Add Wolfram as new remote-server

Signed-off-by: Mel <mel@rnrd.eu>
author: Mel <mel@rnrd.eu> 2025-09-26 14:50:34 +0200
committer: Mel <mel@rnrd.eu> 2025-09-26 15:19:47 +0200
commit: 79ddd100b2071874bbe920e52feefd9c7c11f6b1 (patch)
tree: f56ada47cfb9b76b3c609756c0ea241d7a502f40 /roles/remote-server.nix
parent: 6a1d5f484b000d3f9c6ebb2e2c7074da3186e1a7 (diff)
download: minerals-79ddd100b2071874bbe920e52feefd9c7c11f6b1.tar.zst
minerals-79ddd100b2071874bbe920e52feefd9c7c11f6b1.zip
1 files changed, 35 insertions, 0 deletions
diff --git a/roles/remote-server.nix b/roles/remote-server.nix
new file mode 100644
index 0000000..599ca73
--- /dev/null
+++ b/roles/remote-server.nix
@@ -0,0 +1,35 @@
+{
+  ...
+}:
+{
+  imports = [
+    # we inherit from desktop
+    ./desktop.nix
+  ];
+
+  virtualisation = {
+    docker = {
+      enable = true;
+      daemon.settings.dns = [
+        "1.1.1.1"
+        "1.0.0.1"
+      ];
+    };
+  };
+
+  programs.steam = {
+    enable = true;
+    remotePlay.openFirewall = true;
+    dedicatedServer.openFirewall = true;
+    localNetworkGameTransfers.openFirewall = true;
+  };
+
+  services.openssh = {
+    enable = true;
+    openFirewall = true;
+  };
+
+  # override desktop configuration, because we do run SSH
+  # on remote-servers.
+  age.identityPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
+}
author	Mel <mel@rnrd.eu>	2025-09-26 14:50:34 +0200
committer	Mel <mel@rnrd.eu>	2025-09-26 15:19:47 +0200
commit	79ddd100b2071874bbe920e52feefd9c7c11f6b1 (patch)
tree	f56ada47cfb9b76b3c609756c0ea241d7a502f40 /roles/remote-server.nix
parent	6a1d5f484b000d3f9c6ebb2e2c7074da3186e1a7 (diff)
download	minerals-79ddd100b2071874bbe920e52feefd9c7c11f6b1.tar.zst minerals-79ddd100b2071874bbe920e52feefd9c7c11f6b1.zip