nix
View file

@ -8,6 +8,7 @@
./pushover ./pushover
./security.nix ./security.nix
./systempackages.nix ./systempackages.nix
./samba
./time.nix ./time.nix
./zfs.nix ./zfs.nix
]; ];

25
nixos/modules/nixos/system/samba/default.nix Normal file
View file

@ -0,0 +1,25 @@
{ lib, config, ... }:
let
cfg = config.mySystem.services.samba;
in
{
options.mySystem.services.samba = {
enable = lib.mkEnableOption "samba";
extraConfig = lib.mkOption {
type = lib.types.str;
default = "";
};
shares = lib.mkOption {
type = lib.types.attrsOf (lib.types.attrsOf lib.types.unspecified);
default = "";
};
};
config = lib.mkIf cfg.enable {
services.samba.enable = true;
services.samba.extraConfig = cfg.extraConfig;
services.samba.shares = cfg.shares;
services.samba.openFirewall = true;
};
}

3
nixos/profiles/hw-supermicro.nix
View file

@ -2,9 +2,6 @@
with lib; with lib;
{ {
boot = { boot = {
# for managing/mounting nfs
supportedFilesystems = [ "nfs" ];
loader = { loader = {
systemd-boot.enable = true; systemd-boot.enable = true;
efi.canTouchEfiVariables = true; efi.canTouchEfiVariables = true;