add two nixos-managed VMs for docker swarm

change docker swarm ansible to target these vms
2024-02-04 17:16:41 +01:00 · 2024-02-04 17:16:41 +01:00 · 17f110b183
commit 17f110b183
parent c461ab5e49
4 changed files with 84 additions and 19 deletions
--- a/nixos/machines/default.nix
+++ b/nixos/machines/default.nix
@ -58,20 +58,6 @@
    };
  };

-  my-microvm = {
-    type = "virtual";
-    hypervisorName = "lewis";
-
-    nixosModule = { pkgs, ... }: {
-      # TODO: would be cool to create a check that a mac address is only ever assigned to one VM.
-      lab.vm.id = 0;
-
-      programs.bash.interactiveShellInit = ''
-        echo "Hello world from inside a virtual machine!!" | ${pkgs.lolcat}/bin/lolcat
-      '';
-    };
-  };
-
  hermes = {
    type = "virtual";
    hypervisorName = "lewis";
@ -81,6 +67,7 @@
        networking.dmz.services.enable = true;

        vm = {
+          # TODO: would be cool to create a check that a mac address is only ever assigned to one VM.
          id = 7;
          staticNetworking = true;
          staticIPv4 = config.lab.networking.dmz.ipv4.services;
@ -89,4 +76,61 @@
      };
    };
  };
+
+  maestro2 = {
+    type = "virtual";
+    hypervisorName = "lewis";
+
+    nixosModule = { pkgs, lib, ... }: {
+      lab.vm = {
+        id = 1;
+        staticNetworking = true;
+        staticIPv4 = "192.168.30.42";
+        staticIPv6 = "2a0d:6e00:1a77:30::42";
+      };
+
+      networking = {
+        nftables.enable = lib.mkForce false;
+        firewall.enable = lib.mkForce false;
+      };
+
+      virtualisation.docker = {
+        enable = true;
+        liveRestore = false;
+      };
+
+      environment.systemPackages = with pkgs; [
+        (python311.withPackages (python-pkgs: [
+          python-pkgs.docker
+          python-pkgs.requests
+        ]))
+      ];
+    };
+  };
+
+  bancomart2 = {
+    type = "virtual";
+    hypervisorName = "lewis";
+
+    nixosModule = { pkgs, lib, ... }: {
+      lab.vm.id = 2;
+
+      networking = {
+        nftables.enable = lib.mkForce false;
+        firewall.enable = lib.mkForce false;
+      };
+
+      virtualisation.docker = {
+        enable = true;
+        liveRestore = false;
+      };
+
+      environment.systemPackages = with pkgs; [
+        (python311.withPackages (python-pkgs: [
+          python-pkgs.docker
+          python-pkgs.requests
+        ]))
+      ];
+    };
+  };
 }