blob: 5aefa02c57defd07a3d9728a98ef794664c4a334 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
|
{ config
, pkgs
, nixos-hardware
, ...
}: {
imports = [
(nixos-hardware + "/common/pc/ssd")
(nixos-hardware + "/common/cpu/amd")
(nixos-hardware + "/common/cpu/amd/pstate.nix")
./settings/base.nix
./settings/configuration/berlin.nix
./settings/configuration/british-english.nix
./settings/configuration/nix.nix
./settings/configuration/user.nix
./settings/hardware/audio.nix
./settings/hardware/bare-metal.nix
./settings/hardware/personal-computer.nix
./settings/hardware/mouse.nix
./settings/hardware/systemd-boot.nix
./settings/hardware/nvidia-gpu.nix
./settings/hardware/keyboard.nix
./settings/services/syncthing.nix
./settings/services/zeroconf.nix
./settings/user-interface.nix
./settings/programs/base.nix
./settings/programs/gnupg.nix
./settings/programs/xfce.nix
./settings/programs/shell.nix
./settings/gaming.nix
];
services.xserver.screenSection = ''
Option "MetaModes" "2560x1440_165 +0+0 { ForceCompositionPipeline=On }"
'';
services.xserver.monitorSection = ''
Option "DPMS"
'';
boot.kernelPackages = pkgs.linuxPackages_xanmod;
boot.extraModulePackages = with config.boot.kernelPackages; [
zenpower
];
boot.initrd.availableKernelModules = [ "nvme" "xhci_pci" "ahci" "usbhid" "sd_mod" ];
boot.initrd.kernelModules = [ ];
boot.kernelModules = [ "kvm-amd" ];
fileSystems = {
"/" = {
device = "/dev/disk/by-partlabel/nixos-root";
fsType = "f2fs";
options = [ "atgc" "gc_merge" "lazytime" "nodiscard" ];
};
"/boot" = {
device = "/dev/disk/by-partlabel/efi-boot";
fsType = "vfat";
};
"/home" = {
device = "/dev/disk/by-partlabel/home";
fsType = "ext4";
options = [ "lazytime" "nodiscard" ];
};
"/mnt/data" = {
device = "/dev/disk/by-partlabel/data";
fsType = "ntfs3";
options = [ "uid=1000" "gid=100" "x-systemd-automount" "nofail" ];
};
};
swapDevices = [
{
label = "swap";
discardPolicy = "once";
}
];
services.xserver = {
xautolock.enable = pkgs.lib.mkForce false;
};
services.postgresql = {
enableTCPIP = true;
authentication = ''
# TYPE DATABASE USER ADDRESS METHOD
host all all samenet md5
'';
};
services.openssh = {
enable = true;
openFirewall = false;
startWhenNeeded = true;
};
systemd.services."ssh-no-sleep@" = {
bindsTo = [ "sshd@%i.service" ];
wantedBy = [ "sshd@.service" ];
serviceConfig.ExecStart = "${pkgs.systemd}/bin/systemd-inhibit --mode block --what sleep --who 'ssh session '%I --why 'session still active' ${pkgs.coreutils}/bin/sleep infinity";
};
# needed to resolve local hostname overrides
services.resolved.dnssec = "false";
networking = {
useNetworkd = true;
interfaces.enp6s0 = {
useDHCP = true;
};
};
networking.nftables = {
enable = true;
};
networking.firewall = {
allowedTCPPorts = [ 80 443 139 445 1024 ];
extraInputRules = ''
ip saddr 172.30.42.0/24 accept
ip6 saddr { fd00::/8, fe80::/10 } accept
'';
};
networking = {
hostName = "prefect";
};
system.stateVersion = "23.05";
}
|