l2 hostapd.nix

randomizedcoder · randomizedcoder · commit 1e14ebf19077 · 2025-06-20T21:45:20.000-07:00
diff --git a/desktop/l/home.nix b/desktop/l/home.nix
@@ -395,6 +395,8 @@
     #cmake
     pkg-config
 
+    gdb
+
     # Scripting/Utils
     perl
     #3.12.8 on 12th of Feb 2025
diff --git a/desktop/l2/Makefile b/desktop/l2/Makefile
@@ -33,6 +33,10 @@ rebuild_trace:
 update:
 	sudo nix flake update;
 
+sync:
+	rsync -av /home/das/nixos/desktop/"${EXPECTED_HOSTNAME}"/ "${EXPECTED_HOSTNAME}":/home/das/nixos/desktop/"${EXPECTED_HOSTNAME}"/
+	#rsync -av /home/das/nixos/modules/ hp1:/home/das/nixos/modules/
+
 rebuild_old:
 	# sudo cp ./flake.nix /etc/nixos/
 	# sudo cp ./flake.lock /etc/nixos/
diff --git a/desktop/l2/configuration.nix b/desktop/l2/configuration.nix
@@ -41,6 +41,7 @@
       #./smokeping.nix
       #./distributed-builds.nix
       ./hyprland.nix
+      ./hostapd.nix
     ];
 
   boot = {
diff --git a/desktop/l2/hostapd.nix b/desktop/l2/hostapd.nix
@@ -0,0 +1,82 @@
+#
+# hostapd.nix
+#
+
+{ config, pkgs, ... }:
+
+let
+  interface1 = "wlp35s0"; # e.g. 2.4GHz channel 6
+  interface2 = "wlp65s0"; # e.g. 5GHz channel 100
+  interface3 = "wlp70s0"; # e.g. 5GHz channel 149
+
+  commonHostapdSettings = ''
+    ssid=myssid
+    wpa=2
+    wpa_key_mgmt=SAE
+    rsn_pairwise=CCMP
+    sae_require_mfp=1
+    ieee80211w=2
+    ieee80211n=1
+    ieee80211ac=1
+    ieee80211ax=1
+    wmm_enabled=1
+
+    # WMM tuning for Best Effort (AC_BE)
+    wmm_ac_be_aifs=1
+    wmm_ac_be_cwmin=4
+    wmm_ac_be_cwmax=4
+    wmm_ac_be_txop_limit=32
+    wmm_ac_be_acm=0
+
+    # 802.11r (Fast BSS Transition)
+    ieee80211r=1
+    mobility_domain=4f57
+    ft_over_ds=1
+    ft_psk_generate_local=1
+    nas_identifier=myssid-ap
+  '';
+in
+{
+  services.hostapd = {
+    enable = true;
+    radios = {
+      "${interface1}" = {
+        config = pkgs.writeText "hostapd-1.conf" (''
+          interface=${interface1}
+          hw_mode=g
+          channel=6
+          ${commonHostapdSettings}
+        '');
+      };
+      "${interface2}" = {
+        config = pkgs.writeText "hostapd-2.conf" (''
+          interface=${interface2}
+          hw_mode=a
+          channel=100
+          ${commonHostapdSettings}
+        '');
+      };
+      "${interface3}" = {
+        config = pkgs.writeText "hostapd-3.conf" (''
+          interface=${interface3}
+          hw_mode=a
+          channel=149
+          ${commonHostapdSettings}
+        '');
+      };
+    };
+  };
+
+  # Disable DHCP on all interfaces, use static IP or bridge later
+  networking.interfaces.${interface1}.useDHCP = false;
+  networking.interfaces.${interface2}.useDHCP = false;
+  networking.interfaces.${interface3}.useDHCP = false;
+
+  networking.interfaces.${interface1}.ipv4.addresses = [ { address = "192.168.30.1"; prefixLength = 24; } ];
+  networking.interfaces.${interface2}.ipv4.addresses = [ { address = "192.168.31.1"; prefixLength = 24; } ];
+  networking.interfaces.${interface3}.ipv4.addresses = [ { address = "192.168.32.1"; prefixLength = 24; } ];
+
+  networking.firewall.enable = true;
+  networking.nat.enable = true;
+  networking.nat.externalInterface = "enp1s0";
+}
