dot_testing/boxes/netbox/default.nix

{ lib, config, pkgs, ... }:

{
  imports =
    [
      ./hardware-configuration.nix
      ../../modules/bootstrap.nix

      ./radicale.nix
      ./ssh.nix
      ./gitea.nix
      ./radicale.nix
      ./vaultwarden.nix
      ./sslh.nix
      ./rss2email.nix
      ./fail2ban.nix
      ./nginx.nix
      ./franklincce.nix
    ];

  # nix optimization
  nix.optimise = {
    automatic = true;
    dates = [ "03:45" ];
  };


  time.timeZone = "America/Chicago";

  i18n.defaultLocale = "en_US.UTF-8";
  console = {
    font = "Lat2-Terminus16";
    keyMap = "us";
  };

  environment.systemPackages = with pkgs; [
    python3
    curl
    htop
    git
    tree
    dig
    htop
    neovim
  ];

  system = {
    copySystemConfiguration = true;
    stateVersion = "23.05"; # don't change this, lol
  };

  boot.loader = {
    grub.enable = true;
    grub.device = "/dev/vda";
  };

  users.users.ryan = {
    openssh.authorizedKeys.keys = [
      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKbhM3wj0oqjR3pUaZgpfX4Xo4dlzvBTbQ48zHyg7Pwx usr" # x230t
      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILBGh1FHPneg7PCDkhMs2BCJPTIRVJkRTKpOj1w02ydD usr" # copernicus
      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGrpVDLQszFKoYbvYKRyVTTpehxR0BVU47SXkz39l2wK usr" # mainsail
      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHZw5bg0TrvSkW/XQa4c+2iLbIKOxfMGbjy5Nb3HSfBv usr" # phone
    ];
    isNormalUser = true;
    extraGroups = [ "wheel" "docker" ];
  };

  networking = {
    usePredictableInterfaceNames = false;
    networkmanager.enable = true;
    hostName = "netbox";

    firewall = {
      enable = true;
      allowedTCPPorts = [ 80 443 ];
    };
  };
}
preparing for netbox 2023-07-07 23:44:40 -05:00			`{ lib, config, pkgs, ... }:`

some server chagnes 2024-02-25 20:29:31 -06:00			`{`
preparing for netbox 2023-07-07 23:44:40 -05:00			`imports =`
			`[`
changes 2024-01-18 04:28:32 -06:00			`./hardware-configuration.nix`
			`../../modules/bootstrap.nix`
modularize netbox 2024-06-20 20:00:55 -05:00
			`./radicale.nix`
			`./ssh.nix`
			`./gitea.nix`
			`./radicale.nix`
			`./vaultwarden.nix`
			`./sslh.nix`
			`./rss2email.nix`
			`./fail2ban.nix`
			`./nginx.nix`
add franklincce and docker on a trial basis 2024-06-23 14:08:44 -05:00			`./franklincce.nix`
preparing for netbox 2023-07-07 23:44:40 -05:00			`];`

automatically clean up nix store on mainsail 2024-04-26 14:14:11 -05:00			`# nix optimization`
			`nix.optimise = {`
			`automatic = true;`
			`dates = [ "03:45" ];`
			`};`

changes 2024-01-18 04:28:32 -06:00
			`time.timeZone = "America/Chicago";`

			`i18n.defaultLocale = "en_US.UTF-8";`
			`console = {`
			`font = "Lat2-Terminus16";`
			`keyMap = "us";`
			`};`

			`environment.systemPackages = with pkgs; [`
readd python3 -- it's needed 2024-06-15 21:58:09 -05:00			`python3`
changes 2024-01-18 04:28:32 -06:00			`curl`
			`htop`
			`git`
			`tree`
			`dig`
			`htop`
add cgit 2024-01-19 18:56:48 -06:00			`neovim`
changes 2024-01-18 04:28:32 -06:00			`];`

modularize netbox 2024-06-20 20:00:55 -05:00			`system = {`
			`copySystemConfiguration = true;`
			`stateVersion = "23.05"; # don't change this, lol`
lock the stuff down 2024-01-21 12:40:51 -06:00			`};`

modularize netbox 2024-06-20 20:00:55 -05:00			`boot.loader = {`
			`grub.enable = true;`
			`grub.device = "/dev/vda";`
add rss feeds and fail2ban 2023-12-03 21:46:37 -06:00			`};`

create the ryan user, accessable from outside 2023-12-18 13:21:51 -06:00			`users.users.ryan = {`
add stuff 2024-01-21 12:14:04 -06:00			`openssh.authorizedKeys.keys = [`
changes 2024-01-24 23:42:18 -06:00			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKbhM3wj0oqjR3pUaZgpfX4Xo4dlzvBTbQ48zHyg7Pwx usr" # x230t`
add copernicus to the allowed hosts 2024-07-22 16:30:37 -05:00			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILBGh1FHPneg7PCDkhMs2BCJPTIRVJkRTKpOj1w02ydD usr" # copernicus`
changes 2024-01-24 23:42:18 -06:00			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGrpVDLQszFKoYbvYKRyVTTpehxR0BVU47SXkz39l2wK usr" # mainsail`
add phone key to ssh 2024-04-25 17:10:06 -05:00			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHZw5bg0TrvSkW/XQa4c+2iLbIKOxfMGbjy5Nb3HSfBv usr" # phone`
add stuff 2024-01-21 12:14:04 -06:00			`];`
create the ryan user, accessable from outside 2023-12-18 13:21:51 -06:00			`isNormalUser = true;`
			`extraGroups = [ "wheel" "docker" ];`
			`};`

modularize netbox 2024-06-20 20:00:55 -05:00			`networking = {`
			`usePredictableInterfaceNames = false;`
			`networkmanager.enable = true;`
			`hostName = "netbox";`
preparing for netbox 2023-07-07 23:44:40 -05:00
modularize netbox 2024-06-20 20:00:55 -05:00			`firewall = {`
			`enable = true;`
			`allowedTCPPorts = [ 80 443 ];`
add suggested changes via NixOS discord 2023-07-08 16:22:38 -05:00			`};`
emergency changes 2023-12-03 19:50:26 -06:00			`};`
preparing for netbox 2023-07-07 23:44:40 -05:00			`}`