6f4068ff5c
- acme-dns for internal DNS-01 challenges - nsd for zone rz.ens.wtf - unbound for internal usage and resolutions - dokuwiki for network documentation - gitea for this very repository and many more - keycloak for SSO over all services - monitoring (netdata, grafana/influxdb soon) - netboot for easy provisioning of other machines Co-authored-by: Ryan Lahfa <ryan.lahfa@ens.fr>
28 lines
540 B
Nix
28 lines
540 B
Nix
{ pkgs, ... }:
|
|
{
|
|
# Auto upgrades
|
|
system.autoUpgrade = {
|
|
enable = true;
|
|
allowReboot = false;
|
|
};
|
|
|
|
# Auto GC and store optimizations
|
|
nix = {
|
|
trustedUsers = [ "root" "gab" ];
|
|
gc = {
|
|
automatic = true;
|
|
dates = "weekly";
|
|
options = "--delete-older-than 90d";
|
|
};
|
|
optimise.automatic = true;
|
|
extraOptions = ''
|
|
min-free = ${toString (100 * 1024 * 1024)}
|
|
max-free = ${toString (1024 * 1024 * 1024)}
|
|
'';
|
|
};
|
|
|
|
services.locate = {
|
|
enable = true;
|
|
interval = "04:05";
|
|
};
|
|
}
|