{ inputs, ... }: { flake.nixosModules.homebox = { config, pkgs, lib, ... }: { imports = [ inputs.disko.nixosModules.default inputs.sops-nix.nixosModules.sops inputs.home-manager.nixosModules.default ]; config = { boot = { kernelPackages = pkgs.linuxKernel.packages.linux_6_18; loader = { systemd-boot.enable = true; efi.canTouchEfiVariables = true; }; binfmt.emulatedSystems = lib.mkIf config.sysconfig.remoteBuildHost [ "aarch64-linux" ]; }; systemd.settings.Manager.DefaultLimitNOFILE = 2048; programs.zsh.enable = true; environment.shells = with pkgs; [ zsh bashInteractive ]; nixpkgs.config.allowUnfree = true; networking = { nameservers = lib.mkDefault [ "1.1.1.1" "1.0.0.1" ]; networkmanager = { enable = true; dns = "none"; }; useDHCP = false; dhcpcd.enable = false; nftables = {}; nat = { enable = true; internalInterfaces = [ "ve-.+" ]; externalInterface = "wlp7s0"; # wifi #externalInterface = "enp6s0"; # ethernet }; }; sysconfig = { remoteBuildHost = true; graphical = false; services = { sddm.enable = false; openssh.enable = true; pipewire.enable = true; netbird.enable = true; ollama.enable = false; avahi.enable = true; wyoming = { enable = true; piper = true; openwakeword = true; faster-whisper = true; }; }; programs = { hyprland.enable = false; hyprpanel.enable = false; steam.enable = false; }; docker = { enable = true; portainer.enable = true; traefik.enable = true; pihole.enable = true; authentik.enable = true; netbird.enable = true; openwebui.enable = true; ollama.enable = true; searxng.enable = true; home-assistant.enable = true; n8n.enable = true; nextcloud.enable = false; jellyfin.enable = true; }; containers = { "esotericbytes.com".enable = true; gitea.enable = true; code-server.enable = true; sandbox.enable = false; }; virtual-machines = { enable = true; }; }; fonts.packages = with pkgs; [ nerd-fonts.fira-code ]; }; }; }