system/network/networking.nix

{
  lib,
  config,
  ...
}:
with lib; let
  cfg = config.mySystem.networking;
in {
  options.mySystem.networking = with types; {
    hostname = mkOption {
      type = str;
      example = "gampo";
    };
    id = mkOption {
      type = str;
      example = "deadb33f";
    };
    domain = mkOption {
      type = nullOr str;
      example = "phundrak.com";
      default = null;
    };
    hostFiles = mkOption {
      type = listOf path;
      example = [/path/to/hostFile];
      default = [];
    };
    firewall = {
      openPorts = mkOption {
        type = listOf int;
        example = [22 80 443];
        default = [];
      };
      openPortRanges = mkOption {
        type = listOf (attrsOf port);
        default = [];
        example = [
          {
            from = 8080;
            to = 8082;
          }
        ];
        description = ''
          A range of TCP and UDP ports on which incoming connections are
          accepted.
        '';
      };
      extraCommands = mkOption {
        type = nullOr lines;
        example = "iptables -A INPUTS -p icmp -j ACCEPT";
        default = null;
      };
    };
    wifi.disablePowersave = mkEnableOption ''
      Disables powersave for Wifi.

        Used mainly for the PineTab2, as leaving WiFi powersave with the bes2600 can cause stability issues.
    '';
  };

  config.networking = {
    hostName = cfg.hostname; # Define your hostname.
    hostId = cfg.id;
    networkmanager = {
      enable = true;
      wifi.powersave = ! cfg.wifi.disablePowersave;
    };
    inherit (cfg) hostFiles domain;
    firewall = {
      enable = true;
      allowedTCPPorts = cfg.firewall.openPorts;
      allowedUDPPorts = cfg.firewall.openPorts;
      allowedTCPPortRanges = cfg.firewall.openPortRanges;
      allowedUDPPortRanges = cfg.firewall.openPortRanges;
      extraCommands = (mkIf (cfg.firewall.extraCommands != null)) cfg.firewall.extraCommands;
    };
  };
}
initial commit 2025-05-04 02:47:36 +02:00			`{`
			`lib,`
			`config,`
			`...`
			`}:`
			`with lib; let`
chore: update flakes 2025-08-15 21:33:22 +02:00			`cfg = config.mySystem.networking;`
initial commit 2025-05-04 02:47:36 +02:00			`in {`
chore: update flakes 2025-08-15 21:33:22 +02:00			`options.mySystem.networking = with types; {`
initial commit 2025-05-04 02:47:36 +02:00			`hostname = mkOption {`
feat(alys): add alys host configuration 2025-07-05 00:02:39 +02:00			`type = str;`
initial commit 2025-05-04 02:47:36 +02:00			`example = "gampo";`
			`};`
			`id = mkOption {`
feat(alys): add alys host configuration 2025-07-05 00:02:39 +02:00			`type = str;`
initial commit 2025-05-04 02:47:36 +02:00			`example = "deadb33f";`
			`};`
feat(alys): add alys host configuration 2025-07-05 00:02:39 +02:00			`domain = mkOption {`
			`type = nullOr str;`
			`example = "phundrak.com";`
			`default = null;`
			`};`
initial commit 2025-05-04 02:47:36 +02:00			`hostFiles = mkOption {`
feat(alys): add alys host configuration 2025-07-05 00:02:39 +02:00			`type = listOf path;`
initial commit 2025-05-04 02:47:36 +02:00			`example = [/path/to/hostFile];`
			`default = [];`
			`};`
			`firewall = {`
			`openPorts = mkOption {`
feat(alys): add alys host configuration 2025-07-05 00:02:39 +02:00			`type = listOf int;`
initial commit 2025-05-04 02:47:36 +02:00			`example = [22 80 443];`
			`default = [];`
			`};`
			`openPortRanges = mkOption {`
feat(alys): add alys host configuration 2025-07-05 00:02:39 +02:00			`type = listOf (attrsOf port);`
initial commit 2025-05-04 02:47:36 +02:00			`default = [];`
			`example = [`
			`{`
			`from = 8080;`
			`to = 8082;`
			`}`
			`];`
			`description = ''`
			`A range of TCP and UDP ports on which incoming connections are`
			`accepted.`
			`'';`
			`};`
			`extraCommands = mkOption {`
feat(alys): add alys host configuration 2025-07-05 00:02:39 +02:00			`type = nullOr lines;`
initial commit 2025-05-04 02:47:36 +02:00			`example = "iptables -A INPUTS -p icmp -j ACCEPT";`
			`default = null;`
			`};`
			`};`
feat(hosts): add PineTab2 config 2026-03-26 22:30:44 +01:00			`wifi.disablePowersave = mkEnableOption ''`
			`Disables powersave for Wifi.`

			`Used mainly for the PineTab2, as leaving WiFi powersave with the bes2600 can cause stability issues.`
			`'';`
initial commit 2025-05-04 02:47:36 +02:00			`};`

			`config.networking = {`
			`hostName = cfg.hostname; # Define your hostname.`
			`hostId = cfg.id;`
feat(hosts): add PineTab2 config 2026-03-26 22:30:44 +01:00			`networkmanager = {`
			`enable = true;`
			`wifi.powersave = ! cfg.wifi.disablePowersave;`
			`};`
feat(alys): add alys host configuration 2025-07-05 00:02:39 +02:00			`inherit (cfg) hostFiles domain;`
initial commit 2025-05-04 02:47:36 +02:00			`firewall = {`
			`enable = true;`
			`allowedTCPPorts = cfg.firewall.openPorts;`
			`allowedUDPPorts = cfg.firewall.openPorts;`
			`allowedTCPPortRanges = cfg.firewall.openPortRanges;`
			`allowedUDPPortRanges = cfg.firewall.openPortRanges;`
			`extraCommands = (mkIf (cfg.firewall.extraCommands != null)) cfg.firewall.extraCommands;`
			`};`
			`};`
			`}`