server-configs/machines/gerd.nix

{
  imports = [
    ./../shared

    ./../shared/applications/server/acme.nix
    ./../shared/applications/server/nginx.nix
    ./../shared/applications/server/postgresql.nix # INCLUDES DATABASE BACKUPS
    ./../shared/applications/server/restic.nix # EXTERNAL BACKUP
    ./../shared/applications/state/postgresql.nix
    ./../shared/applications/state/ssh.nix

    ./gerd/services/fricloud-website.nix
    ./gerd/services/member-website
    ./gerd/services/lldap.nix
    ./gerd/services/authelia
    ./gerd/services/forgejo
    ./gerd/services/teeworlds.nix
    ./gerd/services/murmur.nix
    ./gerd/services/hedgedoc.nix
    ./gerd/services/cyberchef.nix
    ./gerd/services/nextcloud.nix
    ./gerd/services/stalwart
    ./gerd/services/wger

    ./gerd/services/element.nix
    ./gerd/services/matrix-synapse.nix
  ];

  networking.hostName = "gerd";
  networking.hostId = "e1166ac9";

  mine = {
    state.enable = true;
    disks = {
      disk = "/dev/sda";
      pools.rpool.datasets = {
        "safe/svcs/forgejo" = { mountpoint = "/srv/forgejo"; extra.options.quota = "5G"; };
        "safe/svcs/hedgedoc" = { mountpoint = "/srv/hedgedoc"; extra.options.quota = "5G"; };
        "safe/svcs/nextcloud" = { mountpoint = "/srv/nextcloud"; extra.options.quota = "5G"; };
        "safe/svcs/stalwart" = { mountpoint = "/srv/stalwart"; extra.options.quota = "5G"; };
        "safe/svcs/synapse" = { mountpoint = "/srv/synapse"; extra.options.quota = "5G"; };
        "safe/svcs/wger" = { mountpoint = "/srv/wger"; extra.options.quota = "5G"; };
        "safe/svcs/postgresql" = { mountpoint = "/srv/postgresql"; extra.options.quota = "5G"; };
        "backup/postgresql" = { mountpoint = "/media/backup/postgresqlbackup"; extra.options.quota = "5G"; };
      };
    };

    zrepl.enable = true;

    ssh-on-boot.enable = true;

    platforms.hetzner = {
      enable = true;
      network.address = [
       "65.108.221.240/32"
       "2a01:4f9:c012:743e::1/64"
      ];
    };
  };

  # setup zramswap (we are very ram limited)
  zramSwap = {
    enable = true;
    memoryPercent = 75;
    algorithm = "lz4";
  };


  # TMP FIX FOR https://github.com/nix-community/impermanence/issues/229
  boot.initrd.systemd.suppressedUnits = [ "systemd-machine-id-commit.service" ];
  systemd.suppressedSystemUnits = [ "systemd-machine-id-commit.service" ];


  system.stateVersion = "24.11";
}
gerd: small cleanup 2024-08-10 17:45:01 +00:00			`{`
initial commit 2024-08-08 12:16:04 +00:00			`imports = [`
added disko module, common-config, cleanup, etc. 2024-08-08 17:02:02 +00:00			`./../shared`
initial commit 2024-08-08 12:16:04 +00:00
applications.server.acme: defaults + persists state 2024-08-08 17:38:02 +00:00			`./../shared/applications/server/acme.nix`
initial commit 2024-08-08 12:16:04 +00:00			`./../shared/applications/server/nginx.nix`
restic: add daily external backups of all safe/backups 2024-12-07 18:28:04 +00:00			`./../shared/applications/server/postgresql.nix # INCLUDES DATABASE BACKUPS`
			`./../shared/applications/server/restic.nix # EXTERNAL BACKUP`
gerd.postgresql: initial add 2024-08-24 13:01:59 +00:00			`./../shared/applications/state/postgresql.nix`
initial commit 2024-08-08 12:16:04 +00:00			`./../shared/applications/state/ssh.nix`

