System/machines/levitation.nix

{ pkgs, lib, config, ... }: {

  ###
  ## Define the hostname, enable dhcp
  ###
  networking = {
    hostName = "levitation";
    domain = "mccarty.io";
    useDHCP = false;
    interfaces.enp6s0.useDHCP = true;
    nat.externalInterface = "enp6s0";
  };
  ###
  ## Enable programs we don't want on every machine
  ###
  programs = {
    steam.enable = true;
    adb.enable = true;
  };

  ###
  ## Firewall ports
  ###
  # 61377 - SoulSeek
  # Enable firewall and pass some ports
  networking.firewall = {
    enable = true;
    allowedTCPPorts = [ 61377 ];
    allowedUDPPorts = [ 61377 ];
  };

  ###
  ## Machine specific home-manager
  ###
  home-manager.users.nathan = {
    # Sway outputs
    wayland.windowManager.sway.config = {
      output = {
        DP-1 = {
          pos = "0 140";
          scale = "1";
          subpixel = "rgb";
        };
        DP-3 = {
          pos = "2560 0";
          scale = "1.25";
          subpixel = "rgb";
        };
        HDMI-A-1 = {
          pos = "5632 140";
          scale = "1";
          subpixel = "rgb";
        };
      };
      startup = [
        # GLPaper
        { command = "glpaper DP-1 ${../custom-files/sway/selen.frag} --fork"; }
        { command = "glpaper DP-3 ${../custom-files/sway/selen.frag} --fork"; }
        { command = "glpaper HDMI-A-1 ${../custom-files/sway/selen.frag} --fork"; }
      ];
    };
    # Mako output configuration
    programs.mako = {
      # Lock mako notifs to main display
      output = "DP-3";
    };
  };

  ###
  ## Borg Backups
  ###

  # Install borg
  environment.systemPackages = with pkgs; [
    borgbackup
  ];
  # Setup sops
  sops.secrets."borg-sshKey" = {
    format = "yaml";
    sopsFile = ../secrets/borg.yaml;
  };
  sops.secrets."borg-levitationPassword" = {
    format = "yaml";
    sopsFile = ../secrets/borg.yaml;
  };
  # Setup the job
  services.borgbackup.jobs = {
    remote_backup = {
      paths = [
        "/home"
        "/var"
        "/etc"
      ];
      exclude = [
        "*/.cache"
        "*/.tmp"
        "/home/nathan/Projects/*/target"
        "/home/nathan/Work/*/target"
        "/home/nathan/.local/share/Steam"
        "/home/nathan/Downloads"
        "/home/nathan/Music"
        "/var/lib/docker"
        "/var/log"
        "/home/nathan/*/Cache"
      ];
      repo = "de1955@de1955.rsync.net:computers/levitation";
      encryption = {
        mode = "repokey-blake2";
        passCommand = "cat ${config.sops.secrets."borg-levitationPassword".path}";
      };
      environment.BORG_RSH = "ssh -i ${config.sops.secrets."borg-sshKey".path}";
      compression = "auto,zstd";
      startAt = "hourly";
      prune.keep = {
        within = "7d"; # Keep all archives for the past week
        daily = 1; # Keep 1 snapshot a day for 2 weeks
        weekly = 4; # Keep 1 snapshot a week for 4 weeks
        monthly = -1; # Keep unlimited monthly backups
      };
    };
  };
}
Setup borg on levitation 2022-06-10 18:58:36 -04:00			`{ pkgs, lib, config, ... }: {`
Migrate out system specific configuration 2022-04-19 01:12:27 -04:00
Setup borg on levitation 2022-06-10 18:58:36 -04:00			`###`
			`## Define the hostname, enable dhcp`
			`###`
Migrate out system specific configuration 2022-04-19 01:12:27 -04:00			`networking = {`
			`hostName = "levitation";`
			`domain = "mccarty.io";`
			`useDHCP = false;`
Fix now broken network device name 2022-06-20 19:30:58 -04:00			`interfaces.enp6s0.useDHCP = true;`
			`nat.externalInterface = "enp6s0";`
Migrate out system specific configuration 2022-04-19 01:12:27 -04:00			`};`
Setup borg on levitation 2022-06-10 18:58:36 -04:00			`###`
			`## Enable programs we don't want on every machine`
			`###`
Migrate out system specific configuration 2022-04-19 01:12:27 -04:00			`programs = {`
			`steam.enable = true;`
			`adb.enable = true;`
			`};`

