# This is your system's configuration file. # Use this to configure your system environment (it replaces /etc/nixos/configuration.nix) { outputs, lib, pkgs, ... }: { # You can import other NixOS modules here imports = [ # If you want to use modules your own flake exports (from modules/nixos): # outputs.nixosModules.example # Or modules from other flakes (such as nixos-hardware): # inputs.hardware.nixosModules.common-cpu-amd # inputs.hardware.nixosModules.common-ssd # You can also split up your configuration and import pieces of it here: # ./users.nix outputs.nixosModules.vpn-ip ../../../disko/EDI ]; environment.systemPackages = with pkgs; [ ]; programs.virt-manager.enable = true; users.groups.libvirtd.members = ["lillian"]; virtualisation.libvirtd.enable = true; virtualisation.spiceUSBRedirection.enable = true; services.samba = { enable = true; openFirewall = true; settings = { global = { "invalid users" = [ "root" ]; "passwd program" = "/run/wrappers/bin/passwd %u"; security = "user"; }; public = { browseable = "yes"; comment = "Public samba share."; "guest ok" = "yes"; path = "/home/lillian/samba"; "read only" = "no"; }; }; }; users.groups.samba.members = ["lillian"]; services.vpn-ip = { ip = "3"; }; networking = { hostName = "EDI"; networkmanager.enable = true; }; hardware.enableAllFirmware = true; hardware.enableRedistributableFirmware = true; boot = { # Lanzaboote currently replaces the systemd-boot module. # This setting is usually set to true in configuration.nix # generated at installation time. So we force it to false # for now. loader.systemd-boot.enable = lib.mkForce false; initrd.systemd.enable = true; lanzaboote = { enable = true; pkiBundle = "/var/lib/sbctl"; }; kernelModules = [ "iwlmvm" "iwlwifi" ]; }; # https://nixos.wiki/wiki/FAQ/When_do_I_update_stateVersion system.stateVersion = "25.11"; }