geir/home-lab
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Clean up networking configuration structure
Some checks are pending
🏠 Home Lab CI/CD Pipeline / 🔍 Validate Configuration (push) Waiting to run
Details
🏠 Home Lab CI/CD Pipeline / 🔨 Build Configurations (push) Blocked by required conditions
Details
🏠 Home Lab CI/CD Pipeline / 🔒 Security Audit (push) Blocked by required conditions
Details
🏠 Home Lab CI/CD Pipeline / 📚 Documentation & Modules (push) Blocked by required conditions
Details
🏠 Home Lab CI/CD Pipeline / 🔄 Update Dependencies (push) Waiting to run
Details
🏠 Home Lab CI/CD Pipeline / 🚀 Deploy Configuration (push) Blocked by required conditions
Details
🏠 Home Lab CI/CD Pipeline / 📢 Notify Results (push) Blocked by required conditions
Details

Browse source 
- Remove leftover networking.nix files from machine directories
- ZFS configuration moved to machine-specific configuration where it belongs
- Network module now contains only networking-related configuration
- Improved separation of concerns between network and machine configs
This commit is contained in:
Geir Okkenhaug Jerstad 2025-06-05 15:08:22 +02:00
parent 73998431e8
commit 05b81f93b7
4 changed files with 5 additions and 73 deletions
Download patch file Download diff file Expand all files Collapse all files

6
machines/congenital-optimist/configuration.nix
View file

@ -47,7 +47,11 @@
}
];
};
# ZFS services for this machine
services.zfs = {
autoScrub.enable = true;
trim.enable = true;
};
# Basic system configuration
nixpkgs.config.allowUnfree = true;
system.stateVersion = "23.11"; # DO NOT CHANGE - maintains data compatibility

33
machines/congenital-optimist/networking.nix
View file

@ -1,33 +0,0 @@
# Networking Configuration - congenital-optimist
# AMD Threadripper workstation network setup
{ config, pkgs, ... }:
{
# Network configuration
networking = {
hostName = "congenital-optimist";
hostId = "8425e349";
networkmanager.enable = true;
nftables.enable = true;
# Firewall configuration for workstation
firewall = {
enable = true;
allowedTCPPorts = [
22 # SSH
9091 # Transmission RPC
];
allowedUDPPorts = [ 22 ];
};
};
# VPN and remote access
services.tailscale.enable = true;
services.openssh.enable = true;
# ZFS services for this machine
services.zfs = {
autoScrub.enable = true;
trim.enable = true;
};
}

34
machines/sleeper-service/networking.nix
View file

@ -1,34 +0,0 @@
# Networking Configuration - sleeper-service
# Xeon file server network setup
{ config, pkgs, ... }:
{
# Network configuration
networking = {
hostName = "sleeper-service";
networkmanager.enable = true;
nftables.enable = true;
# Firewall configuration for file server
firewall = {
enable = true;
allowedTCPPorts = [
22 # SSH
# Add other ports as needed for file sharing services
];
allowedUDPPorts = [ ];
};
};
# VPN and remote access
services.tailscale.enable = true;
# SSH configuration for headless server
services.openssh = {
enable = true;
settings = {
PermitRootLogin = "no";
PasswordAuthentication = false;
};
};
}

5
modules/network/network-congenital-optimist.nix
View file

@ -18,9 +18,4 @@
];
};
# ZFS services for this machine
services.zfs = {
autoScrub.enable = true;
trim.enable = true;
};
}