Wekuz/nix-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Compare commits

base: Wekuz:da81728cf18032a595cf42d6d7042714e7129a00
Branches Tags
Wekuz:main
Wekuz:murg
...
compare: Wekuz:0a81bf5f900f4e14c3e53fd6a2af91ca9c703576
Branches Tags
Wekuz:main
Wekuz:murg

5 commits
da81728cf1 ... 0a81bf5f90

Author SHA1 Message Date
Wekuz
0a81bf5f90
Correct /storage permissions 2026-04-03 18:54:01 +03:00
Wekuz
ab8a261346
Add rsyncd 2026-04-03 18:47:20 +03:00
Wekuz
58d9a65c5f
Add storage disk config 2026-04-03 17:37:00 +03:00
Wekuz
767dac0b77
# Enable Docker 2026-02-09 18:51:48 +02:00
Wekuz
4c466cc644
# Use fastfetch instead of neofetch 2026-02-09 18:50:01 +02:00
4 changed files with 60 additions and 4 deletions
Show stats Expand all files Collapse all files

28
hosts/plexy/default.nix
View file

@ -64,6 +64,7 @@
22 22
80 80
443 443
873 # rsyncd
5201 # iperf3 5201 # iperf3
15835 # Glance 15835 # Glance
]; ];
@ -78,9 +79,12 @@
secrets = { secrets = {
"vaultwarden.env" = { }; "vaultwarden.env" = { };
"/etc/rsyncd.secrets" = { };
}; };
}; };
virtualisation.docker.enable = true;
services = { services = {
openssh = { openssh = {
enable = true; enable = true;
@ -90,6 +94,26 @@
iperf3 = { iperf3 = {
enable = true; enable = true;
}; };
rsyncd = {
enable = true;
settings = {
globalSection = {
address = "0.0.0.0";
gid = "users";
"max connections" = 5;
uid = "wekuz";
};
sections = {
storage = {
path = "/storage/media";
comment = "Media storage";
"read only" = false;
"auth users" = "wekuz";
"secrets file" = config.sops.secrets."rsyncd.secrets".path;
};
};
};
};
vaultwarden = { vaultwarden = {
enable = true; enable = true;
environmentFile = config.sops.secrets."vaultwarden.env".path; environmentFile = config.sops.secrets."vaultwarden.env".path;
@ -123,5 +147,9 @@
]; ];
}; };
systemd.tmpfiles.rules = [
"d /storage 0777 root root -"
];
system.stateVersion = "25.11"; system.stateVersion = "25.11";
} }

27
hosts/plexy/disko-config.nix
View file

@ -54,6 +54,33 @@
}; };
}; };
}; };
storagedisk = {
type = "disk";
device = "/dev/disk/by-id/ata-HGST_HUS722T2TALA604_WMC6N0P31NKZ";
content = {
type = "gpt";
partitions = {
primary = {
size = "100%";
content = {
type = "btrfs";
extraArgs = [ "-f" ]; # Override existing partition
subvolumes = {
"@storage" = {
mountOptions = [
"compress=zstd"
"noatime"
];
mountpoint = "/storage";
};
};
mountpoint = "/part-storage";
};
};
};
};
};
}; };
}; };
} }

2
hosts/plexy/home.nix
View file

@ -5,7 +5,7 @@
home.homeDirectory = "/home/wekuz"; home.homeDirectory = "/home/wekuz";
home.packages = with pkgs; [ home.packages = with pkgs; [
neofetch fastfetch
# Utilities # Utilities
neovim neovim

