Ty/nix
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Declarative networkmanager + fix container DNS properly this time

Browse source
This commit is contained in:
Tyler Beckman 2025-01-06 14:29:41 -07:00
parent 426a2d5814
commit 9ee785acfe
Signed by: Ty
GPG key ID: 2813440C772555A4
5 changed files with 44 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
home-manager/config/default.nix
View file

@ -20,4 +20,4 @@
./vscode.nix ./vscode.nix
./zed.nix ./zed.nix
]; ];
} }

38
hosts/laptop-server/config/networking.nix
View file

@ -10,7 +10,41 @@
}; };
# Enable NetworkManager # Enable NetworkManager
networkmanager.enable = true; networkmanager = {
enable = true;
ensureProfiles = {
# secrets.entries = [
# {
# file = "/run/";
# }
# ];
profiles = {
eduroam = {
"802-1x" = {
eap = "peap;";
identity = "tyler_beckman@mines.edu";
password-flags = "1";
phase2-auth = "mschapv2";
};
connection = {
autoconnect-priority = "99";
id = "eduroam";
permissions = "user:ty:;";
type = "wifi";
};
ipv4.method = "auto";
ipv6.method = "disabled"; # I hate mines IT
wifi = {
mode = "infrastructure";
ssid = "eduroam";
};
wifi-security.key-mgmt = "wpa-eap";
};
};
};
};
}; };
# Tailscale overlay network configuration # Tailscale overlay network configuration
@ -20,4 +54,4 @@
openFirewall = true; openFirewall = true;
}; };
networking.firewall.trustedInterfaces = [ "tailscale0" ]; networking.firewall.trustedInterfaces = [ "tailscale0" ];
} }

2
hosts/laptop-server/config/services/jellyfin/default.nix
View file

@ -11,7 +11,7 @@
# Firewall on the host system is enough + this firewall seems to break networking # Firewall on the host system is enough + this firewall seems to break networking
networking.firewall.enable = false; networking.firewall.enable = false;
networking.useHostResolvConf = true; networking.resolvconf.enable = false;
}; };
autoStart = true; autoStart = true;

2
hosts/laptop-server/config/services/jellyseerr/default.nix
View file

@ -11,7 +11,7 @@
# Firewall on the host system is enough + this firewall seems to break networking # Firewall on the host system is enough + this firewall seems to break networking
networking.firewall.enable = false; networking.firewall.enable = false;
networking.useHostResolvConf = true; networking.resolvconf.enable = false;
}; };
autoStart = true; autoStart = true;
}; };

5
hosts/laptop-server/config/services/networking.nix
View file

@ -25,6 +25,11 @@ in {
# This appears to be necessary as both having addresses the same seems to cause issues # This appears to be necessary as both having addresses the same seems to cause issues
hostAddress = "172.30.0.${builtins.toString services.${serviceName}.hostByte}"; hostAddress = "172.30.0.${builtins.toString services.${serviceName}.hostByte}";
localAddress = "172.30.1.${builtins.toString services.${serviceName}.hostByte}"; localAddress = "172.30.1.${builtins.toString services.${serviceName}.hostByte}";
bindMounts."/etc/resolv.conf" = {
hostPath = "/etc/resolv.conf";
isReadOnly = true;
};
}; };
networking = { networking = {