From ab263e5184466ac860317c103ff017a74611b50a Mon Sep 17 00:00:00 2001
From: andromeda <andromeda@lenovo>
Date: Fri, 2 Jan 2026 23:15:56 +0100
Subject: [PATCH] migrate to impermanence?

---
 machines/109-199-104-83/configuration.nix | 10 +++++++-
 machines/109-199-104-83/impermanence.nix  | 30 +++++++++++++++++++++++
 2 files changed, 39 insertions(+), 1 deletion(-)
 create mode 100644 machines/109-199-104-83/impermanence.nix

diff --git a/machines/109-199-104-83/configuration.nix b/machines/109-199-104-83/configuration.nix
index 2699370..0567830 100644
--- a/machines/109-199-104-83/configuration.nix
+++ b/machines/109-199-104-83/configuration.nix
@@ -4,6 +4,10 @@
   machine,
   ...
 }: {
+  imports = [
+    ./impermanence.nix
+    (modulesPath + "/profiles/qemu-guest.nix")
+  ];
   # roundcube config
   services.roundcube = {
     enable = true;
@@ -46,8 +50,12 @@
   # system config
   system.stateVersion = "25.11";
   nix.settings.experimental-features = ["flakes" "nix-command"];
-  imports = [(modulesPath + "/profiles/qemu-guest.nix")];
   fileSystems."/" = {
+    device = "none";
+    fsType = "tmpfs";
+    options = ["defaults" "size=60%" "mode=755"];
+  };
+  fileSystems."/nix" = {
     device = "/dev/sda1";
     fsType = "ext4";
   };
diff --git a/machines/109-199-104-83/impermanence.nix b/machines/109-199-104-83/impermanence.nix
new file mode 100644
index 0000000..18420c2
--- /dev/null
+++ b/machines/109-199-104-83/impermanence.nix
@@ -0,0 +1,30 @@
+{
+  environment.persistence."/nix/persist" = {
+    enable = true;
+    hideMounts = true;
+    directories = [
+      # logs
+      "/var/log"
+      "/var/lib/systemd/coredump"
+
+      # users
+      "/var/lib/nixos"
+
+      # private ssh keys
+      "/etc/ssh"
+
+      # mailserver
+      "/var/vmail"
+      "/var/dkim"
+      "/var/lib/dovecot"
+      "/var/lib/postfix"
+      "/var/lib/postgresql"
+      "/var/lib/redis-rspamd"
+      "/var/lib/roundcube"
+      "/var/lib/secrets"
+    ];
+    files = [
+      "/etc/machine-id"
+    ];
+  };
+}