From d97d3a0a2ab5973f0207673c7f3baf66eac1b54b Mon Sep 17 00:00:00 2001
From: yuri <yuri@nekover.se>
Date: Fri, 19 Jan 2024 12:15:50 +0100
Subject: [PATCH] Add unifi-controller host

---
 .../hosts/unifi-controller/configuration.nix  | 23 +++++++++++++++++++
 config/hosts/unifi-controller/default.nix     |  7 ++++++
 config/hosts/unifi-controller/unifi.nix       | 12 ++++++++++
 hosts.nix                                     |  4 ++++
 4 files changed, 46 insertions(+)
 create mode 100644 config/hosts/unifi-controller/configuration.nix
 create mode 100644 config/hosts/unifi-controller/default.nix
 create mode 100644 config/hosts/unifi-controller/unifi.nix

diff --git a/config/hosts/unifi-controller/configuration.nix b/config/hosts/unifi-controller/configuration.nix
new file mode 100644
index 0000000..565cdf7
--- /dev/null
+++ b/config/hosts/unifi-controller/configuration.nix
@@ -0,0 +1,23 @@
+{ ... }:
+{
+  boot.loader.grub = {
+    enable = true;
+    device = "/dev/vda";
+  };
+
+  networking = {
+    hostName = "unifi-controller";
+    firewall = {
+      allowedTCPPorts = [ 53 8080 8443 8880 8843 6789 27117 ];
+      allowedUDPPorts = [ 53 3478 5514 10001 1900 123 ];
+      allowedUDPPortRanges = [
+        {
+          from = 5656;
+          to = 5699;
+        }
+      ];
+    };
+  };
+
+  system.stateVersion = "23.11";
+}
diff --git a/config/hosts/unifi-controller/default.nix b/config/hosts/unifi-controller/default.nix
new file mode 100644
index 0000000..f66e094
--- /dev/null
+++ b/config/hosts/unifi-controller/default.nix
@@ -0,0 +1,7 @@
+{ ... }:
+{
+  imports = [
+    ./configuration.nix
+    ./unifi.nix
+  ];
+}
diff --git a/config/hosts/unifi-controller/unifi.nix b/config/hosts/unifi-controller/unifi.nix
new file mode 100644
index 0000000..75a7094
--- /dev/null
+++ b/config/hosts/unifi-controller/unifi.nix
@@ -0,0 +1,12 @@
+{ pkgs, lib, ... }:
+{
+  services.unifi = {
+    enable = true;
+    unifiPackage = pkgs.unifi;
+  };
+
+  nixpkgs.config.allowUnfreePredicate = pkg: builtins.elem (lib.getName pkg) [
+    "unifi-controller"
+    "mongodb"
+  ];
+}
diff --git a/hosts.nix b/hosts.nix
index 4dde06c..aee856e 100644
--- a/hosts.nix
+++ b/hosts.nix
@@ -112,6 +112,10 @@ in
       site = "vs";
       environment = "proxmox";
     };
+    unifi-controller = {
+      site = "wg";
+      environment = "proxmox";
+    };
     valkyrie = {
       hostNixpkgs = nixpkgs-23-05;
       site = "af";