feat: postgres tcp/ip not explicitly enabled, firewall updates

modules/nixos/development-tools.nix

@@ -9,6 +9,7 @@
 
   environment.systemPackages = with pkgs; [
     taplo # toml language server for editing helix configs per repo
+    pgcli
     oil
     watchexec
     android-tools

modules/nixos/postgres.nix

@@ -9,7 +9,7 @@
         ensureDBOwnership = true;
       }
     ];
-    enableTCPIP = true;
+    # enableTCPIP = true;
 
     package = pkgs.postgresql_15;
 
@@ -29,11 +29,12 @@
 
     identMap = ''
       # ArbitraryMapName systemUser DBUser
-        superuser_map    root       postgres
-        superuser_map    postgres   postgres
-        superuser_map    daniel     postgres
-        # Let other names login as themselves
-        superuser_map   /^(.*)$    \1
+      superuser_map    root       postgres
+      superuser_map    postgres   postgres
+      superuser_map    daniel     postgres
+
+      # Let other names login as themselves
+      superuser_map   /^(.*)$    \1
     '';
   };
 

nixos/beefcake.nix

@@ -1025,6 +1025,14 @@ sudo nix run nixpkgs#ipmitool -- raw 0x30 0x30 0x02 0xff 0x00
   #   listenPort = 6767;
   # };
 
+  networking.firewall.allowedUDPPorts = [9876 9877];
+  networking.firewall.allowedUDPPortRanges = [
+    {
+      from = 27000;
+      to = 27100;
+    }
+  ];
+
   home-manager.users.daniel.home.stateVersion = "24.05";
   system.stateVersion = "22.05";
 }

nixos/foxtrot.nix

@@ -26,7 +26,7 @@ in {
     kde-plasma
     podman
     lutris
-    # postgres
+    postgres
     wifi
     hyprland
     steam

nixos/router.nix

@@ -179,7 +179,7 @@ in {
 
   networking.extraHosts = ''
     127.0.0.1 localhost
-    127.0.1.1 router.h.lyte.dev router
+    ${ip} router.h.lyte.dev router
 
     ::1 localhost ip6-localhost ip6-loopback
     ff02::1 ip6-allnodes