2024-06-29 23:12:21 +01:00
{ lib, ... }:
inherit (lib.my) net;
inherit (lib.my.c.home) domain prefixes vips hiMTU roceBootModules;
2024-06-30 01:52:52 +01:00
imports = [ ./containers ];
2024-06-29 23:12:21 +01:00
config.nixos.systems.sfh = {
system = "x86_64-linux";
nixpkgs = "mine";
home-manager = "mine";
2024-06-30 01:52:52 +01:00
2024-06-29 23:12:21 +01:00
assignments = {
hi = {
inherit domain;
mtu = hiMTU;
ipv4 = {
address = net.cidr.host 81 prefixes.hi.v4;
mask = 22;
gateway = vips.hi.v4;
ipv6 = {
iid = "::4:2";
address = net.cidr.host (65536*4+2) prefixes.hi.v6;
configuration = { lib, modulesPath, pkgs, config, assignments, allAssignments, ... }:
2024-06-30 01:52:52 +01:00
inherit (lib) mapAttrs mkMerge;
2024-06-29 23:12:21 +01:00
inherit (lib.my) networkdAssignment;
2024-06-30 01:52:52 +01:00
inherit (lib.my.c) networkd;
2024-06-29 23:12:21 +01:00
inherit (lib.my.c.home) domain;
imports = [
config = {
boot = {
kernelModules = [ "kvm-amd" ];
kernelParams = [ "console=ttyS0,115200n8" ];
initrd = {
availableKernelModules = [
"virtio_pci" "ahci" "sr_mod" "virtio_blk"
] ++ roceBootModules;
kernelModules = [ "dm-snapshot" ];
systemd = {
network = {
networks = {
"20-lan-hi" = networkdAssignment "lan-hi" assignments.hi;
hardware = {
enableRedistributableFirmware = true;
fileSystems = {
"/nix" = {
device = "/dev/main/nix";
fsType = "ext4";
"/persist" = {
device = "/dev/main/persist";
fsType = "ext4";
neededForBoot = true;
2024-06-29 23:41:01 +01:00
networking = { inherit domain; };
2024-06-29 23:12:21 +01:00
services = {
lvm = {
boot.thin.enable = true;
dmeventd.enable = true;
systemd.network = {
links = {
"10-lan-hi" = {
matchConfig = {
Driver = "mlx5_core";
PermanentMACAddress = "52:54:00:ac:15:a9";
linkConfig = {
Name = "lan-hi";
MTUBytes = toString lib.my.c.home.hiMTU;
2024-06-30 01:52:52 +01:00
"10-lan-hi-ctrs" = {
matchConfig = {
Driver = "mlx5_core";
PermanentMACAddress = "52:54:00:90:34:95";
linkConfig = {
Name = "lan-hi-ctrs";
MTUBytes = toString lib.my.c.home.hiMTU;
2024-06-29 23:12:21 +01:00
2024-06-30 01:52:52 +01:00
networks = {
"30-lan-hi" = mkMerge [
(networkdAssignment "lan-hi" assignments.hi)
# So we don't drop the IP we use to connect to NVMe-oF!
{ networkConfig.KeepConfiguration = "static"; }
"30-lan-hi-ctrs" = {
matchConfig.Name = "lan-hi-ctrs";
linkConfig.RequiredForOnline = "no";
networkConfig = networkd.noL3;
2024-06-29 23:12:21 +01:00
my = {
secrets = {
key = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAAaav5Se1E/AbqEXmADryVszYfNDscyP6jrWioN57R7";
server.enable = true;
netboot.client = {
enable = true;
nvme = {
uuid = "85d7df36-0de0-431b-b06e-51f7c0a455b4";
boot = {
nqn = "nqn.2016-06.io.spdk:sfh";
address = "";
2024-06-30 01:52:52 +01:00
containers.instances =
instances = {
2025-03-08 18:47:04 +00:00
# unifi = {};
2024-06-30 01:52:52 +01:00
mkMerge [
(mapAttrs (n: i: {
networking.macVLAN = "lan-hi-ctrs";
}) instances)
2024-06-29 23:12:21 +01:00