update
This commit is contained in:
Leon Liu
parent
b1e6779a05
commit
0a80a57f70
@ -5,7 +5,7 @@
|
|||||||
{ config, pkgs, ... }:
|
{ config, pkgs, ... }:
|
||||||
|
|
||||||
let
|
let
|
||||||
kubeMasterIP = "192.168.3.56";
|
kubeMasterIP = "192.168.11.2";
|
||||||
kubeMasterHostname = "api.kube";
|
kubeMasterHostname = "api.kube";
|
||||||
kubeMasterAPIServerPort = 6443;
|
kubeMasterAPIServerPort = 6443;
|
||||||
in
|
in
|
||||||
@ -15,7 +15,8 @@ in
|
|||||||
./hardware-configuration.nix
|
./hardware-configuration.nix
|
||||||
./containers.nix
|
./containers.nix
|
||||||
];
|
];
|
||||||
|
nix.settings.trusted-users = [ "root" "liu" ];
|
||||||
|
virtualisation.docker.enable = true;
|
||||||
nix.settings.experimental-features = [ "nix-command" "flakes" ];
|
nix.settings.experimental-features = [ "nix-command" "flakes" ];
|
||||||
networking.extraHosts = "${kubeMasterIP} ${kubeMasterHostname}";
|
networking.extraHosts = "${kubeMasterIP} ${kubeMasterHostname}";
|
||||||
# Bootloader.
|
# Bootloader.
|
||||||
@ -107,8 +108,9 @@ in
|
|||||||
isNormalUser = true;
|
isNormalUser = true;
|
||||||
shell = pkgs.zsh;
|
shell = pkgs.zsh;
|
||||||
description = "Leon Liu";
|
description = "Leon Liu";
|
||||||
extraGroups = [ "networkmanager" "wheel" ];
|
extraGroups = [ "networkmanager" "wheel" "docker" ];
|
||||||
};
|
};
|
||||||
|
users.extraGroups.docker.members = [ "liu" ];
|
||||||
|
|
||||||
fonts = {
|
fonts = {
|
||||||
fontDir.enable = true;
|
fontDir.enable = true;
|
||||||
@ -154,6 +156,7 @@ in
|
|||||||
kompose
|
kompose
|
||||||
kubectl
|
kubectl
|
||||||
kubernetes
|
kubernetes
|
||||||
|
argocd
|
||||||
];
|
];
|
||||||
|
|
||||||
# Some programs need SUID wrappers, can be configured further or are
|
# Some programs need SUID wrappers, can be configured further or are
|
||||||
@ -175,6 +178,7 @@ in
|
|||||||
apiserver = {
|
apiserver = {
|
||||||
securePort = kubeMasterAPIServerPort;
|
securePort = kubeMasterAPIServerPort;
|
||||||
advertiseAddress = kubeMasterIP;
|
advertiseAddress = kubeMasterIP;
|
||||||
|
allowPrivileged = true;
|
||||||
};
|
};
|
||||||
easyCerts = true;
|
easyCerts = true;
|
||||||
|
|
||||||
@ -189,6 +193,7 @@ in
|
|||||||
# Or disable the firewall altogether.
|
# Or disable the firewall altogether.
|
||||||
networking.firewall.enable = false;
|
networking.firewall.enable = false;
|
||||||
services.tailscale.enable = true;
|
services.tailscale.enable = true;
|
||||||
|
services.adguardhome.enable = true;
|
||||||
# This value determines the NixOS release from which the default
|
# This value determines the NixOS release from which the default
|
||||||
# settings for stateful data, like file locations and database versions
|
# settings for stateful data, like file locations and database versions
|
||||||
# on your system were taken. It‘s perfectly fine and recommended to leave
|
# on your system were taken. It‘s perfectly fine and recommended to leave
|
||||||
|
|||||||
4
home.nix
4
home.nix
@ -43,8 +43,6 @@
|
|||||||
google-chrome
|
google-chrome
|
||||||
guake
|
guake
|
||||||
dmidecode
|
dmidecode
|
||||||
jetbrains.rust-rover
|
|
||||||
qbittorrent
|
|
||||||
];
|
];
|
||||||
|
|
||||||
# Home Manager is pretty good at managing dotfiles. The primary way to manage
|
# Home Manager is pretty good at managing dotfiles. The primary way to manage
|
||||||
@ -103,6 +101,7 @@
|
|||||||
initExtra = ''
|
initExtra = ''
|
||||||
VISUAL=vim
|
VISUAL=vim
|
||||||
EDITOR="$VISUAL"
|
EDITOR="$VISUAL"
|
||||||
|
PATH=$PATH:$HOME/.cargo/bin/
|
||||||
'';
|
'';
|
||||||
};
|
};
|
||||||
|
|
||||||
@ -116,6 +115,7 @@
|
|||||||
enable = true;
|
enable = true;
|
||||||
extensions = [
|
extensions = [
|
||||||
pkgs.vscode-extensions.bbenoist.nix
|
pkgs.vscode-extensions.bbenoist.nix
|
||||||
|
pkgs.vscode-extensions.rust-lang.rust-analyzer
|
||||||
];
|
];
|
||||||
userSettings = {
|
userSettings = {
|
||||||
"window.zoomLevel" = 2;
|
"window.zoomLevel" = 2;
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user