net/fail2ban: initial commit

1 files changed, 4 insertions, 47 deletions

diff --git a/sys/net/default.nix b/sys/net/default.nix
index 0341440..608806d 100644
--- a/sys/net/default.nix
+++ b/sys/net/default.nix
@@ -1,49 +1,6 @@
-{ lib, config, pkgs, ... }:
-with lib; let
-  cfg = config.local.net;
-in
 {
-  options.local.net = with lib.types; {
-    enable = mkEnableOption "networking stack";
-
-    hostname = mkOption {
-      type = str;
-    };
-
-    dhcpInterface = mkOption {
-      type = nullOr str;
-      default = null;
-    };
-  };
-
-  config = mkIf cfg.enable {
-    environment.systemPackages = [ pkgs.dhcpcd ];
-
-    networking = {
-      domain = mkDefault config.local.domains.host.main;
-      hostName = cfg.hostname;
-
-      useDHCP = false;
-      enableIPv6 = true;
-      useNetworkd = true;
-      useHostResolvConf = false;
-
-      wireguard.enable = true;
-    };
-
-    systemd.network.networks = mkIf (cfg.dhcpInterface != null) {
-      "40-${cfg.dhcpInterface}" = {
-        matchConfig.Name = cfg.dhcpInterface;
-
-        networkConfig = {
-          DHCP = "ipv4";
-          IPv6AcceptRA = true;
-          IPv6PrivacyExtensions = "kernel";
-        };
-
-        # make routing on this interface a dependency for network-online.target
-        linkConfig.RequiredForOnline = "routable";
-      };
-    };
-  };
+  imports = [
+    ./fail2ban.nix
+    ./interfaces.nix
+  ];
 }