nixfiles/presets/nixos/serverBase.nix

{tree, ...}: {
  imports = with tree; [
    users.root

    profiles.sshd
    profiles.firewallAllow.ssh

    profiles.nixGC
    profiles.serverExtras
  ];

  home-manager.users.root = {
    imports = with tree; [home.base home.dev.small];
  };

  networking.firewall = {
    enable = true;
    allowPing = true;
    checkReversePath = "loose";
  };

  # TODO: Better DNS setup
  services.resolved.enable = false;
  environment.etc."resolv.conf".text = ''
    nameserver 8.8.8.8
    nameserver 8.8.4.4
  '';

  boot.kernel.sysctl = {
    "fs.inotify.max_user_watches" = 1024 * 64 * 16;
  };

  time.timeZone = "Europe/London";
}
major tidy 2023-09-18 03:56:58 +01:00			`{tree, ...}: {`
			`imports = with tree; [`
			`users.root`

			`profiles.sshd`
			`profiles.firewallAllow.ssh`

			`profiles.nixGC`
			`profiles.serverExtras`
			`];`

			`home-manager.users.root = {`
			`imports = with tree; [home.base home.dev.small];`
			`};`

			`networking.firewall = {`
			`enable = true;`
			`allowPing = true;`
			`checkReversePath = "loose";`
			`};`

			`# TODO: Better DNS setup`
			`services.resolved.enable = false;`
			`environment.etc."resolv.conf".text = ''`
			`nameserver 8.8.8.8`
			`nameserver 8.8.4.4`
			`'';`

			`boot.kernel.sysctl = {`
			`"fs.inotify.max_user_watches" = 1024 * 64 * 16;`
			`};`

			`time.timeZone = "Europe/London";`
			`}`