lytedev/nix
1
0
Fork 1
Code Issues Pull requests 1 Actions Packages Projects Releases Wiki Activity

Socks

Browse source
This commit is contained in:
Daniel Flanagan 2024-07-24 13:05:09 -05:00
parent d87fe696e3
commit 1b755432cc
2 changed files with 15 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
modules/nixos/default.nix
View file

@ -618,7 +618,9 @@
podman = {
enable = true;
dockerCompat = true;
dockerSocket.enable = true;
defaultNetwork.settings.dns_enabled = true;
# networkSocket.enable = true;
};
oci-containers = {

13
nixos/beefcake.nix
View file

@ -751,6 +751,11 @@ sudo nix run nixpkgs#ipmitool -- raw 0x30 0x30 0x02 0xff 0x00
enable = true;
name = "beefcake";
url = "https://git.lyte.dev";
settings = {
container = {
network = "podman";
};
};
labels = [
# type ":host" does not depend on docker/podman/lxc
"podman"
@ -1007,6 +1012,14 @@ sudo nix run nixpkgs#ipmitool -- raw 0x30 0x30 0x02 0xff 0x00
# should I be using btrfs subvolumes? can I capture file ownership, perimssions, and ACLs?
virtualisation.oci-containers.backend = "podman";
virtualisation.podman = {
# autoPrune.enable = true;
defaultNetwork.settings = {
# this lets any podman container access host services
# primarily did this so runner actions running podman containers can hit git.lyte.dev
driver = "host";
};
};
environment.systemPackages = with pkgs; [
linuxquota
htop