Personal-use NixOS configuration
Get some stuff working
+74
-16
+30
hosts/index/config/nfs.nix
+30
hosts/index/config/nfs.nix
···
1
+
{ flakeRoot, ... }:
2
+
3
+
{
4
+
imports = [
5
+
(flakeRoot + /modules/server/nfs.nix)
6
+
];
7
+
8
+
services.nfs.server = {
9
+
nproc = 16;
10
+
};
11
+
12
+
fileSystems."/export/media" = {
13
+
depends = [
14
+
"/mnt/data"
15
+
];
16
+
17
+
device = "/mnt/data/media";
18
+
fsType = "none";
19
+
20
+
options = [
21
+
"bind"
22
+
"x-systemd.requires=zfs-mount.service"
23
+
];
24
+
};
25
+
26
+
services.nfs.server.exports = ''
27
+
/export *(fsid=0,ro,insecure)
28
+
/export/media *(rw,insecure,async,no_subtree_check,nohide,all_squash,anonuid=974,anongid=442)
29
+
'';
30
+
}
+2
hosts/index/config/web/searx.nix
+2
hosts/index/config/web/searx.nix
+12
-10
hosts/index/default.nix
+12
-10
hosts/index/default.nix
···
15
15
(flakeRoot + /modules/common)
16
16
(flakeRoot + /modules/common/boot/systemd-boot.nix)
17
17
18
-
#(flakeRoot + /modules/server/nfs.nix)
19
18
(flakeRoot + /modules/server/openssh.nix)
19
+
20
+
(flakeRoot + /packages/server/iperf.nix)
20
21
21
22
./config/zfs.nix
23
+
./config/nfs.nix
22
24
23
-
#./config/databases/mysql.nix
24
-
#./config/databases/postgresql.nix
25
+
./config/databases/mysql.nix
26
+
./config/databases/postgresql.nix
25
27
26
-
#./config/groupware/maddy.nix
28
+
./config/groupware/maddy.nix
27
29
28
30
#./config/media/audiobookshelf.nix
29
31
#./config/media/emby.nix
30
-
#./config/media/navidrome.nix
32
+
./config/media/navidrome.nix
31
33
32
34
#./config/torrenting/rtorrent.nix
33
35
#./config/torrenting/soulseek.nix
34
36
35
-
#./config/web/caddy.nix
36
-
#./config/web/forgejo.nix
37
-
#./config/web/miniflux.nix
38
-
#./config/web/searx.nix
39
-
#./config/web/vaultwarden.nix
37
+
./config/web/caddy.nix
38
+
./config/web/forgejo.nix
39
+
./config/web/miniflux.nix
40
+
./config/web/searx.nix
41
+
./config/web/vaultwarden.nix
40
42
#./config/web/wakapi.nix
41
43
42
44
./users
+4
hosts/index/users/default.nix
+4
hosts/index/users/default.nix
+3
-1
hosts/index/users/encode42.nix
+3
-1
hosts/index/users/encode42.nix
+2
modules/server/nfs.nix
+2
modules/server/nfs.nix
+6
-1
packages/server/caddy/default.nix
+6
-1
packages/server/caddy/default.nix
···
24
24
"github.com/BadAimWeeb/caddy-uwsgi-transport@v0.0.0-20240317192154-74a1008b9763"
25
25
];
26
26
27
-
hash = "sha256-THbBk1z14F6LhsI8feUgZxCPIFehLXlNkpxidl0soYc=";
27
+
hash = "sha256-LbqG168rWLMtNY0dQcedZiKuXkR6cLLNRf3S/F9dV7Y=";
28
28
};
29
29
};
30
+
31
+
networking.firewall.allowedTCPPorts = [
32
+
80
33
+
443
34
+
];
30
35
}
+1
-1
packages/server/caddy/modules/ssl.nix
+1
-1
packages/server/caddy/modules/ssl.nix
+7
packages/server/iperf.nix
+7
packages/server/iperf.nix
+2
packages/server/web/searx.nix
+2
packages/server/web/searx.nix
+2
-2
packages/server/web/vaultwarden.nix
+2
-2
packages/server/web/vaultwarden.nix
···
55
55
56
56
EXTENDED_LOGGING = false;
57
57
58
-
ROCKET_ADDRESS = "unix:${socket}";
58
+
ROCKET_ADDRESS = "127.0.0.1"; # "unix:${socket}"; Supposedly, this is supported. However, it is not.
59
59
DATABASE_URL = "postgresql:///vaultwarden?host=/run/postgresql";
60
60
};
61
61
···
63
63
};
64
64
65
65
services.caddy.virtualHosts = flakeLib.mkProxies hosts ''
66
-
reverse_proxy unix/${socket}
66
+
reverse_proxy :8000 # unix/${socket}
67
67
'';
68
68
}