Setup borg on levitation 2022-06-10 18:58:36 -04:00			`###`
			`## Firewall ports`
			`###`
Migrate out system specific configuration 2022-04-19 01:12:27 -04:00			`# 61377 - SoulSeek`
			`# Enable firewall and pass some ports`
			`networking.firewall = {`
			`enable = true;`
			`allowedTCPPorts = [ 61377 ];`
			`allowedUDPPorts = [ 61377 ];`
			`};`
Mostly migrate sway config to home-manager 2022-04-19 14:50:57 -04:00
Setup borg on levitation 2022-06-10 18:58:36 -04:00			`###`
Mostly migrate sway config to home-manager 2022-04-19 14:50:57 -04:00			`## Machine specific home-manager`
Setup borg on levitation 2022-06-10 18:58:36 -04:00			`###`
Mostly migrate sway config to home-manager 2022-04-19 14:50:57 -04:00			`home-manager.users.nathan = {`
			`# Sway outputs`
			`wayland.windowManager.sway.config = {`
			`output = {`
			`DP-1 = {`
			`pos = "0 140";`
			`scale = "1";`
			`subpixel = "rgb";`
			`};`
			`DP-3 = {`
			`pos = "2560 0";`
			`scale = "1.25";`
			`subpixel = "rgb";`
			`};`
			`HDMI-A-1 = {`
			`pos = "5632 140";`
			`scale = "1";`
			`subpixel = "rgb";`
			`};`
			`};`
Make glpaper work 2022-04-19 19:00:41 -04:00			`startup = [`
			`# GLPaper`
			`{ command = "glpaper DP-1 ${../custom-files/sway/selen.frag} --fork"; }`
			`{ command = "glpaper DP-3 ${../custom-files/sway/selen.frag} --fork"; }`
			`{ command = "glpaper HDMI-A-1 ${../custom-files/sway/selen.frag} --fork"; }`
			`];`
Mostly migrate sway config to home-manager 2022-04-19 14:50:57 -04:00			`};`
			`# Mako output configuration`
			`programs.mako = {`
			`# Lock mako notifs to main display`
			`output = "DP-3";`
			`};`
			`};`
Setup borg on levitation 2022-06-10 18:58:36 -04:00
			`###`
			`## Borg Backups`
			`###`

			`# Install borg`
			`environment.systemPackages = with pkgs; [`
			`borgbackup`
			`];`
			`# Setup sops`
			`sops.secrets."borg-sshKey" = {`
			`format = "yaml";`
			`sopsFile = ../secrets/borg.yaml;`
			`};`
			`sops.secrets."borg-levitationPassword" = {`
			`format = "yaml";`
			`sopsFile = ../secrets/borg.yaml;`
			`};`
			`# Setup the job`
			`services.borgbackup.jobs = {`
			`remote_backup = {`
			`paths = [`
			`"/home"`
			`"/var"`
			`"/etc"`
			`];`
			`exclude = [`
			`"*/.cache"`
			`"*/.tmp"`
			`"/home/nathan/Projects/*/target"`
			`"/home/nathan/Work/*/target"`
			`"/home/nathan/.local/share/Steam"`
			`"/home/nathan/Downloads"`
			`"/home/nathan/Music"`
Setup borg on oracles 2022-06-10 19:30:15 -04:00			`"/var/lib/docker"`
borg tweaks 2022-06-10 20:10:18 -04:00			`"/var/log"`
			`"/home/nathan/*/Cache"`
Setup borg on levitation 2022-06-10 18:58:36 -04:00			`];`
			`repo = "de1955@de1955.rsync.net:computers/levitation";`
			`encryption = {`
			`mode = "repokey-blake2";`
			`passCommand = "cat ${config.sops.secrets."borg-levitationPassword".path}";`
			`};`
			`environment.BORG_RSH = "ssh -i ${config.sops.secrets."borg-sshKey".path}";`
			`compression = "auto,zstd";`
			`startAt = "hourly";`
			`prune.keep = {`
			`within = "7d"; # Keep all archives for the past week`
			`daily = 1; # Keep 1 snapshot a day for 2 weeks`
			`weekly = 4; # Keep 1 snapshot a week for 4 weeks`
			`monthly = -1; # Keep unlimited monthly backups`
			`};`
			`};`
			`};`
Migrate out system specific configuration 2022-04-19 01:12:27 -04:00			`}`