Tuning/refactoring/etc

2026-05-16 22:36:47 -05:00 · 2026-05-16 22:36:47 -05:00 · 73482423ee
commit 73482423ee
parent cdfcbf76e3
28 changed files with 189 additions and 211 deletions
--- a/hosts/server/default.nix
+++ b/hosts/server/default.nix
@ -33,20 +33,14 @@ in {
    };
  };
  imports = [
-    ../../home
    ../vars.nix
+    ../../home
    ./systemd.nix
    ../systemd-primary.nix
-    # ../comon/tailscale.nix
-    ../common/upgrade-diff.nix
+    ../common
    ../../modules/beszel-agent.nix
  ];

-  # Enable networking
-  networking.networkmanager.enable = true;
-  networking.enableIPv6 = true;
-  networking.useDHCP = false;
-
  # Set your time zone.
  time = {
    timeZone = "America/Chicago";
@ -65,20 +59,8 @@ in {

  # Bootloader.
  boot = {
-    binfmt.emulatedSystems = lib.optionals (pkgs.stdenv.hostPlatform.system != "aarch64-linux") [ "aarch64-linux" ];
    kernelPackages = pkgs.linuxPackages_latest;
-    kernelParams = ["consoleblank=60"];
-    #loader = {
-    #systemd-boot = {
-    #enable = true;
-    #};
-    #efi = {
-    #canTouchEfiVariables = true;
-    #efiSysMountPoint = "/boot";
-    #};
-    #};
-    plymouth = {enable = true;};
-    kernel = {sysctl = {"vm.swappiness" = 10;};};
+    kernelParams = ["consoleblank=60" "quiet" "splash"];
  };

  security = {
@ -254,25 +236,25 @@ in {
  ];

  # Open ports in the firewall.
-  networking.firewall = {
-    enable = true;
-    trustedInterfaces = ["tailscale0"];
-    checkReversePath = "loose";
-    allowedUDPPorts = [config.services.tailscale.port];
-    allowedTCPPortRanges = [
-      {
-        from = 1714;
-        to = 1764;
-      }
-    ];
-    allowedUDPPortRanges = [
-      {
-        from = 1714;
-        to = 1764;
-      }
-    ];
-    allowedTCPPorts = [22 80 443];
-  };
+  # networking.firewall = {
+  #   enable = true;
+  #   trustedInterfaces = ["tailscale0"];
+  #   checkReversePath = "loose";
+  #   allowedUDPPorts = [config.services.tailscale.port];
+  #   allowedTCPPortRanges = [
+  #     {
+  #       from = 1714;
+  #       to = 1764;
+  #     }
+  #   ];
+  #   allowedUDPPortRanges = [
+  #     {
+  #       from = 1714;
+  #       to = 1764;
+  #     }
+  #   ];
+  #   allowedTCPPorts = [22 80 443];
+  # };

  # This value determines the NixOS release from which the default
  # settings for stateful data, like file locations and database versions