From a922bc513cf4c1730b4c69cc43ca66004814e45b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Kjetil=20=C3=98rbekk?= <kj@orbekk.com>
Date: Sat, 18 Nov 2017 00:44:45 -0500
Subject: update dragon config

---
 machines/dragon.nix | 29 ++++++++++++++++++++++++++---
 1 file changed, 26 insertions(+), 3 deletions(-)

(limited to 'machines/dragon.nix')

diff --git a/machines/dragon.nix b/machines/dragon.nix
index f3257bf..0518cb0 100644
--- a/machines/dragon.nix
+++ b/machines/dragon.nix
@@ -1,9 +1,21 @@
 { config, lib, pkgs, ... }:
 {
-  imports =
-    [ ../config/common.nix
-      ../config/users.nix
+  imports = [
+    ../config/common.nix
+    ../config/users.nix
+  ];
+
+  virtualisation.lxc.enable = true;
+  virtualisation.lxc.lxcfs.enable = true;
+  virtualisation.lxd.enable = true;
+  security.apparmor = {
+    enable = true;
+    profiles = [
+      "${pkgs.lxc}/etc/apparmor.d/usr.bin.lxc-star" 
+      "${pkgs.lxc}/etc/apparmor.d/lxc-containers"
     ];
+    packages = [ pkgs.lxc ];
+  };
 
   boot.kernelParams = [ "console=tty0" ''console="ttyS0,115200n8"'' ];
   boot.loader.grub.extraConfig = ''
@@ -16,6 +28,17 @@
   
   networking = {
     hostName = lib.mkForce "dragon";
+
+    bridges = {
+      br0 = {
+        interfaces = ["eno2"];
+      };
+    };
+
+    interfaces.br0.ip6 = [
+      { address = "2001:470:8e2e:20:eca0:41ff:feef:92"; prefixLength = 64; }
+      { address = "2001:470:8e2e:20::d"; prefixLength = 64; }
+    ];
   };
 
   services = {
-- 
cgit v1.2.3