allencai/ccl-nixos-dotfiles
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: imxyy-nix-x16

Browse Source
This commit is contained in:
imxyy_soope_
2025-07-18 23:43:10 +08:00
parent 422259838b
commit 66e772ce62
3 changed files with 44 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
config/hosts/imxyy-nix-x16/home.nix
View File

@@ -41,7 +41,7 @@
programs.niri.settings = { programs.niri.settings = {
environment.STEAM_FORCE_DESKTOPUI_SCALING = "1.25"; environment.STEAM_FORCE_DESKTOPUI_SCALING = "1.25";
outputs = { outputs = {
DP-2 = { eDP-1 = {
enable = true; enable = true;
mode = { mode = {
width = 1920; width = 1920;
@@ -59,6 +59,7 @@
cli.all.enable = true; cli.all.enable = true;
coding.all.enable = true; coding.all.enable = true;
desktop.all.enable = true; desktop.all.enable = true;
virt.moonlight.enable = true;
desktop.browser.librewolf.enable = lib.mkForce false; desktop.browser.librewolf.enable = lib.mkForce false;

44
config/hosts/imxyy-nix-x16/net.nix
View File

@@ -1,6 +1,5 @@
{ {
config, config,
lib,
pkgs, pkgs,
sopsRoot, sopsRoot,
... ...
@@ -10,7 +9,48 @@
"biosdevname=0" "biosdevname=0"
"net.ifnames=0" "net.ifnames=0"
]; ];
networking.networkmanager.enable = true; networking = {
networkmanager.enable = true;
firewall.enable = false;
nftables = {
enable = true;
flushRuleset = true;
ruleset = ''
table inet firewall {
set LANv4 {
type ipv4_addr
flags interval
elements = { 10.0.0.0/8, 100.64.0.0/10, 172.16.0.0/12, 192.168.0.0/16, 169.254.0.0/16 }
}
set LANv6 {
type ipv6_addr
flags interval
elements = { fd00::/8, fe80::/10 }
}
chain output {
type filter hook output priority 100; policy accept;
}
chain input {
type filter hook input priority 0; policy drop;
iif lo accept
ct state invalid drop
ct state established,related accept
ip saddr @LANv4 accept
ip6 saddr @LANv6 accept
}
chain forward {
type filter hook forward priority 0; policy drop;
}
}
'';
};
};
sops.secrets.dae-imxyy-nix-x16 = { sops.secrets.dae-imxyy-nix-x16 = {
sopsFile = sopsRoot + /dae-imxyy-nix-x16.dae; sopsFile = sopsRoot + /dae-imxyy-nix-x16.dae;

4
modules/xdg.nix
View File

@@ -53,10 +53,6 @@ in
"file://${homedir}/Videos " "file://${homedir}/Videos "
"file://${homedir}/Music " "file://${homedir}/Music "
"file://${homedir}/workspace " "file://${homedir}/workspace "
"file://${homedir}/Documents/%E7%8F%AD%E7%BA%A7%E4%BA%8B%E5%8A%A1 "
"file://${homedir}/NAS NAS"
"file://${homedir}/NAS/imxyy_soope_ NAS imxyy_soope_"
"file://${homedir}/NAS/imxyy_soope_/OS NAS OS"
]; ];
}; };
}; };