1 files changed, 61 insertions, 0 deletions

diff --git a/nixos/configurations/zd-one0.nix b/nixos/configurations/zd-one0.nix
new file mode 100644
index 0000000..98d9691
--- /dev/null
+++ b/nixos/configurations/zd-one0.nix
@@ -0,0 +1,61 @@
+_: {
+  system.stateVersion = "25.11";
+  deploy = {
+    enable = true;
+    ssh.host = "zd-one0";
+  };
+
+  cynerd = {
+    openwrtone = true;
+    #switch = {
+    #  enable = true;
+    #  lanAddress = "10.8.12.10/24";
+    #  lanGateway = config.cynerd.hosts.spt.omnia;
+    #};
+    #wifiAP.zd = {
+    #  enable = false;
+    #  qca988x = {
+    #    interface = "wlp1s0";
+    #    bssids = config.secrets.wifiMacs.zd-mox.qca988x;
+    #    channel = 36;
+    #  };
+    #};
+  };
+
+  boot.initrd.availableKernelModules = ["dm-mod"];
+  boot.consoleLogLevel = 7;
+
+  services = {
+    journald.extraConfig = ''
+      SystemMaxUse=8G
+    '';
+
+    btrfs.autoScrub = {
+      enable = true;
+      fileSystems = ["/"];
+    };
+
+    fail2ban = {
+      enable = true;
+      ignoreIP = ["10.8.0.0/24" "10.8.1.0/24" "10.8.2.0/24"];
+    };
+  };
+
+  networking.useDHCP = false;
+  networking.useNetworkd = true;
+
+  systemd.network = {
+    networks = {
+      "eth0" = {
+        matchConfig.Name = "eth0";
+        networkConfig = {
+          Address = "10.8.2.10/24";
+          Gateway = "10.8.2.1";
+          DNS = "1.1.1.1";
+          IPv6AcceptRA = "yes";
+        };
+      };
+    };
+    wait-online.anyInterface = true;
+  };
+}