NixOS configuration for HPC cluster
https://docs.hpc.informatik.hs-fulda.de/
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
41 lines
811 B
41 lines
811 B
{ lib, config, nodes, ... }:
|
|
|
|
with lib;
|
|
|
|
{
|
|
fileSystems."home" = {
|
|
mountPoint = "/home";
|
|
device = "manager.${config.networking.domain}:/home";
|
|
fsType = "nfs";
|
|
options = [
|
|
"nfsvers=4.2"
|
|
"noauto"
|
|
"x-systemd.automount"
|
|
"x-systemd.idle-timeout=600"
|
|
];
|
|
};
|
|
|
|
services.openssh = {
|
|
settings = {
|
|
#LogLevel = "DEBUG3";
|
|
};
|
|
|
|
extraConfig = ''
|
|
IgnoreRhosts no
|
|
|
|
DenyGroups !vip,cluster
|
|
|
|
Match Group vip
|
|
HostbasedAuthentication yes
|
|
HostbasedAcceptedAlgorithms ssh-ed25519*
|
|
HostbasedUsesNameFromPacketOnly yes
|
|
'';
|
|
};
|
|
|
|
environment.etc."ssh/shosts.equiv".text = concatStringsSep "\n" (concatMap
|
|
(node: [
|
|
node.config.networking.hostName
|
|
node.config.networking.fqdn
|
|
])
|
|
(attrValues nodes));
|
|
}
|