7224ea4bd4
Some checks are pending
🏠 Home Lab CI/CD Pipeline / 🔍 Validate Configuration (push) Waiting to run
🏠 Home Lab CI/CD Pipeline / 🔨 Build Configurations (push) Blocked by required conditions
🏠 Home Lab CI/CD Pipeline / 🔒 Security Audit (push) Blocked by required conditions
🏠 Home Lab CI/CD Pipeline / 📚 Documentation & Modules (push) Blocked by required conditions
🏠 Home Lab CI/CD Pipeline / 🔄 Update Dependencies (push) Waiting to run
🏠 Home Lab CI/CD Pipeline / 🚀 Deploy Configuration (push) Blocked by required conditions
🏠 Home Lab CI/CD Pipeline / 📢 Notify Results (push) Blocked by required conditions
34 lines
741 B
Nix
34 lines
741 B
Nix
# Networking Configuration - sleeper-service
|
|
# Xeon file server network setup
|
|
{ config, pkgs, ... }:
|
|
|
|
{
|
|
# Network configuration
|
|
networking = {
|
|
hostName = "sleeper-service";
|
|
networkmanager.enable = true;
|
|
nftables.enable = true;
|
|
|
|
# Firewall configuration for file server
|
|
firewall = {
|
|
enable = true;
|
|
allowedTCPPorts = [
|
|
22 # SSH
|
|
# Add other ports as needed for file sharing services
|
|
];
|
|
allowedUDPPorts = [ ];
|
|
};
|
|
};
|
|
|
|
# VPN and remote access
|
|
services.tailscale.enable = true;
|
|
|
|
# SSH configuration for headless server
|
|
services.openssh = {
|
|
enable = true;
|
|
settings = {
|
|
PermitRootLogin = "no";
|
|
PasswordAuthentication = false;
|
|
};
|
|
};
|
|
}
|