{ config, ... }: { # networking.hostName = "nixos"; # Define your hostname. # Pick only one of the below networking options. # networking.wireless.enable = true; # Enables wireless support via wpa_supplicant. # networking.networkmanager.enable = true; # Easiest to use and most distros use this by default. networking.hostName = "misaki"; # I like systemd-networkd systemd.network.enable = true; systemd.network.networks."50-wlp2s0" = { matchConfig.name = "wlp2s0"; networkConfig.DHCP = "yes"; linkConfig.RequiredForOnline = "no"; }; networking.tempAddresses = "disabled"; networking.interfaces = { enp4s0f1 = { ipv4.addresses = [{ address = "192.168.1.3"; prefixLength = 24; }]; }; }; networking.defaultGateway = { address = "192.168.1.1"; interface = "enp4s0f1"; }; networking.defaultGateway6 = { address = "fe80::2870:4eff:fe84:d884"; interface = "enp4s0f1"; }; networking.nameservers = [ "192.168.1.3" "45.90.28.93" "45.90.30.93" ]; # This is necessary for ZFS networking.hostId = "5beebabe"; networking.useNetworkd = true; # TODO: static IP @ 192.168.1.2 # Configure network proxy if necessary # networking.proxy.default = "http://user:password@proxy:port/"; # networking.proxy.noProxy = "127.0.0.1,localhost,internal.domain"; # Open ports in the firewall. # networking.firewall.allowedTCPPorts = [ ... ]; # networking.firewall.allowedUDPPorts = [ ... ]; # Or disable the firewall altogether. # TODO: allow some ports networking.firewall = { enable = true; allowPing = true; trustedInterfaces = [ "tailscale0" ]; allowedUDPPorts = [ # DNS 53 config.services.tailscale.port ]; allowedTCPPorts = [ # DNS over TCP 53 # NFSv4 2049 # HTTP(s) 443 80 # iperf3 5201 5301 5401 # NATS 4222 # Prometheus 9001 # Minio 9003 # Minio web 9004 # AFP via Netatalk 548 #9p 564 ]; }; services.avahi = { enable = true; nssmdns4 = true; nssmdns6 = true; ipv6 = true; openFirewall = true; publish = { enable = true; addresses = true; workstation = true; userServices = true; domain = true; }; }; }