Add several NixOS hosts on Proxmox and Oracle Cloud

2025-12-06 09:07:21 +01:00 · 2023-12-22 01:15:04 +01:00 · 2023-12-22 01:15:04 +01:00 · acc0ad68e0
commit acc0ad68e0
parent 9afb9ec47e
43 changed files with 4356 additions and 187 deletions
--- a/profiles/common/home.nix
+++ b/profiles/common/home.nix
@ -3,6 +3,12 @@
 {
  home.packages = with pkgs; [

+    # audio stuff
+    spek # spectrum analyzer
+    losslessaudiochecker
+    ffmpeg_5-full
+    flac
+
    # "big" programs
    filebot
    gimp
@ -205,6 +211,23 @@

  #  MIGHT NEED TO ENABLE THIS ON SURFACE!!

+sops.defaultSopsFile = "${config.home.homeDirectory}/.dotfiles/secrets/general/secrets.yaml";
+sops.validateSopsFiles = false;
+
+# sops.age.keyFile = "${config.home.homeDirectory}/.ssh/key.txt";
+# This will generate a new key if the key specified above does not exist
+# sops.age.generateKey = true;
+
+# sops.gnupg.home = "/home/swarsel/.dotfiles/secrets/keys";
+# since we are using the home-manager implementation, we need to specify the runtime path for each secret
+sops.secrets.mrswarsel = {path = "/run/user/1000/secrets/mrswarsel";};
+sops.secrets.nautilus = {path = "/run/user/1000/secrets/nautilus";};
+sops.secrets.leon = {path = "/run/user/1000/secrets/leon";};
+sops.secrets.caldav = {path = "${config.home.homeDirectory}/.emacs.d/.caldav";};
+# sops.secrets.leon = { };
+# sops.secrets.nautilus = { };
+# sops.secrets.mrswarsel = { };
+
 programs.ssh= {
  enable = true;
  extraConfig = "SetEnv TERM=xterm-256color";
@ -214,6 +237,11 @@ programs.ssh= {
      port = 22;
      user = "root";
    };
+    "jellyfin" = {
+      hostname = "192.168.2.16";
+      port = 22;
+      user = "root";
+    };
    "pfsense" = {
      hostname = "192.168.1.1";
      port = 22;
@ -229,6 +257,11 @@ programs.ssh= {
      port = 22;
      user = "root";
    };
+    "fetcher" = {
+      hostname = "192.168.1.192";
+      port = 22;
+      user = "root";
+    };
    "omv" = {
      hostname = "192.168.1.3";
      port = 22;
@ -254,6 +287,11 @@ programs.ssh= {
      port = 22;
      user = "root";
    };
+    "spotify" = {
+      hostname = "192.168.1.17";
+      port = 22;
+      user = "root";
+    };
    "wordpress" = {
      hostname = "192.168.2.7";
      port = 22;
@ -274,11 +312,26 @@ programs.ssh= {
      port = 22;
      user = "root";
    };
+    "matrix2" = {
+      hostname = "192.168.2.20";
+      port = 22;
+      user = "root";
+    };
    "database" = {
      hostname = "192.168.2.21";
      port = 22;
      user = "root";
    };
+    "minecraft" = {
+      hostname = "130.61.119.129";
+      port = 22;
+      user = "opc";
+    };
+    "sync" = {
+      hostname = "193.122.53.173";
+      port = 22;
+      user = "root"; #this is a oracle vm server but needs root due to nixos-infect
+    };
    "pkv" = {
      hostname = "46.232.248.161";
      port = 22;
@ -343,23 +396,6 @@ programs.ssh= {
  };
 };

-sops.defaultSopsFile = "${config.home.homeDirectory}/.dotfiles/secrets/general/secrets.yaml";
-sops.validateSopsFiles = false;
-
-# sops.age.keyFile = "${config.home.homeDirectory}/.ssh/key.txt";
-# This will generate a new key if the key specified above does not exist
-# sops.age.generateKey = true;
-
-# sops.gnupg.home = "/home/swarsel/.dotfiles/secrets/keys";
-# since we are using the home-manager implementation, we need to specify the runtime path for each secret
-sops.secrets.mrswarsel = {path = "/run/user/1000/secrets/mrswarsel";};
-sops.secrets.nautilus = {path = "/run/user/1000/secrets/nautilus";};
-sops.secrets.leon = {path = "/run/user/1000/secrets/leon";};
-sops.secrets.caldav = {path = "${config.home.homeDirectory}/.emacs.d/.caldav";};
-# sops.secrets.leon = { };
-# sops.secrets.nautilus = { };
-# sops.secrets.mrswarsel = { };
-
 stylix.targets.emacs.enable = false;

  # fonts.fontconfig.enable = true;