44 lines
850 B
Nix
44 lines
850 B
Nix
{ lib, ... }:
|
|
|
|
with lib;
|
|
|
|
{
|
|
imports = [
|
|
../../options/machine.nix
|
|
];
|
|
|
|
config.machine = rec {
|
|
hostName = "DavidsServer";
|
|
administrators = [ { name = "david"; id = 1000; } ];
|
|
mailAccounts = [ "david" ];
|
|
domain = "davids-planet.de";
|
|
allowUnfree = true;
|
|
conffiles = [
|
|
"security"
|
|
"zsh"
|
|
];
|
|
pkgs = [
|
|
"base"
|
|
"server"
|
|
];
|
|
services = [
|
|
"fail2ban"
|
|
"mailserver"
|
|
"mariaDB"
|
|
"nextcloud"
|
|
"nginx"
|
|
"openssh"
|
|
];
|
|
vHosts = (let base = domain; in [
|
|
{ domain = base; service = "nextcloud"; }
|
|
{ domain = "mail.${base}"; service = "mail"; }
|
|
]);
|
|
firewall = {
|
|
allowPing = false;
|
|
allowedUDPPorts = [ 22 80 443 ];
|
|
allowedTCPPorts = [ 80 443 ];
|
|
allowedUDPPortRanges = [];
|
|
allowedTCPPortRanges = [];
|
|
};
|
|
};
|
|
}
|