gerd.fricloud-website: added fricloud.dk website, to get certificate ... as well as having a website at some point 2024-08-10 15:49:02 +00:00			`./gerd/services/fricloud-website.nix`
changed services order 2024-08-14 20:23:58 +00:00			`./gerd/services/member-website`
gerd.authelia: moved to own directory + added nginx proxy example 2024-08-12 12:36:01 +00:00			`./gerd/services/lldap.nix`
			`./gerd/services/authelia`
gerd.forgejo: now uses authelia for authentication + patches for signin 2024-08-12 11:56:34 +00:00			`./gerd/services/forgejo`
gerd: moved teeworlds into own service file 2024-08-08 17:00:37 +00:00			`./gerd/services/teeworlds.nix`
gerd.murmur: adds murmur server 2024-08-09 20:45:15 +00:00			`./gerd/services/murmur.nix`
gerd.hedgedoc: added hedgedoc with ldap support 2024-08-11 11:39:24 +00:00			`./gerd/services/hedgedoc.nix`
gerd.cyberchef: unit service 2024-08-13 13:08:52 +00:00			`./gerd/services/cyberchef.nix`
gerd.nextcloud: added nextcloud! ldap, authelia, encryption! 2024-08-14 19:29:57 +00:00			`./gerd/services/nextcloud.nix`
gerd.starwart: fixed bug in fallback password + added custom patch 2024-08-22 11:42:34 +00:00			`./gerd/services/stalwart`
gerd.wger: init 2024-12-03 07:45:11 +00:00			`./gerd/services/wger`
gerd.matrix-synapse: initial add 2024-08-24 13:02:21 +00:00
gerd.element: inital add of element chat 2024-08-29 17:22:12 +00:00			`./gerd/services/element.nix`
gerd.matrix-synapse: initial add 2024-08-24 13:02:21 +00:00			`./gerd/services/matrix-synapse.nix`
initial commit 2024-08-08 12:16:04 +00:00			`];`

			`networking.hostName = "gerd";`
			`networking.hostId = "e1166ac9";`

added hetzner profile, ssh for luks unlocking, and neededForBoot for state 2024-08-08 12:36:04 +00:00			`mine = {`
			`state.enable = true;`
added disko module, common-config, cleanup, etc. 2024-08-08 17:02:02 +00:00			`disks = {`
			`disk = "/dev/sda";`
			`pools.rpool.datasets = {`
			`"safe/svcs/forgejo" = { mountpoint = "/srv/forgejo"; extra.options.quota = "5G"; };`
gerd.hedgedoc: added hedgedoc with ldap support 2024-08-11 11:39:24 +00:00			`"safe/svcs/hedgedoc" = { mountpoint = "/srv/hedgedoc"; extra.options.quota = "5G"; };`
gerd.nextcloud: added nextcloud! ldap, authelia, encryption! 2024-08-14 19:29:57 +00:00			`"safe/svcs/nextcloud" = { mountpoint = "/srv/nextcloud"; extra.options.quota = "5G"; };`
gerd.stalward: added stalwart mailserver 2024-08-21 11:20:54 +00:00			`"safe/svcs/stalwart" = { mountpoint = "/srv/stalwart"; extra.options.quota = "5G"; };`
gerd.matrix-synapse: initial add 2024-08-24 13:02:21 +00:00			`"safe/svcs/synapse" = { mountpoint = "/srv/synapse"; extra.options.quota = "5G"; };`
gerd.wger: init 2024-12-03 07:45:11 +00:00			`"safe/svcs/wger" = { mountpoint = "/srv/wger"; extra.options.quota = "5G"; };`
gerd.postgresql: initial add 2024-08-24 13:01:59 +00:00			`"safe/svcs/postgresql" = { mountpoint = "/srv/postgresql"; extra.options.quota = "5G"; };`
			`"backup/postgresql" = { mountpoint = "/media/backup/postgresqlbackup"; extra.options.quota = "5G"; };`
added disko module, common-config, cleanup, etc. 2024-08-08 17:02:02 +00:00			`};`
			`};`
added hetzner profile, ssh for luks unlocking, and neededForBoot for state 2024-08-08 12:36:04 +00:00
added zrepl for snapshots 2024-08-08 17:37:50 +00:00			`zrepl.enable = true;`

added disko module, common-config, cleanup, etc. 2024-08-08 17:02:02 +00:00			`ssh-on-boot.enable = true;`
initial commit 2024-08-08 12:16:04 +00:00
added disko module, common-config, cleanup, etc. 2024-08-08 17:02:02 +00:00			`platforms.hetzner = {`
Add a cool game :) 2024-08-08 13:05:39 +00:00			`enable = true;`
added disko module, common-config, cleanup, etc. 2024-08-08 17:02:02 +00:00			`network.address = [`
			`"65.108.221.240/32"`
			`"2a01:4f9:c012:743e::1/64"`
			`];`
			`};`
Add a cool game :) 2024-08-08 13:05:39 +00:00			`};`

gerd: changed zramswap comment 2024-12-03 21:06:25 +00:00			`# setup zramswap (we are very ram limited)`
			`zramSwap = {`
			`enable = true;`
			`memoryPercent = 75;`
			`algorithm = "lz4";`
			`};`


updated sources + patches + more patches 2024-11-05 17:31:01 +00:00			`# TMP FIX FOR https://github.com/nix-community/impermanence/issues/229`
			`boot.initrd.systemd.suppressedUnits = [ "systemd-machine-id-commit.service" ];`
			`systemd.suppressedSystemUnits = [ "systemd-machine-id-commit.service" ];`


bump from nixos-24.11 to nixos-unstable + bumped stateVersion 2024-08-16 12:19:37 +00:00			`system.stateVersion = "24.11";`
initial commit 2024-08-08 12:16:04 +00:00			`}`