Kabbone/nixos-config
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

hosts: fixes for initial lifebook

Browse Source 
add lanzaboote lifebook
This commit is contained in:
Kabbone
2024-08-10 06:08:14 +02:00
parent e5db869b82
commit b05a692b47
3 changed files with 17 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
hosts/lifebook/hardware-configuration.nix
View File

@@ -32,10 +32,10 @@
};
kernelModules = [ "kvm-intel" ];
kernelParams = [ "luks.options=fido2-device=auto" ];
# extraModprobeConfig = ''
# options i915 enable_guc=3 enable_fbc=1 fastboot=1
# '';
kernelParams = [ "luks.options=fido2-device=auto" "sysrq_always_enabled=1" ];
extraModprobeConfig = ''
options i915 enable_guc=3
'';
tmp.useTmpfs = false;
tmp.cleanOnBoot = true;
};
@@ -174,16 +174,15 @@
#defaultGateway = "192.168.0.1";
#nameservers = [ "192.168.0.4" ];
firewall = {
checkReversePath = "loose";
checkReversePath = "false";
enable = true;
allowedUDPPorts = [ 24727 ];
allowedUDPPorts = [ 24727 51820 ];
allowedTCPPorts = [ 24727 ];
};
};
hardware.cpu.intel.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;
powerManagement = {
#cpuFreqGovernor = lib.mkDefault "schedutil";
#powertop.enable = true;
powertop.enable = true;
};
}