nekomimi.pet / nixcfg
my nix configs for my servers and desktop
fork atom

update valefar

nekomimi.pet d616cdca 542bfcb7

options
unified split
Changed files
+23 -7
hosts
valefar
default.nix
hardware.nix
+19 -4
hosts/valefar/default.nix
··· 6 6 # Host-specific hardware 7 7 ./hardware.nix 8 8 ./secrets.nix 9 - ../../common/nvidia.nix 9 + #../../common/nvidia.nix 10 10 11 11 # Common modules shared across hosts 12 12 ../../common/system.nix ··· 44 44 45 45 services.resolved = { 46 46 enable = true; 47 - dnssec = "true"; 47 + dnssec = "false"; 48 48 domains = [ "~." ]; 49 - fallbackDns = [ "10.0.0.210" "1.0.0.1#one.one.one.one" ]; 50 - dnsovertls = "true"; 49 + fallbackDns = [ "10.0.0.210" "1.1.1.1" ]; 50 + dnsovertls = "false"; 51 51 }; 52 52 53 53 boot.supportedFilesystems = [ "zfs" ]; ··· 56 56 boot.zfs.extraPools = [ "garage" "storage" ]; 57 57 boot.zfs.devNodes = "/dev/disk/by-id"; 58 58 boot.zfs.forceImportAll = true; 59 + 60 + /*boot.kernelParams = [ "ip=dhcp" ]; 61 + boot.initrd = { 62 + availableKernelModules = [ "r8169" ]; 63 + network = { 64 + enable = true; 65 + ssh = { 66 + enable = true; 67 + port = 22; 68 + authorizedKeys = [ "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ0pU82lV9dSjkgYbdh9utZ5CDM2dPN70S5fBqN1m3Pb" ]; 69 + hostKeys = [ "/etc/secrets/initrd/ssh_host_rsa_key" ]; 70 + shell = "/bin/cryptsetup-askpass"; 71 + }; 72 + }; 73 + };*/ 59 74 60 75 systemd.services.zfs-import-cache.enable = false; 61 76 systemd.services.zfs-import-scan.enable = true;
+4 -3
hosts/valefar/hardware.nix
··· 8 8 [ (modulesPath + "/installer/scan/not-detected.nix") 9 9 ]; 10 10 11 - boot.initrd.availableKernelModules = [ "xhci_pci" "ahci" "nvme" "usbhid" "uas" "sd_mod" ]; 11 + boot.initrd.availableKernelModules = [ "xhci_pci" "ahci" "nvme" "mpt3sas" "sd_mod" ]; 12 12 boot.initrd.kernelModules = [ ]; 13 - boot.kernelModules = [ "kvm-intel" ]; 13 + boot.kernelModules = [ "kvm-amd" ]; 14 14 boot.extraModulePackages = [ ]; 15 15 16 16 fileSystems."/" = { ··· 38 38 39 39 # Fan Control 40 40 hardware.fancontrol = { 41 - enable = true; 41 + enable = false; 42 42 config = '' 43 43 INTERVAL=10 44 44 DEVPATH=hwmon1=devices/platform/nct6775.2592 hwmon2=devices/platform/coretemp.0 ··· 59 59 # still possible to use this option, but it's recommended to use it in conjunction 60 60 # with explicit per-interface declarations with `networking.interfaces.<interface>.useDHCP`. 61 61 networking.useDHCP = lib.mkDefault true; 62 + hardware.cpu.amd.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware; 62 63 # networking.interfaces.enp0s31f6.useDHCP = lib.mkDefault true; 63 64 }