37e48b712e
* keep ./services for instances ./profiles is for config-only modules ./services are like profiles, but configure a single instance of a service. Those are fronted by Nginx as the load-balancer and have a DNS entry as well. * ci: build build03 as well * move hydra to services * move matterbridge to services * move marvin-mk2 to services * build01: share the remainder profiles * build02: use the nix-community-cache * fixup kexec * rename profiles to roles * README: sync with reality
54 lines
1.4 KiB
Nix
54 lines
1.4 KiB
Nix
{ config, pkgs, lib, ... }:
|
|
{
|
|
imports = [
|
|
./hardware-configuration.nix
|
|
|
|
../roles/buildkite.nix
|
|
../roles/common.nix
|
|
../roles/docker.nix
|
|
../roles/gitlab-runner.nix
|
|
../roles/nginx.nix
|
|
../roles/nix-community-cache.nix
|
|
../services/hound
|
|
../services/hydra
|
|
../services/marvin-mk2.nix
|
|
../services/matterbridge.nix
|
|
];
|
|
|
|
# /boot is a mirror raid
|
|
boot.loader.grub.devices = [ "/dev/sda" "/dev/sdb" ];
|
|
boot.loader.grub.enable = true;
|
|
boot.loader.grub.version = 2;
|
|
|
|
networking.hostName = "nix-community-build01";
|
|
networking.hostId = "d2905767";
|
|
|
|
networking.usePredictableInterfaceNames = false;
|
|
networking.dhcpcd.enable = false;
|
|
|
|
# Emulate armv7 until we have proper builders
|
|
boot.binfmt.emulatedSystems = [ "armv7l-linux" ];
|
|
|
|
systemd.network = {
|
|
enable = true;
|
|
networks."eth0".extraConfig = ''
|
|
[Match]
|
|
Name = eth0
|
|
[Network]
|
|
Address = 2a01:4f8:13b:2ceb::1/64
|
|
Gateway = fe80::1
|
|
Address = 94.130.143.84/26
|
|
Gateway = 94.130.143.65
|
|
'';
|
|
};
|
|
|
|
systemd.services.healthcheck-ping = {
|
|
startAt = "*:0/5"; # every 5 minutes
|
|
serviceConfig.ExecStart = "${pkgs.curl}/bin/curl -X POST -sfL https://hc-ping.com/fcf6c029-5b57-44aa-b392-923f3d894dd9";
|
|
};
|
|
|
|
boot.kernelPackages = pkgs.linuxPackages_latest;
|
|
boot.supportedFilesystems = [ "zfs" ];
|
|
|
|
system.stateVersion = "20.03";
|
|
}
|