James/eve-psr-nix0
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Updates!

Browse Source
This commit is contained in:
James Eversole
2025-11-18 13:06:31 -06:00
parent ff550b960e
commit 10c3898b0b
7 changed files with 79 additions and 159 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
nix/application/containers.nix
View File

@@ -23,7 +23,7 @@
};
gitea = {
image = "docker.io/gitea/gitea:1.24.0-rc0-rootless";
image = "docker.io/gitea/gitea:1.25.0-rootless";
volumes = [ "/home/sezycei/srv/containerdata/gitea/data:/var/lib/gitea"
"/home/sezycei/srv/containerdata/gitea/config:/etc/gitea"
];
@@ -146,7 +146,7 @@
};
vaultwarden = {
image = "vaultwarden/server:1.33.2";
image = "vaultwarden/server:1.34.3";
ports = [ "40080:80" ];
volumes = [
"/home/sezycei/srv/containerdata/bitwarden/data:/data"

2
nix/application/nginx.nix
View File

@@ -87,7 +87,6 @@
proxy_set_header X-Request-Base "https://hydra.matri.cx";
'';
};
"jame.su" = static { dir = "/var/www/jame.su"; };
"llm.matri.cx" = proxiedLAN {
target = "http://192.168.0.94:11434";
extra = ''
@@ -102,7 +101,6 @@
"purr.eversole.co" = proxied { target = "http://127.0.0.1:5195"; };
"pw.eversole.co" = proxied { target = "http://127.0.0.1:40080"; };
"sezycei.com" = static { dir = "/var/www/sezycei.com"; };
"snakebelmont.com" = static { dir = "/var/www/snakebelmont.com"; };
"transmission.matri.cx" = proxiedLAN { target = "http://127.0.0.1:9091"; };
"vpn.matri.cx" = {
forceSSL = true;

14
nix/system/dns.nix
View File

@@ -59,7 +59,7 @@
}
}
*.ycombinator.com {
news.ycombinator.com {
template IN A {
answer "{{ .Name }} 0 IN A 127.0.0.1"
}
@@ -70,6 +70,18 @@
answer "{{ .Name }} 0 IN A 127.0.0.1"
}
}
4chan.org {
template IN A {
answer "{{ .Name }} 0 IN A 127.0.0.1"
}
}
*.4chan.org {
template IN A {
answer "{{ .Name }} 0 IN A 127.0.0.1"
}
}
'';
};
}

5
nix/system/hardware.nix
View File

@@ -32,7 +32,10 @@
};
};
swapDevices = [ ];
swapDevices = [{
device = "/swap";
size = (8 * 1024);
}];
networking.useDHCP = lib.mkDefault true;
nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";

4
nix/system/network.nix
View File

@@ -2,8 +2,8 @@
networking = {
hostName = "eve-psr-nix0";
firewall = {
allowedTCPPorts = [ 22 80 443 5000 23231 23232 23233 20443 ];
allowedUDPPorts = [ 53 51820 config.services.tailscale.port 20443 ];
allowedTCPPorts = [ 22 80 443 4242 5000 23231 23232 23233 20443 ];
allowedUDPPorts = [ 53 4242 51820 config.services.tailscale.port 20443 ];
extraCommands = ''
iptables -t nat -A POSTROUTING -s 100.64.0.0/10 -o enp1s0 -j MASQUERADE
'';

38
nix/user/users.nix
View File

@@ -2,22 +2,32 @@
programs.bash.promptInit = ''
PS1='\u@\h:\w\n-> '
'';
users.users = {
sezycei = {
isNormalUser = true;
extraGroups = [ "wheel" "nginx" ];
packages = with pkgs; [ atuin bun byobu purescript stack tmux ];
};
users = {
users = {
sezycei = {
isNormalUser = true;
extraGroups = [ "wheel" "nginx" ];
packages = with pkgs; [ atuin bun byobu purescript stack tmux ];
};
cridycei = {
isNormalUser = true;
extraGroups = [ ];
packages = with pkgs; [ ];
};
cridycei = {
isNormalUser = true;
extraGroups = [ ];
packages = with pkgs; [ ];
};
torrent = {
isNormalUser = true;
homeMode = "770";
torrent = {
isNormalUser = true;
homeMode = "770";
};
reticulum = {
isSystemUser = true;
description = "Reticulum daemon user";
group = "reticulum";
home = "/var/lib/reticulum";
createHome = true;
};
};
groups.reticulum = {};
};
}