# TODO: revamp to use the same framework as the other VMs { pkgs, ... }: let address = "129.199.146.101"; in { imports = [ ./_hardware-configuration.nix ./immich.nix ./nginx.nix ./photoprism.nix ]; deployment.targetHost = address; deployment.tags = [ "cst1" ]; networking = { firewall.allowedTCPPorts = [ 22 80 443 8007 ]; firewall.allowedUDPPorts = [ ]; useNetworkd = true; }; time.timeZone = "Europe/Paris"; environment.systemPackages = with pkgs; [ neovim ]; users.users.root.openssh.authorizedKeys.keys = [ "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDMBW7rTtfZL9wtrpCVgariKdpN60/VeAzXkh9w3MwbO julien@enigma" "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKrijwPlb7KQkYPLznMPVzPPT69cLzhEsJzZi9tmxzTh cst1@x270" ]; security.acme.acceptTerms = true; systemd.network = { config.routeTables = { he = 100; mwan = 110; }; networks = { "10-ens18" = { name = "ens18"; networkConfig = { Description = "ENS uplink"; Address = [ "129.199.146.101/24" ]; Gateway = "129.199.146.254"; LLDP = true; }; }; }; }; }