cascade/nixos
5
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
a08f6e85bb
nixos/modules/server.nix

61 lines
1.4 KiB
Nix
Raw Normal View History

initial import
2024-07-14 06:13:04 +00:00
# Edit this configuration file to define what should be installed on
# your system. Help is available in the configuration.nix(5) man page
# and in the NixOS manual (accessible by running nixos-help).
{ config, pkgs, lib, flake-inputs, ... }:
{
networking.networkmanager.enable = false;
virtualisation = {
kvmgt.enable = true;
libvirtd = {
enable = true;
qemu = {
runAsRoot = true;
verbatimConfig = ''
cgroup_device_acl = ["/dev/kvmfr0", "/dev/kvm"]
'';
add corenet module and basic coredns + Corefile
2024-07-17 04:40:44 +00:00
swtpm = {
enable = true;
};
initial import
2024-07-14 06:13:04 +00:00
};
};
containers = {
enable = true;
policy = {
default = [ { type = "insecureAcceptAnything"; } ];
transports = {
docker-daemon = {
"" = [ { type = "insecureAcceptAnything"; } ];
};
};
};
};
};
add corenet module and basic coredns + Corefile
2024-07-17 04:40:44 +00:00
hardware.nvidia-container-toolkit.enable = true;
initial import
2024-07-14 06:13:04 +00:00
services.openssh.enable = true;
networking.firewall.enable = true;
environment.systemPackages = [ pkgs.nfs-utils ];
services.openiscsi = {
enable = true;
name = "${config.networking.hostName}-initiatorhost";
};
systemd.network.wait-online.enable = lib.mkDefault false;
networking.useDHCP = false;
add corenet module and basic coredns + Corefile
2024-07-17 04:40:44 +00:00
#services.tcsd.enable = true;
security.sudo = {
enable = true;
extraRules = [
{ users = [ "%wheel" ];
commands = [ { command = "ALL"; options = [ "NOPASSWD" ]; } ];
}
];
};
initial import
2024-07-14 06:13:04 +00:00
}
Reference in New Issue Copy Permalink