feat(hosts): add hetzner vps

rubenhoenle · Jan 31, 2025 · 796f111 · 796f111
1 parent 012f125
commit 796f111
Show file tree

Hide file tree

Showing 7 changed files with 108 additions and 2 deletions.
diff --git a/README.md b/README.md
@@ -6,6 +6,12 @@
 
 `nixos-rebuild switch --build-host root@mandalore --target-host root@mandalore --flake ".#mandalore"`
 
+`nixos-rebuild switch --build-host root@vps --target-host root@vps --flake ".#vps"`
+
+## Installation
+
+`nix run github:nix-community/nixos-anywhere/1.3.0 -- --flake .#vps [email protected] --build-on-remote`
+
 ## Startup
 
 `ssh root@<IP> -p 2222`

diff --git a/disko-config.nix b/disko-config.nix
@@ -0,0 +1,37 @@
+{
+  disko.devices = {
+    disk = {
+      main = {
+        type = "disk";
+        device = "/dev/sda";
+        content = {
+          type = "gpt";
+          partitions = {
+            boot = {
+              size = "1M";
+              type = "EF02";
+              priority = 1;
+            };
+            ESP = {
+              size = "512M";
+              type = "EF00";
+              content = {
+                type = "filesystem";
+                format = "vfat";
+                mountpoint = "/boot";
+              };
+            };
+            root = {
+              size = "100%";
+              content = {
+                type = "filesystem";
+                format = "ext4";
+                mountpoint = "/";
+              };
+            };
+          };
+        };
+      };
+    };
+  };
+}
diff --git a/flake.lock b/flake.lock
diff --git a/flake.nix b/flake.nix
@@ -17,9 +17,13 @@
       url = "github:numtide/treefmt-nix";
       inputs.nixpkgs.follows = "nixpkgs";
     };
+    disko = {
+      url = "github:nix-community/disko";
+      inputs.nixpkgs.follows = "nixpkgs";
+    };
   };
 
-  outputs = { self, nixpkgs, nixpkgs-unstable, agenix, treefmt-nix, nixos-hardware, ... }:
+  outputs = { self, nixpkgs, nixpkgs-unstable, agenix, disko, treefmt-nix, nixos-hardware, ... }:
     let
       pkgs = system: import nixpkgs {
         inherit system;
@@ -49,6 +53,7 @@
                 pkgs-unstable = pkgs-unstable host.system;
               };
               modules = [
+                disko.nixosModules.disko
                 agenix.nixosModules.default
                 {
                   _module.args.agenix = agenix.packages.${host.system}.default;

diff --git a/hardware/hetzner-vm.nix b/hardware/hetzner-vm.nix
@@ -0,0 +1,15 @@
+{ lib, modulesPath, ... }:
+
+{
+  imports = [
+    (modulesPath + "/profiles/qemu-guest.nix")
+  ];
+
+  boot.initrd.availableKernelModules = [ "ahci" "xhci_pci" "virtio_pci" "virtio_scsi" "sd_mod" "sr_mod" ];
+  boot.initrd.kernelModules = [ ];
+  boot.kernelModules = [ ];
+  boot.extraModulePackages = [ ];
+  swapDevices = [ ];
+  networking.useDHCP = lib.mkDefault true;
+  nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
+}
diff --git a/hosts.nix b/hosts.nix
@@ -5,6 +5,7 @@
     nixosModules = [
       ./hardware/thinkcentre-m710q.nix
       ./modules/boot.nix
+      ./modules/secrets.nix
       {
         networking.hostName = "mandalore";
 
@@ -33,4 +34,26 @@
       }
     ];
   }
+  {
+    name = "vps";
+    system = "x86_64-linux";
+    nixosModules = [
+      ./hardware/hetzner-vm.nix
+      ./disko-config.nix
+      {
+        networking.hostName = "vps";
+
+        services.nginx.enable = true;
+
+        boot.loader.grub.enable = true;
+
+        swapDevices = [{
+          device = "/var/lib/swapfile";
+          size = 4 * 1024;
+        }];
+
+        system.stateVersion = "24.11";
+      }
+    ];
+  }
 ]
diff --git a/modules/modules.nix b/modules/modules.nix
@@ -4,7 +4,6 @@
     ./locales.nix
     ./networking.nix
     ./nix.nix
-    ./secrets.nix
     ./users.nix
   ];
 }