forked from DGNum/liminix
0f31afee2b
otherwise incoming ssh gets a bit fraught
46 lines
1.2 KiB
Nix
46 lines
1.2 KiB
Nix
{ config, pkgs, lib, ... } :
|
|
let
|
|
inherit (pkgs) serviceFns;
|
|
svc = config.system.service;
|
|
|
|
in rec {
|
|
imports = [
|
|
../modules/network
|
|
../modules/dnsmasq
|
|
../modules/ssh
|
|
];
|
|
hostname = "hellonet";
|
|
|
|
services.int = svc.network.address.build {
|
|
interface = config.hardware.networkInterfaces.lan;
|
|
family = "inet"; address ="10.3.0.1"; prefixLength = 16;
|
|
};
|
|
|
|
services.sshd = svc.ssh.build { };
|
|
|
|
users.root = {
|
|
# the password is "secret". Use mkpasswd -m sha512crypt to
|
|
# create this hashed password string
|
|
passwd = "$6$y7WZ5hM6l5nriLmo$5AJlmzQZ6WA.7uBC7S8L4o19ESR28Dg25v64/vDvvCN01Ms9QoHeGByj8lGlJ4/b.dbwR9Hq2KXurSnLigt1W1";
|
|
};
|
|
|
|
services.dns =
|
|
let interface = services.int;
|
|
in svc.dnsmasq.build {
|
|
inherit interface;
|
|
ranges = [
|
|
"10.3.0.10,10.3.0.240"
|
|
# ra-stateless: sends router advertisements with the O and A
|
|
# bits set, and provides a stateless DHCP service. The client
|
|
# will use a SLAAC address, and use DHCP for other
|
|
# configuration information.
|
|
"::,constructor:$(output ${interface} ifname),ra-stateless"
|
|
];
|
|
|
|
domain = "example.org";
|
|
};
|
|
|
|
defaultProfile.packages = with pkgs; [
|
|
figlet
|
|
];
|
|
}
|