Greetings!
I’ve got a brand new Dell laptop with NixOS successfully i nstalled. I’m using the Gnome spin and have a few basic apps installed. It’s connected to the internet and I can browse the web with Firefox.
The next task I am working on is establishing an ssh connection over WiFi between my other local Linux PC (running Manjaro).
On both hosts I have confirmed that the Open SSH Daemon is active.
On my NixOS laptop inside my /etc/nixos/configuration.nix
I have uncommented the lines which say:
services openssh enable = true;
…as well as:
networking.firewall enable = false;
(I realize that disabling the firewall is not a good security practice. I am only doing this temporarily to successfully establish the ssh connection for the first time and then afterwards I will obviously re-enable the firewalls and explore more secure firewall configuration options.)
The status of my firewall on my other Linux host is (temporarily) disabled as well.
$ ssh <remote-username>@fe80::ebaa:74b5:6ad:918
ssh: connect to host fe80::ebaa:74b5:6ad:918 port 22: Invalid argument
Even if I wrap the ip address in square brackets, that doesn’t help.
I can’t even ping the NixOS host from my Manjaro host:
$ ping fe80::ebaa:74b5:6ad:918%wlp2s0
ping: fe80::ebaa:74b5:6ad:918%wlp2s0: Name or service not known
$ ping6 fe80::ebaa:74b5:6ad:918%wlp2s0
ping6: fe80::ebaa:74b5:6ad:918%wlp2s0: Name or service not known
What might you folks suggest I try next?
I found the official NixOS Wiki doc on OpenSSH configuration: SSH - NixOS Wiki
This doc will help after I successfully connect. For now it is not immediately relevant since I have enabled openssh as well as disabled the firewall in just those two lines as quoted above in my configuration.nix
(temporarily).
What other information could I provide to help troubleshoot?
configuration.nix
# Edit this configuration file to define what should be installed on
# your system. Help is available in the configuration.nix(5) man page
# and in the NixOS manual (accessible by running ‘nixos-help’).
{ config, pkgs, lib, ... }:
{
imports =
[ # Include the results of the hardware scan.
./hardware-configuration.nix
];
nixpkgs.config.allowUnfree = true;
# Bootloader
boot.loader.systemd-boot.enable = true;
boot.loader.efi.canTouchEfiVariables = true;
networking.hostName = "nixos-laptop"; # Define your hostname.
# networking.wireless.enable = true; # Enables wireless support via wpa_supplicant.
# Configure network proxy if necessary
# networking.proxy.default = "http://user:password@proxy:port/";
# networking.proxy.noProxy = "127.0.0.1,localhost,internal.domain";
# Enable networking
networking.networkmanager.enable = true;
# Set your time zone.
time.timeZone = "America/New_York";
# Select internationalisation properties.
i18n.defaultLocale = "en_US.UTF-8";
i18n.extraLocaleSettings = {
LC_ADDRESS = "en_US.UTF-8";
LC_IDENTIFICATION = "en_US.UTF-8";
LC_MEASUREMENT = "en_US.UTF-8";
LC_MONETARY = "en_US.UTF-8";
LC_NAME = "en_US.UTF-8";
LC_NUMERIC = "en_US.UTF-8";
LC_PAPER = "en_US.UTF-8";
LC_TELEPHONE = "en_US.UTF-8";
LC_TIME = "en_US.UTF-8";
};
# Enable the X11 windowing system.
services.xserver.enable = true;
# Enable the GNOME Desktop Environment.
services.xserver.displayManager.gdm.enable = true;
services.xserver.desktopManager.gnome.enable = true;
# Configure keymap in X11
services.xserver.xkb = {
layout = "us";
variant = "";
};
# Enable CUPS to print documents.
services.printing.enable = true;
# Enable sound with pipewire.
hardware.pulseaudio.enable = false;
security.rtkit.enable = true;
services.pipewire = {
enable = true;
alsa.enable = true;
alsa.support32Bit = true;
pulse.enable = true;
# If you want to use JACK applications, uncomment this
#jack.enable = true;
# use the example session manager (no others are packaged yet so this is enabled by default,
# no need to redefine it in your config for now)
#media-session.enable = true;
};
# Enable touchpad support (enabled default in most desktopManager).
# services.xserver.libinput.enable = true;
# Define a user account. Don't forget to set a password with ‘passwd’.
users.users.<username> = {
isNormalUser = true;
description = "<petname>";
extraGroups = [ "networkmanager" "wheel" ];
packages = with pkgs; [
# thunderbird
];
};
# Install firefox.
programs.firefox.enable = true;
# List packages installed in system profile. To search, run:
# $ nix search wget
environment.systemPackages = with pkgs; [
vim # Do not forget to add an editor to edit configuration.nix! The Nano editor is also installed by default.
wget
google-chrome
gotop
foot
radeontop
git
nerdfonts
gnome-terminal
# locate
python3
curl
vscode
fastfetch
signal-desktop
openssh
gedit
];
# Some programs need SUID wrappers, can be configured further or are
# started in user sessions.
# programs.mtr.enable = true;
# programs.gnupg.agent = {
# enable = true;
# enableSSHSupport = true;
# };
# List services that you want to enable:
# Enable the OpenSSH daemon.
services.openssh.enable = true;
# Open ports in the firewall.
# networking.firewall.allowedTCPPorts = [ ... ];
# networking.firewall.allowedUDPPorts = [ ... ];
# Or disable the firewall altogether.
networking.firewall.enable = false;
# This value determines the NixOS release from which the default
# settings for stateful data, like file locations and database versions
# on your system were taken. It‘s perfectly fine and recommended to leave
# this value at the release version of the first install of this system.
# Before changing this value read the documentation for this option
# (e.g. man configuration.nix or on https://nixos.org/nixos/options.html).
system.stateVersion = "24.11"; # Did you read the comment?
}
sshd status
$ systemctl status sshd
● sshd.service - SSH Daemon
Loaded: loaded (/etc/systemd/system/sshd.service; enabled; preset: ignored)
Active: active (running) since Mon 2024-12-09 03:09:38 EST; 1h 39min ago
Invocation: 4f5c29fa060041878d174fab4ae45254
Main PID: 8801 (sshd)
IP: 0B in, 0B out
IO: 788K read, 16K written
Tasks: 1 (limit: 18386)
Memory: 1.9M (peak: 3.1M)
CPU: 509ms
CGroup: /system.slice/sshd.service
└─8801 "sshd: /nix/store/nfjjkzr25i7qj2r0vslb242jbadb1k4j-openssh-9.9p1/bin/sshd -D -f />