feat: ds9 offsite

2022-04-23 01:35:17 +02:00 · 2022-04-23 01:35:17 +02:00 · fb42273014
commit fb42273014
parent 3c787359f5
4 changed files with 163 additions and 98 deletions
--- a/hosts/backuppi/default.nix
+++ b/hosts/backuppi/default.nix
@ -0,0 +1,47 @@
+{ config, inputs, pkgs, lib, ... }:
+{
+  imports = [
+    "${inputs.nixpkgs}/nixos/modules/installer/sd-card/sd-image-aarch64.nix"
+    "${inputs.nixos-hardware}/raspberry-pi/4/default.nix"
+  ];
+  nixpkgs.overlays = [
+    (final: super: {
+      makeModulesClosure = x:
+        super.makeModulesClosure (x // { allowMissing = true; });
+    })
+  ];
+  boot.loader.systemd-boot.enable = false;
+  boot.kernelPackages = pkgs.linuxPackages_rpi3;
+  boot.supportedFilesystems = lib.mkForce [ "reiserfs" "vfat" "zfs" "ext4" ];
+  networking.hostId = "eec43f51";
+  # networking.usePredictableInterfaceNames = false;
+  documentation.enable = false;
+  documentation.nixos.enable = false;
+
+  nix = {
+    autoOptimiseStore = true;
+    gc = {
+      automatic = true;
+      dates = "weekly";
+      options = "--delete-older-than 30d";
+    };
+    # Free up to 1GiB whenever there is less than 100MiB left.
+    extraOptions = ''
+      min-free = ${toString (100 * 1024 * 1024)}
+      max-free = ${toString (1024 * 1024 * 1024)}
+    '';
+  };
+  powerManagement.cpuFreqGovernor = "ondemand";
+
+  # Assuming this is installed on top of the disk image.
+  fileSystems = {
+    "/" = {
+      device = "/dev/disk/by-label/NIXOS_SD";
+      fsType = "ext4";
+      options = [ "noatime" ];
+    };
+  };
+  ragon.services.ssh.enable = true;
+  ragon.services.tailscale.enable = true;
+
+}
--- a/hosts/ds9/default.nix
+++ b/hosts/ds9/default.nix
@ -19,6 +19,17 @@ in
  services.syncthing.enable = true;
  services.syncthing.user = "ragon";

+  services.syncoid.command =
+    let
+      datasets = {
+        backups = "rpool/content/local/backups";
+        data = "rpool/content/safe/data";
+        ds9persist = "rpool/content/safe/persist";
+        hassosvm = "rpool/content/safe/vms/hassos";
+      };
+    in
+    builtins.mapAttrs (n: v: { target = "backup/${n}"; source = v; sendOptions = [ "w" ]; }) datasets;
+
  security.sudo.wheelNeedsPassword = false;
  networking.useDHCP = true;
  networking.bridges."br0".interfaces = [ ];