modules: more fmting

2024-02-01 16:03:44 -05:00 · 2024-02-01 16:03:44 -05:00 · 74c6055414
commit 74c6055414
parent 034bc87e37
4 changed files with 55 additions and 51 deletions
--- a/modules/security.nix
+++ b/modules/security.nix
@ -43,30 +43,31 @@
  boot.kernelModules = ["tcp_bbr"];
  services.openssh.settings.LogLevel = "VERBOSE";
  security.acme = {
    acceptTerms = true;
    defaults.email = "github@notohh.dev";
  };
-  services.fail2ban = {
+  services = {
-    enable = true;
+    openssh.settings.LogLevel = "VERBOSE";
-    bantime = "1h";
+    fail2ban = {
-    maxretry = 1;
+      enable = true;
-    ignoreIP = [
+      bantime = "1h";
-      "192.168.0.0/16"
+      maxretry = 1;
-      "172.16.0.0/12"
+      ignoreIP = [
-      "10.0.0.0/8"
+        "192.168.0.0/16"
-      "5.161.102.107/32"
+        "172.16.0.0/12"
-      "100.71.49.65/10"
+        "10.0.0.0/8"
-      "100.82.146.40/10"
+        "5.161.102.107/32"
-    ];
+        "100.71.49.65/10"
-    jails = {
+        "100.82.146.40/10"
-      DEFAULT = {
+      ];
-        settings = {
+      jails = {
-          findtime = 100000;
+        DEFAULT = {
-          mode = "aggressive";
+          settings = {
            findtime = 100000;
            mode = "aggressive";
          };
        };
      };
    };
--- a/modules/system.nix
+++ b/modules/system.nix
@ -13,8 +13,6 @@
    tailscale.enable = true;
  };
  time.timeZone = "America/New_York";
  i18n = {
    defaultLocale = "en_US.UTF-8";
    extraLocaleSettings = {
--- a/modules/time.nix
+++ b/modules/time.nix
@ -1,23 +1,26 @@
 _: {
-  services.chrony = {
+  time.timeZone = "America/New_York";
    enable = true;
    servers = [
      # 0.us.pool.ntp.org
      "134.215.114.62"
      "192.189.65.187"
      "96.245.170.99"
      "192.92.6.30"
    ];
  };
-  services.timesyncd = {
+  services = {
-    enable = true;
+    chrony = {
-    servers = [
+      enable = true;
-      # 0.us.pool.ntp.org
+      servers = [
-      "134.215.114.62"
+        # 0.us.pool.ntp.org
-      "192.189.65.187"
+        "134.215.114.62"
-      "96.245.170.99"
+        "192.189.65.187"
-      "192.92.6.30"
+        "96.245.170.99"
-    ];
+        "192.92.6.30"
      ];
    };
    timesyncd = {
      enable = true;
      servers = [
        # 0.us.pool.ntp.org
        "134.215.114.62"
        "192.189.65.187"
        "96.245.170.99"
        "192.92.6.30"
      ];
    };
  };
 }
--- a/modules/virtualisation.nix
+++ b/modules/virtualisation.nix
@ -1,17 +1,19 @@
 _: {
-  virtualisation.oci-containers.backend = "docker";
+  virtualisation = {
-  virtualisation.docker = {
+    oci-containers.backend = "docker";
-    enable = true;
+    docker = {
    enableOnBoot = true;
    autoPrune = {
      enable = true;
-      dates = "weekly";
+      enableOnBoot = true;
-      flags = [
+      autoPrune = {
-        "--all"
+        enable = true;
        dates = "weekly";
        flags = [
          "--all"
        ];
      };
      listenOptions = [
        "/run/docker.sock"
      ];
    };
    listenOptions = [
      "/run/docker.sock"
    ];
  };
 }