31 lines
669 B
Nix
31 lines
669 B
Nix
{ options, host, lib, ... }:
|
|
{
|
|
networking = {
|
|
hostName = "${host}";
|
|
networkmanager.enable = false;
|
|
useNetworkd = true;
|
|
timeServers = options.networking.timeServers.default ++ ["pool.ntp.org"];
|
|
dhcpcd.enable = false;
|
|
firewall = {
|
|
enable = lib.mkDefault false;
|
|
autoLoadConntrackHelpers = true;
|
|
};
|
|
nftables.enable = true;
|
|
};
|
|
boot.initrd.systemd = {
|
|
network.enable = true;
|
|
|
|
};
|
|
systemd.network.enable = true;
|
|
services.tailscale = {
|
|
enable = true;
|
|
useRoutingFeatures = "both";
|
|
openFirewall = true;
|
|
extraSetFlags = [
|
|
"--ssh"
|
|
"--accept-dns=false"
|
|
"--accept-routes"
|
|
];
|
|
};
|
|
}
|