Kabbone/nixos-config
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: Kabbone:88c2a622235e231e9ccbbd9a4f33fc6adceaaac9
Branches Tags
Kabbone:main
Kabbone:dev
Kabbone:refactor
...
compare: Kabbone:b37e0cdda51cf23357302fc44815d70905fdb7f4
Branches Tags
Kabbone:main
Kabbone:dev
Kabbone:refactor

2 Commits
88c2a62223 ... b37e0cdda5

Author SHA1 Message Date
Kabbone
b37e0cdda5
server: tweak postgresql to more caching 2024-02-12 12:34:15 +01:00
Kabbone
f750968224
server: disable jitsi, add acme to nextcloud, add office 2024-02-12 12:25:27 +01:00
5 changed files with 61 additions and 5 deletions
Show Stats Expand all files Collapse all files

47
disko/nas_luks.nix Normal file
View File

@ -0,0 +1,47 @@
{
disko.devices = {
disk = {
sda = {
type = "disk";
device = "/dev/sda";
content = {
type = "gpt";
partitions = {
luks = {
size = "100%";
content = {
type = "luks";
name = "NAS-RAID";
askPassword = true;
# disable settings.keyFile if you want to use interactive password entry
#passwordFile = "/tmp/secret.key"; # Interactive
settings = {
allowDiscards = true;
};
content = {
type = "btrfs";
extraArgs = [ "-f -L NAS-RAID" ];
subvolumes = {
"@" = {
mountpoint = "/mnt/Pluto";
mountOptions = [ "compress=zstd" "noatime" "ssd" "discard=async" ];
};
"@/Backups";
"@/Media";
"@/Games";
"@/IT";
"@/Rest";
"@snapshots" = {
mountpoint = "/mnt";
mountOptions = [ "compress=zstd" "noatime" "ssd" "discard=async" ];
};
};
};
};
};
};
};
};
};
};
}

2
modules/services/server/default.nix
View File

@ -17,7 +17,7 @@
./nextcloud.nix ./nextcloud.nix
./matrix.nix ./matrix.nix
./coturn.nix ./coturn.nix
./jitsi.nix #./jitsi.nix
] ]
# picom, polybar and sxhkd are pulled from desktop module # picom, polybar and sxhkd are pulled from desktop module

2
modules/services/server/gitea_runner.nix
View File

@ -5,6 +5,8 @@
podman ={ podman ={
enable = true; enable = true;
autoPrune.enable = true; autoPrune.enable = true;
dockerCompat = true;
#defaultNetwork.settings.dns_enabled = true;
}; };
}; };

7
modules/services/server/nextcloud.nix
View File

@ -46,7 +46,7 @@
services.onlyoffice = { services.onlyoffice = {
enable = true; enable = true;
hostname = "localhost"; hostname = "localhost";
postgresName = "onlyofficedb"; postgresName = "onlyoffice";
postgresHost = "localhost"; postgresHost = "localhost";
postgresUser = "onlyoffice"; postgresUser = "onlyoffice";
postgresPasswordFile = config.age.secrets."services/nextcloud/onlyofficedb".path; postgresPasswordFile = config.age.secrets."services/nextcloud/onlyofficedb".path;
@ -91,4 +91,9 @@
requires = ["postgresql.service"]; requires = ["postgresql.service"];
after = ["postgresql.service"]; after = ["postgresql.service"];
}; };
security.acme.defaults.email = "webmaster@kabtop.de";
security.acme.defaults.webroot = "/var/lib/acme/acme-challenge";
security.acme.acceptTerms = true;
} }

8
modules/services/server/postgresql.nix
View File

@ -12,8 +12,9 @@
max_connections = 200; max_connections = 200;
listen_addresses = "localhost"; listen_addresses = "localhost";
password_encryption = "scram-sha-256"; password_encryption = "scram-sha-256";
shared_buffers = "512MB"; shared_buffers = "2GB";
work_mem = "8MB"; work_mem = "1GB";
maintence_work_mem = "500MB"
autovacuum_work_mem = -1; autovacuum_work_mem = -1;
min_wal_size = "1GB"; min_wal_size = "1GB";
max_wal_size = "4GB"; max_wal_size = "4GB";
@ -29,7 +30,8 @@
host whatsappdb mautrixwa localhost scram-sha-256 host whatsappdb mautrixwa localhost scram-sha-256
host telegramdb mautrixtele localhost scram-sha-256 host telegramdb mautrixtele localhost scram-sha-256
host signaldb mautrixsignal localhost scram-sha-256 host signaldb mautrixsignal localhost scram-sha-256
host onlyofficedb onlyoffice localhost scram-sha-256 host onlyoffice onlyoffice localhost scram-sha-256
local onlyoffice onlyoffice peer
''; '';
initialScript = config.age.secrets."services/postgresql/initScript.sql".path; initialScript = config.age.secrets."services/postgresql/initScript.sql".path;
}; };