the unfuckening

2024-03-17 10:20:54 +01:00 · 2024-03-17 10:20:54 +01:00 · d1ab22a870
commit d1ab22a870
parent 443f53cf8f
7 changed files with 105 additions and 188 deletions
--- a/hosts/ds9/default.nix
+++ b/hosts/ds9/default.nix
@ -6,10 +6,11 @@ in
 {
  imports =
    [
-      # Include the results of the hardware scan.
+      ./hardware-configuration.nix
+
      ./backup.nix
      ./plex.nix
-      ./hardware-configuration.nix
+      ./samba.nix

      ../../nixos-modules/networking/tailscale.nix
      ../../nixos-modules/services/docker.nix
@ -45,7 +46,6 @@ in
  networking.bridges."br0".interfaces = [ ];
  networking.hostId = "7b4c2932";
  networking.firewall.allowedTCPPorts = [ 9000 25565 ];
-  boot.binfmt.emulatedSystems = [ "aarch64-linux" "armv7l-linux" ];
  boot.initrd.network = {
    enable = true;
    postCommands = ''
@ -67,50 +67,9 @@ in
  };
  boot.kernel.sysctl."fs.inotify.max_user_instances" = 512;

-  services.avahi.enable = true;
-  services.avahi.nssmdns = true;
-  services.avahi.publish.enable = true;
-  services.avahi.extraServiceFiles.smb = ''
-    <?xml version="1.0" standalone='no'?>
-    <!DOCTYPE service-group SYSTEM "avahi-service.dtd">
-    <service-group>
-      <name replace-wildcards="yes">%h</name>
-      <service>
-        <type>_smb._tcp</type>
-        <port>445</port>
-        <host-name>ds9.kangaroo-galaxy.ts.net</host-name>
-      </service>
-      <service>
-        <type>_device-info._tcp</type>
-        <port>0</port>
-        <txt-record>model=MacPro7,1@ECOLOR=226,226,224</txt-record>
-      </service>
-      <service>
-        <type>_adisk._tcp</type>
-        <txt-record>sys=waMa=0,adVF=0x100</txt-record>
-        <txt-record>dk0=adVN=TimeMachine,adVF=0x82</txt-record>
-        <host-name>ds9.kangaroo-galaxy.ts.net</host-name>
-      </service>
-    </service-group>
-  '';
-
  # Immutable users due to tmpfs
  users.mutableUsers = false;

-  services.samba.extraConfig = ''
-    min protocol = SMB3
-    vfs objects = acl_xattr catia fruit streams_xattr
-    fruit:nfs_aces = no
-    inherit permissions = yes
-    fruit:posix_rename = yes
-    fruit:resource = xattr
-    fruit:model = MacSamba
-    fruit:veto_appledouble = no
-    fruit:wipe_intentionally_left_blank_rfork = yes 
-    fruit:delete_empty_adfiles = yes 
-    fruit:metadata = stream
-  '';
-
  users.users.bzzt = {
    description = "bzzt server service user";
    home = "/var/lib/bzzt";
@ -209,26 +168,6 @@ in

    services = {
      caddy.enable = true;
-      samba.enable = true;
-      samba.shares = {
-        TimeMachine = {
-          path = "/backups/DaedalusTimeMachine";
-          comment = "DaedalusTimeMachine";
-          "write list" = "@wheel";
-          "read only" = "no";
-          "writable" = "yes";
-          "browseable" = "yes";
-          "fruit:time machine" = "yes";
-          "fruit:time machine max size" = "2050G";
-          "vfs objects" = "acl_xattr fruit streams_xattr";
-          "inherit acls" = "yes";
-        };
-        data = {
-          path = "/data";
-          comment = "some data for the people";
-          "write list" = "@wheel";
-        };
-      };
      docker.enable = true;
      ssh.enable = true;
      msmtp.enable = true;
--- a/hosts/ds9/samba.nix
+++ b/hosts/ds9/samba.nix
@ -0,0 +1,66 @@
+{ config, pkgs, lib, ... }: {
+  services.samba.extraConfig = ''
+    min protocol = SMB3
+    vfs objects = acl_xattr catia fruit streams_xattr
+    fruit:nfs_aces = no
+    inherit permissions = yes
+    fruit:posix_rename = yes
+    fruit:resource = xattr
+    fruit:model = MacSamba
+    fruit:veto_appledouble = no
+    fruit:wipe_intentionally_left_blank_rfork = yes 
+    fruit:delete_empty_adfiles = yes 
+    fruit:metadata = stream
+  '';
+
+  services.avahi.enable = true;
+  services.avahi.nssmdns = true;
+  services.avahi.publish.enable = true;
+  services.avahi.extraServiceFiles.smb = ''
+    <?xml version="1.0" standalone='no'?>
+    <!DOCTYPE service-group SYSTEM "avahi-service.dtd">
+    <service-group>
+      <name replace-wildcards="yes">%h</name>
+      <service>
+        <type>_smb._tcp</type>
+        <port>445</port>
+        <host-name>ds9.kangaroo-galaxy.ts.net</host-name>
+      </service>
+      <service>
+        <type>_device-info._tcp</type>
+        <port>0</port>
+        <txt-record>model=MacPro7,1@ECOLOR=226,226,224</txt-record>
+      </service>
+      <service>
+        <type>_adisk._tcp</type>
+        <txt-record>sys=waMa=0,adVF=0x100</txt-record>
+        <txt-record>dk0=adVN=TimeMachine,adVF=0x82</txt-record>
+        <host-name>ds9.kangaroo-galaxy.ts.net</host-name>
+      </service>
+    </service-group>
+  '';
+
+  ragon.services = {
+      samba.enable = true;
+      samba.shares = {
+        TimeMachine = {
+          path = "/backups/DaedalusTimeMachine";
+          comment = "DaedalusTimeMachine";
+          "write list" = "@wheel";
+          "read only" = "no";
+          "writable" = "yes";
+          "browseable" = "yes";
+          "fruit:time machine" = "yes";
+          "fruit:time machine max size" = "2050G";
+          "vfs objects" = "acl_xattr fruit streams_xattr";
+          "inherit acls" = "yes";
+        };
+        data = {
+          path = "/data";
+          comment = "some data for the people";
+          "write list" = "@wheel";
+        };
+      };
+  };
+
+}