fix: less eval time

chore: switch smb to domain/remove wireguard
2024-11-21 20:37:07 +01:00 · 2024-11-21 19:58:15 +01:00
8 changed files with 11 additions and 22 deletions
--- a/config/basic/default.nix
+++ b/config/basic/default.nix
@ -38,4 +38,5 @@
  ];
  age.identityPaths = [ "/state/etc/ssh/ssh_host_ed25519_key" ];
  boot.mode = lib.mkDefault "efi";
+  documentation.enable = lib.mkDefault false;
 }
--- a/config/services/samba.nix
+++ b/config/services/samba.nix
@ -39,19 +39,6 @@ in
      ##];
    };
  };
-  wireguard.samba-patrick.server = {
-    host = config.secrets.secrets.global.domains.web;
-    port = 51830;
-    reservedAddresses = [
-      "10.43.0.0/20"
-      "fd00:1765::/112"
-    ];
-    openFirewall = true;
-  };
-
-  networking.nftables.firewall.zones.untrusted.interfaces = [
-    "samba-patrick"
-  ];

  services.samba = {
    enable = true;
--- a/flake.lock
+++ b/flake.lock
@ -1371,11 +1371,11 @@
        "pre-commit-hooks": "pre-commit-hooks_3"
      },
      "locked": {
-        "lastModified": 1730662453,
-        "narHash": "sha256-gfHjVmhsbsp0O61RSBxtrg4xEsYwQ5BZwyQTwIfFl9s=",
+        "lastModified": 1732215218,
+        "narHash": "sha256-/iaKjsFlCbbyDQSJeeCkcgq1+fiVTnJZNyyOO9aaMRM=",
        "owner": "oddlama",
        "repo": "nixos-extra-modules",
-        "rev": "ba53e1a0becde25b0644fbf886234669c9b285e3",
+        "rev": "90c0b018de0465bffe35fee0f86dadfab35b878f",
        "type": "github"
      },
      "original": {
--- a/hosts/desktopnix/net.nix
+++ b/hosts/desktopnix/net.nix
@ -26,7 +26,6 @@
    };
  };
  networking.nftables.firewall.zones.untrusted.interfaces = [ "lan01" ];
-  wireguard.samba-patrick.client.via = "elisabeth-samba";
  services.mullvad-vpn = {
    enable = true;
    package = pkgs.mullvad-vpn;
@ -35,7 +34,7 @@
    "/etc/mullvad-vpn"
    {
      directory = "/var/lib/netbird-main";
-      owner = "netbird-main";
+      user = "netbird-main";
    }
  ];
  services.netbird = {
--- a/hosts/elisabeth/default.nix
+++ b/hosts/elisabeth/default.nix
@ -27,5 +27,4 @@
    };
  };
  nixpkgs.hostPlatform = "x86_64-linux";
-  documentation.enable = false;
 }
--- a/hosts/patricknix/net.nix
+++ b/hosts/patricknix/net.nix
@ -14,7 +14,6 @@
    devoloog-sae19.rekeyFile = ./secrets/iwd/devoloog-sae19.age;
    devoloog-sae20.rekeyFile = ./secrets/iwd/devoloog-sae20.age;
  };
-  wireguard.samba-patrick.client.via = "elisabeth-samba";
  networking.nftables.firewall.zones.untrusted.interfaces = [
    "lan01"
    "lan02"
--- a/nix/hosts.nix
+++ b/nix/hosts.nix
@ -85,5 +85,9 @@
      # All nixosSystem instanciations are collected here, so that we can refer
      # to any system via nodes.<name>
      nodes = config.nixosConfigurations // config.guestConfigurations;
+      wireguardEvalCache = config.pkgs.x86_64-linux.lib.wireguard.createEvalCache inputs [
+        "scrtiny-patrick"
+        "elisabeth"
+      ];
    };
 }
--- a/users/patrick/smb.nix
+++ b/users/patrick/smb.nix
@ -1,8 +1,8 @@
-{ config, nodes, ... }:
+{ config, ... }:
 {
  hm.home.smb =
    let
-      address = nodes.elisabeth-samba.config.wireguard.samba-patrick.ipv4;
+      address = "smb.${config.secrets.secrets.global.domains.web}";
      credentials = config.age.secrets.smb-creds.path;
    in
    [
Author	SHA1	Message	Date
Patrick	46613eee4d	fix: less eval time	2024-11-21 20:37:07 +01:00
Patrick	906a3ed803	chore: switch smb to domain/remove wireguard	2024-11-21 19:58:15 +01:00