7
hosts/plexy/secrets.yaml
View file

@ -1,4 +1,5 @@
vaultwarden.env: ENC[AES256_GCM,data:PLNb5cFoJaOyUo5U/gpXH0RGVwwQxL3kCE/OLw7MaLWazuBGHIPUEhH+kDMP2cfF916D63w8Ddgb/oH+lHGCw235YwgoqZ9yjWYPG4VB2Jdw+17LeCbirdh3zv8nNzFnSZDJmhz5Pj82+iswju6sYO/H7UfZ3aeASWonKW9LGHVltKSY1rAVhZRu4SvhqPiAxNpEzN0/EDTl46RIxrgEoUraN+Ie8fh1wU9SKevExkPU3NXGO1gG2tWRxclMPgc=,iv:es40/5HpBAhOy2xmU/yCUD43fVVsAXk6qJ3OasKjK3U=,tag:bneErU9pPZkQ2VzbQ1NrJA==,type:str] vaultwarden.env: ENC[AES256_GCM,data:PLNb5cFoJaOyUo5U/gpXH0RGVwwQxL3kCE/OLw7MaLWazuBGHIPUEhH+kDMP2cfF916D63w8Ddgb/oH+lHGCw235YwgoqZ9yjWYPG4VB2Jdw+17LeCbirdh3zv8nNzFnSZDJmhz5Pj82+iswju6sYO/H7UfZ3aeASWonKW9LGHVltKSY1rAVhZRu4SvhqPiAxNpEzN0/EDTl46RIxrgEoUraN+Ie8fh1wU9SKevExkPU3NXGO1gG2tWRxclMPgc=,iv:es40/5HpBAhOy2xmU/yCUD43fVVsAXk6qJ3OasKjK3U=,tag:bneErU9pPZkQ2VzbQ1NrJA==,type:str]
rsyncd.secrets: ENC[AES256_GCM,data:VjHRoZa6/lDtCheKSJyM,iv:kxygNaKOuK0iH/bFY/uKxcbMcYSR8nWDUx+4aDNqTMk=,tag:uYYPWAPCWtvLLGwmOWyH+A==,type:str]
sops: sops:
age: age:
- recipient: age1sqssntfzzlhcgp0wuf9wmeavg0hmwmq349npsq8vaxj9sxey5s9ssc82sw - recipient: age1sqssntfzzlhcgp0wuf9wmeavg0hmwmq349npsq8vaxj9sxey5s9ssc82sw
@ -10,7 +11,7 @@ sops:
eDUxR1V0ZEFSYnZTYnYzakFydEliaFUKoa/gHecAy01vTk7I02KMGGPHZBql5K48 eDUxR1V0ZEFSYnZTYnYzakFydEliaFUKoa/gHecAy01vTk7I02KMGGPHZBql5K48
hkLDjoWK9dkGRX8kqRd028cuMCQRenLpULEECWp6oV+evUdMf7wRtg== hkLDjoWK9dkGRX8kqRd028cuMCQRenLpULEECWp6oV+evUdMf7wRtg==
-----END AGE ENCRYPTED FILE----- -----END AGE ENCRYPTED FILE-----
lastmodified: "2025-12-30T19:34:00Z" lastmodified: "2026-04-03T15:46:07Z"
mac: ENC[AES256_GCM,data:kFttJIQM/Zyd9xeiJpdEVoJ2AhlbuvtUxGBkQTQeEvrJsClAUM7s288XhkG02IxpH9bt2U6AgF60K/3E3qEdFHpM9WKTso/n6mXeD5WUyo9XD1XiWMPZ07arRLH0ajRWHOlIadKm7hvPhEWiWxVg9+sc0BHtjTGMLgvRhUyMPgM=,iv:gsMvU3lxVFSF8bJK5u9cNFSYDT5OZPmWqehv0ozB5Uo=,tag:XsfLCSTlqSgeKy609lMmLQ==,type:str] mac: ENC[AES256_GCM,data:gh9Voy28Lo4G1qwQ7/WVAt/L3SAXIY5bs5fdCE0Oywi0ZV4YTJI5VCAcfxuE0Fc3DXdHF0/LORGjKa2l0yp5msMdBVpzI46FBiwYvU+w7EfEoEmhu0yMLf0SZmXkVLEq8u2uVFHGVbR1dOKcdFef+qTIGTlz4cE9VQ01xg/nh7g=,iv:fasXOAm2hjB4ULKT4vPOFnFpAcEgSeNvNM7Zrnk6MvM=,tag:1hWtpuTVdC3H8flA1m0Z0A==,type:str]
unencrypted_suffix: _unencrypted unencrypted_suffix: _unencrypted
version: 3.11.0 version: 3.12.2