27 lines
553 B
Nix
27 lines
553 B
Nix
{ lib, ... }:
|
|
|
|
lib.extra.mkConfig {
|
|
enabledModules = [
|
|
# List of modules to enable
|
|
];
|
|
|
|
enabledServices = [
|
|
# List of services to enable
|
|
"nsd"
|
|
];
|
|
|
|
extraConfig = {
|
|
# TODO : retrieve this address from meta/network.nix
|
|
deployment.targetHost = "45.13.104.26";
|
|
deployment.tags = [ "cst1" ];
|
|
networking.firewall = {
|
|
enable = true;
|
|
logRefusedConnections = lib.mkForce true;
|
|
logRefusedPackets = lib.mkForce true;
|
|
allowedTCPPorts = [ 53 ];
|
|
allowedUDPPorts = [ 53 ];
|
|
};
|
|
};
|
|
|
|
root = ./.;
|
|
}
|