mirror of
https://github.com/gensokyo-zone/infrastructure.git
synced 2026-02-09 12:29:19 -08:00
38 lines
688 B
Nix
38 lines
688 B
Nix
{meta, ...}: {
|
|
imports = let
|
|
inherit (meta) nixos;
|
|
in [
|
|
nixos.sops
|
|
nixos.base
|
|
nixos.reisen-ct
|
|
nixos.tailscale
|
|
nixos.github-runner.zone
|
|
];
|
|
|
|
nix.gc = {
|
|
dates = "monthly";
|
|
options = "--delete-older-than 30d";
|
|
};
|
|
|
|
services.github-runner-zone = {
|
|
count = 16;
|
|
networkNamespace.name = "ns1";
|
|
};
|
|
|
|
networking.namespaces.ns1 = {
|
|
dhcpcd.enable = true;
|
|
nftables = {
|
|
enable = true;
|
|
rejectLocaladdrs = true;
|
|
serviceSettings = rec {
|
|
wants = ["localaddrs.service"];
|
|
after = wants;
|
|
};
|
|
};
|
|
interfaces.eth1 = {};
|
|
};
|
|
|
|
sops.defaultSopsFile = ./secrets.yaml;
|
|
|
|
system.stateVersion = "23.11";
|
|
}
|