Started work on modularized machine config, does not quite work yet. Changed Ophanim's kernel to hardened.
This commit is contained in:
parent
2efae4f888
commit
a0f361425a
10 changed files with 162 additions and 63 deletions
|
|
@ -1,18 +1,18 @@
|
|||
{ config, lib, pkgs, ... }:
|
||||
|
||||
let
|
||||
cfg = import ("/etc/nixos/machines/" + (builtins.replaceStrings ["\n"] [""] (builtins.readFile /etc/hostname)) + "/configuration.nix");
|
||||
firewallcfg = config.machine.networking.firewall;
|
||||
in {
|
||||
networking = {
|
||||
hostName = cfg.conf.networking.hostName;
|
||||
# should probably add some etc file for this....
|
||||
hostName = config.machine.hostName;
|
||||
|
||||
firewall = {
|
||||
enable = true;
|
||||
allowPing = cfg.conf.networking.firewall.allowPing;
|
||||
allowedUDPPorts = cfg.conf.networking.firewall.allowedUDPPorts;
|
||||
allowedTCPPorts = cfg.conf.networking.firewall.allowedTCPPorts;
|
||||
allowedUDPPortRanges = cfg.conf.networking.firewall.allowedUDPPortRanges;
|
||||
allowedTCPPortRanges = cfg.conf.networking.firewall.allowedTCPPortRanges;
|
||||
allowPing = firewallcfg.allowPing;
|
||||
allowedUDPPorts = firewallcfg.allowedUDPPorts;
|
||||
allowedTCPPorts = firewallcfg.allowedTCPPorts;
|
||||
allowedUDPPortRanges = firewallcfg.allowedUDPPortRanges;
|
||||
allowedTCPPortRanges = firewallcfg.allowedTCPPortRanges;
|
||||
};
|
||||
};
|
||||
}
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue