pointfichiers/hosts/OVHCloud/hardware-configuration.nix
2024-09-30 12:12:05 +02:00

39 lines
674 B
Nix

{
modulesPath,
config,
inputs,
pkgs,
...
}: {
imports = [
(modulesPath + "/profiles/qemu-guest.nix")
./disko-config.nix
];
boot.loader.grub = {
efiSupport = true;
efiInstallAsRemovable = true;
};
# Firewall
networking.nftables.enable = true;
networking.firewall = {
enable = true;
allowedTCPPorts = [22 80 443];
};
# Proxy
environment.systemPackages = with pkgs; [
nss.tools
];
services.caddy = {
enable = true;
package = inputs.caddy.packages.${pkgs.system}.caddy;
};
systemd.services.caddy = {
serviceConfig = {
EnvironmentFile = config.sops.templates."caddy.env".path;
};
};
}