mirror of
https://git.gay/xqtc/nixos-config
synced 2024-11-23 06:40:32 +01:00
49 lines
996 B
Nix
49 lines
996 B
Nix
{
|
|
config,
|
|
lib,
|
|
inputs,
|
|
...
|
|
}: {
|
|
# imports = [./wireguard.nix];
|
|
|
|
services.openssh.settings.PasswordAuthentication = false;
|
|
# Mitigates https://www.cve.org/CVERecord?id=CVE-2024-6387
|
|
services.openssh.settings.LoginGraceTime = 0;
|
|
|
|
networking = {
|
|
interfaces = {
|
|
enp0s31f6 = {
|
|
ipv4 = {
|
|
addresses = [
|
|
{
|
|
address = "88.99.90.90";
|
|
prefixLength = 26;
|
|
}
|
|
];
|
|
};
|
|
ipv6 = {
|
|
addresses = [
|
|
{
|
|
address = "2a01:4f8:10a:1aab::2";
|
|
prefixLength = 64;
|
|
}
|
|
];
|
|
};
|
|
};
|
|
};
|
|
defaultGateway = {
|
|
interface = "enp0s31f6";
|
|
address = "88.99.90.65";
|
|
};
|
|
defaultGateway6 = {
|
|
interface = "enp0s31f6";
|
|
address = "fe80::1";
|
|
};
|
|
};
|
|
|
|
services.resolved.enable = true;
|
|
services.resolved.extraConfig = ''
|
|
DNS=185.12.64.1 185.12.64.2 2a01:4ff:ff00::add:1 2a01:4ff:ff00::add:2
|
|
'';
|
|
}
|