jahanson/mochi
1
0
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity Actions

Compare commits

base: jahanson:a55db1401ad533bfa604da7878a34945b70b7e05
Branches Tags
jahanson:main
jahanson:talos-pxe-bootstrap
jahanson:update_flake_lock_action
jahanson:renovate/lock-file-maintenance
..
compare: jahanson:715239373d4e475769649b8c000e82682d101c07
Branches Tags
jahanson:main
jahanson:talos-pxe-bootstrap
jahanson:update_flake_lock_action
jahanson:renovate/lock-file-maintenance

No commits in common. "a55db1401ad533bfa604da7878a34945b70b7e05" and "715239373d4e475769649b8c000e82682d101c07" have entirely different histories.
a55db1401a ... 715239373d

7 changed files with 10 additions and 103 deletions
Show stats Expand all files Collapse all files

11
nixos/hosts/gandalf/config/samba-config.nix
View file

@ -1,11 +0,0 @@
{ config, ... }:
''
workgroup = WORKGROUP
server string = gandalf
netbios name = gandalf
security = user
# note: localhost is the ipv6 localhost ::1
hosts allow = 0.0.0.0/0
guest account = nobody
map to guest = bad user
''

44
nixos/hosts/gandalf/config/samba-shares.nix
View file

@ -1,44 +0,0 @@
{ ... }: {
xen = {
path = "/eru/xen-backups";
browseable = "yes";
"read only" = "no";
"guest ok" = "no";
"create mask" = "0644";
"directory mask" = "0755";
"force user" = "apps";
"force group" = "apps";
};
hansonhive = {
path = "/eru/hansonhive";
browseable = "yes";
"read only" = "no";
"guest ok" = "no";
"create mask" = "0644";
"directory mask" = "0755";
"force user" = "www-data";
"force group" = "www-data";
};
tm_joe = {
path = "/eru/tm_joe";
"valid users" = "jahanson";
public = "no";
writeable = "yes";
"guest ok" = "no";
"force user" = "jahanson";
"fruit:aapl" = "yes";
"fruit:time machine" = "yes";
"vfs objects" = "catia fruit streams_xattr";
};
tm_elisia = {
path = "/eru/tm_elisia";
"valid users" = "emhanson";
public = "no";
writeable = "yes";
"guest ok" = "no";
"force user" = "emhanson";
"fruit:aapl" = "yes";
"fruit:time machine" = "yes";
"vfs objects" = "catia fruit streams_xattr";
};
}

27
nixos/hosts/gandalf/default.nix
View file

@ -10,20 +10,16 @@
]; ];
boot = { boot = {
initrd = { initrd.availableKernelModules = [ "ehci_pci" "ahci" "mpt3sas" "isci" "usbhid" "usb_storage" "sd_mod" ];
availableKernelModules = [ "ehci_pci" "ahci" "mpt3sas" "isci" "usbhid" "usb_storage" "sd_mod" ]; initrd.kernelModules = [ ];
kernelModules = [ "nfs" ];
supportedFilesystems = [ "nfs" ];
};
kernelModules = [ "kvm-intel" "vfio" "vfio_iommu_type1" "vfio_pci" "vfio_virqfd" ]; kernelModules = [ "kvm-intel" "vfio" "vfio_iommu_type1" "vfio_pci" "vfio_virqfd" ];
extraModulePackages = [ ]; extraModulePackages = [ ];
kernelParams = [ "iommu=pt" "intel_iommu=on" "zfs.zfs_arc_max=107374182400" ]; # 100GB kernelParams = [ "iommu=pt" "intel_iommu=on" ];
}; };
# Network settings # Network settings
networking = { networking = {
hostName = "gandalf"; hostName = "gandalf";
hostId = "e2fc95cd"; hostId = "e2fc95cd";
useDHCP = false; # needed for bridge useDHCP = false; # needed for bridge
networkmanager.enable = true; networkmanager.enable = true;
@ -69,17 +65,6 @@
# System settings and services. # System settings and services.
mySystem = { mySystem = {
purpose = "Production"; purpose = "Production";
system = { system.motd.networkInterfaces = [ "enp130s0f0" "enp130s0f1" ];
motd.networkInterfaces = [ "enp130s0f0" "enp130s0f1" ];
# ZFS
zfs.enable = true;
zfs.mountPoolsAtBoot = [ "eru" ];
# NFS
nfs.enable = true;
# Samba
samba.enable = true;
samba.shares = import ./config/samba-shares.nix { };
samba.extraConfig = import ./config/samba-config.nix { };
};
}; };
} }

2
nixos/modules/nixos/services/haproxy/default.nix
View file

@ -6,7 +6,7 @@ let
in in
{ {
options.mySystem.services.haproxy = { options.mySystem.services.haproxy = {
enable = mkEnableOption "haproxy" // { default = false; }; enable = mkEnableOption "haproxy";
package = mkPackageOption pkgs "haproxy" { }; package = mkPackageOption pkgs "haproxy" { };
config = mkOption { config = mkOption {
type = types.str; type = types.str;

1
nixos/modules/nixos/system/default.nix
View file

@ -8,7 +8,6 @@
./pushover ./pushover
./security.nix ./security.nix
./systempackages.nix ./systempackages.nix
./samba
./time.nix ./time.nix
./zfs.nix ./zfs.nix
]; ];

25
nixos/modules/nixos/system/samba/default.nix
View file

@ -1,25 +0,0 @@
{ lib, config, ... }:
let
cfg = config.mySystem.services.samba;
in
{
options.mySystem.services.samba = {
enable = lib.mkEnableOption "samba";
extraConfig = lib.mkOption {
type = lib.types.str;
default = "";
};
shares = lib.mkOption {
type = lib.types.attrsOf (lib.types.attrsOf lib.types.unspecified);
default = "";
};
};
config = lib.mkIf cfg.enable {
services.samba.enable = true;
services.samba.extraConfig = cfg.extraConfig;
services.samba.shares = cfg.shares;
services.samba.openFirewall = true;
};
}

3
nixos/profiles/hw-supermicro.nix
View file

@ -2,6 +2,9 @@
with lib; with lib;
{ {
boot = { boot = {
# for managing/mounting nfs
supportedFilesystems = [ "nfs" ];
loader = { loader = {
systemd-boot.enable = true; systemd-boot.enable = true;
efi.canTouchEfiVariables = true; efi.canTouchEfiVariables = true;