machines/fra01/default.nix


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39

{ config, lib, pkgs, ... }:

let endpoint = "95.179.243.82";
in
{
  networking = {
    domain = "ns.vapor.systems";
    hostName = "fra01";
  };

  pubKey =
    "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIB9rBu7L0ktMFpYOqvKyjDoO8a5Y0CfqnCJCGEdE6cOV";

  kubernetes = {
    role = "agent";
    externalIP = {
      v4 = endpoint;
      v6 = "2001:19f0:6c01:28e5:5400:3ff:fed7:7a2a";
    };
  };

  services.powerdns.role = "secondary";

  wireguard = {
    enable = true;
    inherit endpoint;
    v4 = { address = "10.10.0.3"; };
    v6 = { address = "3"; };
    publicKey = "jw3hiRczS0kQoOYlgofFp23/YZq8mzDaPRto+qVz7iE=";
    allowedIPs = [ "10.102.5.0/24" "fd15:3d8c:d429:102:500::/72" ];
  };

  deploy = {
    host = endpoint;
    buildOn = "local";
    substituteOnTarget = true;
    hermetic = false;
  };
}