heimserver/configuration.nix

@@ -14,6 +14,7 @@
   imports = [
     # Include the results of the hardware scan.
     ./hardware-configuration.nix
+    specialArgs.inputs.vscode-server.nixosModules.default
   ];
 
   # System basics
@@ -44,20 +45,19 @@
   # i18n.defaultLocale = "en_US.UTF-8";
 
   # Networking
-  networking = {
+  networking.hostName = "nixos-server";
-    hostName = "heimserver";
+  networking.useDHCP = false;
-    useDHCP = false;
+  networking.hostId = "5506a8e7";
-    hostId = "5506a8e7";
+  networking.interfaces.eth0.ipv4.addresses = [
-    interfaces.eth0.ipv4.addresses = [
     {
       address = "192.168.69.69";
       prefixLength = 24;
     }
   ];
-    defaultGateway = "192.168.69.1";
+  networking.defaultGateway = "192.168.69.1";
-    #nameservers = [ "1.1.1.1" ];
+  #networking.nameservers = [ "1.1.1.1" ];
-    firewall.enable = true;
+  networking.firewall.enable = true;
-    firewall.allowedTCPPorts = [
+  networking.firewall.allowedTCPPorts = [
     22
     53
     80
@@ -74,15 +74,15 @@
     8555 # frigate rtsp
     2055 # ntopng sink
     8182 # ntopng frontend
+    3000 # adguardhome frontend
     8183 # adguardhome frontend
     9000
   ];
-    firewall.allowedUDPPorts = [
+  networking.firewall.allowedUDPPorts = [
     53
     8555 # frigate rtsp
     2055 # ntopng sink
   ];
-  };
 
   # Users
   users.users.root = {
@@ -100,6 +100,7 @@
 
   # Packages
   environment.systemPackages = with pkgs; [
+    vim
     nano
     wget
     curl
@@ -227,12 +228,6 @@
     };
   };
 
-  # systemd.services.forgejo.preStart =
-  #   ''
-  #     ${lib.getExe cfg.package} admin user create --admin --email "root@localhost" --username crazychaoz --password temp123 || true
-  #     '';
- 
-
   # services.borgbackup.jobs."forgejo" = {
   #   paths = config.services.forgejo.repositoryRoot;
   #   repo = "/backup/forgejo";
@@ -261,6 +256,10 @@
     };
   };
 
+  # systemd.services.forgejo.preStart =
+  #   ''
+  #     ${lib.getExe cfg.package} admin user create --admin --email "root@localhost" --username crazychaoz --password temp123 || true
+  #     '';
 
   # Virtualisation
   virtualisation = {
@@ -308,19 +307,7 @@
         "--privileged"
       ];
     };
-    containers.mosquitto = {
+
-      #autoStart = true;
-      volumes = [
-        "mosquitto:/mosquitto"
-        "/run/dbus:/run/dbus:ro"
-        "/etc/localtime:/etc/localtime:ro"
-      ];
-      # Note: The image will not be updated on rebuilds, unless the version label changes
-      image = "eclipse-mosquitto";
-      extraOptions = [
-        "--network=host"
-      ];
-    };
     containers.frigate = {
       #autoStart = true;
       volumes = [
@@ -336,6 +323,19 @@
         "--network=host"
       ];
     };
+    containers.mosquitto = {
+      #autoStart = true;
+      volumes = [
+        "mosquitto:/mosquitto"
+        "/run/dbus:/run/dbus:ro"
+        "/etc/localtime:/etc/localtime:ro"
+      ];
+      # Note: The image will not be updated on rebuilds, unless the version label changes
+      image = "eclipse-mosquitto";
+      extraOptions = [
+        "--network=host"
+      ];
+    };
     containers.netflow2ng = {
       # Note: The image will not be updated on rebuilds, unless the version label changes
       image = "synfinatic/netflow2ng:v0.1.0";
@@ -362,7 +362,7 @@
     interfaces = [ "tcp://0.0.0.0:5556" ];
     extraConfig = ''
       --dns-mode 1
-      --local-networks "185.27.122.0/24=WAN,192.168.69.0/24=LAN,192.168.42.0/24=Wireguard"'';
+      --local-networks "185.27.122.0/24=WAN,192.168.69.0/24=LAN"'';
   };
 
   services.influxdb.enable = true;
@@ -395,7 +395,6 @@
     "nix-command"
     "flakes"
   ];
-
   nix.gc = {
     automatic = true;
     dates = "weekly";