From 16f7a8fc81d0b1df4eacb51f21b46e382653c780 Mon Sep 17 00:00:00 2001
From: CherryKitten <sammy@cherrykitten.dev>
Date: Tue, 4 Jun 2024 12:37:11 +0200
Subject: [PATCH] add new host serval :3

---
 hosts/serval/default.nix     | 53 ++++++++++++++++++++++++++++++++++++
 modules/home/ssh/default.nix | 13 +++++++++
 2 files changed, 66 insertions(+)
 create mode 100644 hosts/serval/default.nix

diff --git a/hosts/serval/default.nix b/hosts/serval/default.nix
new file mode 100644
index 0000000..de58f7d
--- /dev/null
+++ b/hosts/serval/default.nix
@@ -0,0 +1,53 @@
+{ lib, config, ... }: {
+  imports = [ ../../profiles/hcloud ];
+
+  fileSystems."/" = { device = "/dev/sda1"; fsType = "ext4"; };
+  cherrykitten.backups.enable = true;
+  cherrykitten.network = {
+    public_IPv4 = "116.203.116.228";
+    public_IPv6 = "2a01:4f8:1c1b:5db9::1";
+    internal_IPv4 = "10.69.0.2";
+    internal_IPv6 = "fe80::8400:ff:fe8e:e0a0";
+  };
+
+  networking = {
+    nameservers = [
+      "2a01:4ff:ff00::add:2"
+      "2a01:4ff:ff00::add:1"
+      "185.12.64.2"
+    ];
+    defaultGateway = "172.31.1.1";
+    defaultGateway6 = {
+      address = "fe80::1";
+      interface = "eth0";
+    };
+    dhcpcd.enable = false;
+    usePredictableInterfaceNames = lib.mkForce false;
+    interfaces = {
+      eth0 = {
+        ipv4.addresses = [
+          { address = config.cherrykitten.network.public_IPv4; prefixLength = 32; }
+        ];
+        ipv6.addresses = [
+          { address = config.cherrykitten.network.public_IPv6; prefixLength = 64; }
+        ];
+        ipv4.routes = [{ address = "172.31.1.1"; prefixLength = 32; }];
+        ipv6.routes = [{ address = "fe80::1"; prefixLength = 128; }];
+      };
+      ens10 = {
+        ipv4.addresses = [
+          { address = config.cherrykitten.network.internal_IPv4; prefixLength = 32; }
+        ];
+        ipv6.addresses = [
+          { address = config.cherrykitten.network.internal_IPv6; prefixLength = 64; }
+        ];
+      };
+    };
+  };
+  services.udev.extraRules = ''
+    ATTR{address}=="96:00:03:60:ec:55", NAME="eth0"
+    ATTR{address}=="86:00:00:8e:e0:a0", NAME="ens10"
+  '';
+
+  system.stateVersion = "23.11";
+}
diff --git a/modules/home/ssh/default.nix b/modules/home/ssh/default.nix
index 7078380..67f144d 100644
--- a/modules/home/ssh/default.nix
+++ b/modules/home/ssh/default.nix
@@ -39,6 +39,19 @@
         ];
       };
 
+      "serval" = {
+        host = "serval";
+        hostname = "2a01:4f8:1c1b:5db9::1";
+        identityFile = "~/.ssh/yubikey.pub";
+        identitiesOnly = true;
+        remoteForwards = [
+          {
+            bind.address = "/run/user/1000/gnupg/S.gpg-agent";
+            host.address = "/run/user/1000/gnupg/S.gpg-agent.extra";
+          }
+        ];
+      };
+
       "chat.cherrykitten.dev" = {
         host = "chat.cherrykitten.dev chat";
         hostname = "chat.cherrykitten.dev";