Nix configurations for my homelab
Update netbird IPs and change netbird-ip -> netbird-ipv4
Netbird can assign IPv6 addresses which I will likely use over the v4
addresses.
author
yemou
date
(May 28, 2026, 12:35 AM -0400)
commit
e328e51e
e328e51eec2a71133ac3beb070729de1516ef309
parent
9d65de2a
9d65de2a138eebfe7d977bdab341e57220eb4ae6
+22
-22
+2
-2
modules/fail2ban.nix
+2
-2
modules/fail2ban.nix
···
12
12
rndtime = "1h";
13
13
};
14
14
ignoreIP = [
15
-
(lib.mkIf (config.networking.hostName != "lily") config.cafe.info.network.lily.netbird-ip)
16
-
(lib.mkIf (config.networking.hostName != "lutea") config.cafe.info.network.lutea.netbird-ip)
15
+
(lib.mkIf (config.networking.hostName != "lily") config.cafe.info.network.lily.netbird-ipv4)
16
+
(lib.mkIf (config.networking.hostName != "lutea") config.cafe.info.network.lutea.netbird-ipv4)
17
17
];
18
18
maxretry = 1;
19
19
};
+2
-2
modules/network-info.nix
+2
-2
modules/network-info.nix
···
28
28
default = null;
29
29
description = "IPv6 address of the host";
30
30
};
31
-
netbird-ip = lib.mkOption {
31
+
netbird-ipv4 = lib.mkOption {
32
32
type = nullOr str;
33
33
default = null;
34
-
description = "NetBird IP address of the host";
34
+
description = "NetBird IPv4 address of the host";
35
35
};
36
36
};
37
37
+1
-1
modules/qbittorrent.nix
+1
-1
modules/qbittorrent.nix
···
115
115
AuthSubnetWhitelistEnabled = true;
116
116
AuthSubnetWhitelist = lib.strings.join ", " [
117
117
"192.168.2.1/32"
118
-
(lib.optionalString (config.networking.hostName == "lily") "${config.cafe.info.network.lutea.netbird-ip}/32")
118
+
(lib.optionalString (config.networking.hostName == "lily") "${config.cafe.info.network.lutea.netbird-ipv4}/32")
119
119
];
120
120
};
121
121
};
+4
-4
modules/remote-build-machines.nix
+4
-4
modules/remote-build-machines.nix
···
35
35
programs.ssh = {
36
36
knownHosts = {
37
37
nixremote-lily = {
38
-
hostNames = [ config.cafe.info.network.lily.netbird-ip ];
38
+
hostNames = [ config.cafe.info.network.lily.netbird-ipv4 ];
39
39
publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINaReNM+eSIzbZvqahaAlanf0z89rJQIYWx/rlaS4f1Y";
40
40
};
41
41
nixremote-lutea = {
42
-
hostNames = [ config.cafe.info.network.lutea.netbird-ip ];
42
+
hostNames = [ config.cafe.info.network.lutea.netbird-ipv4 ];
43
43
publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICNMTxa2zRmHIXt3ARlCplboWRdCsAmDlN8gDLik4vNs";
44
44
};
45
45
};
···
58
58
'';
59
59
in
60
60
''
61
-
${mkSshConfig "lily" config.cafe.info.network.lily.netbird-ip}
62
-
${mkSshConfig "lutea" config.cafe.info.network.lutea.netbird-ip}
61
+
${mkSshConfig "lily" config.cafe.info.network.lily.netbird-ipv4}
62
+
${mkSshConfig "lutea" config.cafe.info.network.lutea.netbird-ipv4}
63
63
'';
64
64
};
65
65
}
+1
-1
modules/remote-builder.nix
+1
-1
modules/remote-builder.nix
···
25
25
nix.settings.trusted-users = [ "nixremote" ];
26
26
27
27
services.openssh.settings.AllowUsers = [
28
-
(lib.mkIf (config.networking.hostName != "lily") "nixremote@${config.cafe.info.network.lily.netbird-ip}")
28
+
(lib.mkIf (config.networking.hostName != "lily") "nixremote@${config.cafe.info.network.lily.netbird-ipv4}")
29
29
];
30
30
}
+1
-1
modules/services/openssh.nix
+1
-1
modules/services/openssh.nix
···
7
7
];
8
8
9
9
services.openssh.settings.AllowUsers = [
10
-
"mou@${config.cafe.info.network.lutea.netbird-ip}"
10
+
"mou@${config.cafe.info.network.lutea.netbird-ipv4}"
11
11
(lib.mkIf (config.networking.hostName == "lily") "mou@${config.cafe.info.network.lutea.ipv6}")
12
12
(lib.mkIf (config.networking.hostName == "lily") "mou@${config.cafe.info.network.lutea.ipv4-local}")
13
13
];