SK-Development-Studios/Nixos-Configuration
2
1
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix: obliterate firewall interna;;y
All checks were successful
/ check (push) Successful in 57s
Details
/ deploy (push) Has been skipped
Details

Browse source
This commit is contained in:
Jermeiah S 2025-06-23 20:01:24 -04:00
parent 05bca5b139
commit 7b152ccd16
No known key found for this signature in database
5 changed files with 16 additions and 24 deletions
Download patch file Download diff file Expand all files Collapse all files

5
configurations/nixos/forgejo-runner-tofu/default.nix
View file

@ -29,10 +29,6 @@ in
"gitea-runner" "gitea-runner"
]; ];
}; };
networking.extraHosts = ''
192.168.1.5 git.skdevstudios.com
192.168.1.5 tofu.skdevstudios.com
'';
sops.secrets.forgejo-runners-token = { sops.secrets.forgejo-runners-token = {
# owner = "gitea-runner"; # owner = "gitea-runner";
# group = "gitea-runner"; # group = "gitea-runner";
@ -63,7 +59,6 @@ in
}; };
}; };
networking = { networking = {
firewall.enable = lib.mkForce false;
hostName = "forgejo-runner-tofu"; hostName = "forgejo-runner-tofu";
}; };
environment.systemPackages = with pkgs; [ environment.systemPackages = with pkgs; [

1
configurations/nixos/tofu/default.nix
View file

@ -39,7 +39,6 @@ in
}; };
}; };
networking = { networking = {
firewall.enable = lib.mkForce false;
hostName = "tofu"; hostName = "tofu";
}; };
environment.systemPackages = [ environment.systemPackages = [

6
hosts.json
View file

@ -1,9 +1,9 @@
{ {
"arma-reforger-tofu": "201:61dd:8232:55d9:f6ee:2594:d661:b202", "arma-reforger-tofu": "201:b0c:a372:e09f:dec7:cd9f:4bb1:a046",
"base-tofu": "200:d642:9eee:8f38:d9f3:8272:817d:75da", "base-tofu": "203:852f:b5e9:928b:9534:957d:83a4:3eff",
"forgejo-runner-tofu": "201:ea26:66c7:657b:3599:63a6:c66c:d388", "forgejo-runner-tofu": "201:ea26:66c7:657b:3599:63a6:c66c:d388",
"link-warden-tofu": "200:7e25:554c:6df3:2c5:2de:6f9f:a96d", "link-warden-tofu": "200:7e25:554c:6df3:2c5:2de:6f9f:a96d",
"medchart-tofu": "204:f882:d45f:4bd9:a3a7:bdbc:d370:9a14", "medchart-tofu": "200:691:a5d3:1414:5a67:8372:8af8:6cd2",
"observer-tofu": "200:b938:d405:92df:a6e:1ffd:5213:26b", "observer-tofu": "200:b938:d405:92df:a6e:1ffd:5213:26b",
"tofu": "200:1978:6503:e6f0:2dbe:11fd:74b:ff64" "tofu": "200:1978:6503:e6f0:2dbe:11fd:74b:ff64"
} }

25
modules/nixos/common/incus.nix
View file

@ -14,20 +14,19 @@
}; };
networking = { networking = {
firewall = { # firewall = {
# enable = true; firewall.enable = false;
interfaces = { # interfaces = {
ygg0 = { # ygg0 = {
allowedTCPPorts = [ 22 ]; # allowedTCPPorts = [ 22 ];
allowedUDPPorts = [ ]; # allowedUDPPorts = [ ];
}; # };
}; # };
# Default deny policy for all interfaces (including ygg0) # # Default deny policy for all interfaces (including ygg0)
allowPing = false; # allowedTCPPorts = [ ];
allowedTCPPorts = [ ]; # allowedUDPPorts = [ ];
allowedUDPPorts = [ ]; # };
};
dhcpcd.enable = false; dhcpcd.enable = false;
useDHCP = false; useDHCP = false;
useHostResolvConf = false; useHostResolvConf = false;

3
modules/nixos/default.nix
View file

@ -1,9 +1,8 @@
# This is your nixos configuration. # This is your nixos configuration.
# For home configuration, see /modules/home/* # For home configuration, see /modules/home/*
{ flake, ... }: { flake, pkgs, ... }:
{ {
imports = [ imports = [
flake.inputs.self.nixosModules.common flake.inputs.self.nixosModules.common
]; ];
} }