diff --git a/extras/k3s-node.nix b/extras/k3s-node.nix
new file mode 100644
index 0000000..aa86c88
--- /dev/null
+++ b/extras/k3s-node.nix
@@ -0,0 +1,21 @@
+{
+  config,
+  pkgs,
+  ...
+}: {
+  networking.firewall.allowedTCPPorts = [
+    6443 # k3s: required so that pods can reach the API server (running on port 6443 by default)
+    # 2379 # k3s, etcd clients: required if using a "High Availability Embedded etcd" configuration
+    # 2380 # k3s, etcd peers: required if using a "High Availability Embedded etcd" configuration
+  ];
+  networking.firewall.allowedUDPPorts = [
+    # 8472 # k3s, flannel: required if using multi-node for inter-node networking
+  ];
+  services.k3s = {
+    enable = true;
+    role = "agent";
+    # token = "jakeginesin12345678910";
+    tokenFile = config.age.secrets.kube.path;
+    serverAddr = "https://172.24.233.22:6443";
+  };
+}
diff --git a/hosts/server3/configuration.nix b/hosts/server3/configuration.nix
index bf74656..25cd844 100644
--- a/hosts/server3/configuration.nix
+++ b/hosts/server3/configuration.nix
@@ -10,6 +10,7 @@
     ../meta.nix
     ../../extras/ssh.nix
     ../../extras/gpu.nix
+    ../../extras/k3s-node.nix
   ];
 
   config = {
diff --git a/hosts/server3/hardware-configuration.nix b/hosts/server3/hardware-configuration.nix
new file mode 100644
index 0000000..1e19282
--- /dev/null
+++ b/hosts/server3/hardware-configuration.nix
@@ -0,0 +1,36 @@
+# Do not modify this file!  It was generated by ‘nixos-generate-config’
+# and may be overwritten by future invocations.  Please make changes
+# to /etc/nixos/configuration.nix instead.
+{ config, lib, pkgs, modulesPath, ... }:
+
+{
+  imports =
+    [ (modulesPath + "/installer/scan/not-detected.nix")
+    ];
+
+  boot.initrd.availableKernelModules = [ "xhci_pci" "thunderbolt" "nvme" "ahci" ];
+  boot.initrd.kernelModules = [ ];
+  boot.kernelModules = [ "kvm-intel" ];
+  boot.extraModulePackages = [ ];
+
+  fileSystems."/" =
+    { device = "/dev/disk/by-uuid/f7b96f80-b47a-4994-b8d6-45d4ad5584c4";
+      fsType = "ext4";
+    };
+
+  fileSystems."/home/synchronous/.agenix/agenix.d" =
+    { device = "none";
+      fsType = "ramfs";
+    };
+
+  fileSystems."/boot" =
+    { device = "/dev/disk/by-uuid/7EFB-314B";
+      fsType = "vfat";
+      options = [ "fmask=0077" "dmask=0077" ];
+    };
+
+  swapDevices = [ ];
+
+  nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
+  hardware.cpu.intel.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;
+}