migrate firewall config increase security

2025-06-19 16:21:37 -04:00 · 2025-06-19 16:21:37 -04:00 · 4ecc6a4ae6
commit 4ecc6a4ae6
parent 1cf7f2c054
4 changed files with 55 additions and 3 deletions
--- a/configurations/nixos/base-image/default.nix
+++ b/configurations/nixos/base-image/default.nix
@ -0,0 +1,36 @@
+{
+  flake,
+  modulesPath,
+  config,
+  ...
+}:
+
+let
+  inherit (flake) inputs;
+  inherit (inputs) self;
+in
+{
+  imports = [
+    self.nixosModules.default
+    "${modulesPath}/virtualisation/lxc-container.nix"
+  ];
+  deploy = {
+    enable = false;
+  };
+
+  services = {
+    tty-ips.enable = true;
+  };
+  networking = {
+    yggdrasil = {
+      enable = true;
+      AllowedPublicKeys = [
+        "d0e265fcf663451ae9bc048dc1297749819ce9d48042a986f2866c15a779a074"
+      ];
+    };
+    hostName = "tofu";
+  };
+  environment.systemPackages = [
+  ];
+  system.stateVersion = "25.05";
+}