Faris/nixos
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

push

Browse Source
This commit is contained in:
Faris 2026-03-08 20:02:04 +00:00
commit 097e071ab1
3 changed files with 168 additions and 129 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

187
home/podman.nix
View File

@ -63,6 +63,50 @@
}; };
}; };
akaunting = {
image = "docker.io/akaunting/akaunting:latest";
autoStart = true;
autoUpdate = "registry";
network = "bridge";
environmentFile = [
"/pool/services/secrets/default"
"/pool/services/secrets/akaunting"
];
volumes = [
"/pool/services/podman/akaunting/data:/var/www/html/akaunting"
];
ports = [
"8003:80"
];
extraConfig = {
Service = {
TimeoutStartSec = 900;
};
};
};
akaunting-db = {
image = "docker.io/mariadb:latest";
autoStart = true;
autoUpdate = "registry";
network = "bridge";
environmentFile = [
"/pool/services/secrets/default"
"/pool/services/secrets/akaunting"
];
volumes = [
"/pool/services/podman/akaunting/db:/var/lib/mysql"
];
ports = [
"3307:3306"
];
extraConfig = {
Service = {
TimeoutStartSec = 900;
};
};
};
archivebox = { archivebox = {
image = "docker.io/archivebox/archivebox:latest"; image = "docker.io/archivebox/archivebox:latest";
autoStart = true; autoStart = true;
@ -170,11 +214,10 @@
}; };
frigate = { frigate = {
image = "ghcr.io/blakeblackshear/frigate:0.17.0-beta2-tensorrt"; image = "ghcr.io/blakeblackshear/frigate:0.17.0";
autoStart = true; autoStart = true;
autoUpdate = "registry"; autoUpdate = "registry";
network = "bridge"; network = "bridge";
devices = [ "nvidia.com/gpu=all" ];
environmentFile = [ environmentFile = [
"/pool/services/secrets/default" "/pool/services/secrets/default"
"/pool/services/secrets/frigate" "/pool/services/secrets/frigate"
@ -191,30 +234,7 @@
"8554:8554" "8554:8554"
]; ];
extraPodmanArgs = [ extraPodmanArgs = [
"--shm-size=128m" "--shm-size=256m"
];
extraConfig = {
Service = {
TimeoutStartSec = 900;
};
};
};
gitea = {
image = "docker.gitea.com/gitea:1.23.7";
autoStart = true;
autoUpdate = "registry";
network = "bridge";
environmentFile = [
"/pool/services/secrets/default"
"/pool/services/secrets/gitea"
];
volumes = [
"/pool/services/podman/gitea:/data"
];
ports = [
"3001:3000"
"222:22"
]; ];
extraConfig = { extraConfig = {
Service = { Service = {
@ -300,6 +320,29 @@
}; };
}; };
hugo = {
image = "docker.io/hugomods/hugo:latest";
autoStart = true;
autoUpdate = "registry";
exec = "server -s /src/mektem.com -D";
network = "bridge";
environmentFile = [
"/pool/services/secrets/default"
];
volumes = [
"/pool/services/podman/hugo/src:/src"
"/pool/services/podman/hugo/cache:/tmp/hugo_cache"
];
ports = [
"1313:1313"
];
extraConfig = {
Service = {
TimeoutStartSec = 900;
};
};
};
immich-db = { immich-db = {
image = "docker.io/tensorchord/pgvecto-rs:pg14-v0.2.0@sha256:739cdd626151ff1f796dc95a6591b55a714f341c737e27f045019ceabf8e8c52"; image = "docker.io/tensorchord/pgvecto-rs:pg14-v0.2.0@sha256:739cdd626151ff1f796dc95a6591b55a714f341c737e27f045019ceabf8e8c52";
autoStart = true; autoStart = true;
@ -328,7 +371,6 @@
autoStart = true; autoStart = true;
autoUpdate = "registry"; autoUpdate = "registry";
network = "bridge"; network = "bridge";
# devices = [ "nvidia.com/gpu=all" ];
environmentFile = [ environmentFile = [
"/pool/services/secrets/default" "/pool/services/secrets/default"
"/pool/services/secrets/immich" "/pool/services/secrets/immich"
@ -393,7 +435,6 @@
autoStart = true; autoStart = true;
autoUpdate = "registry"; autoUpdate = "registry";
network = "bridge"; network = "bridge";
devices = [ "nvidia.com/gpu=all" ];
environmentFile = [ environmentFile = [
"/pool/services/secrets/default" "/pool/services/secrets/default"
]; ];
@ -609,28 +650,6 @@
# }; # };
# }; # };
matrix = {
image = "ghcr.io/element-hq/synapse";
autoStart = true;
autoUpdate = "registry";
network = "bridge";
environmentFile = [
"/pool/services/secrets/default"
"/pool/services/secrets/synapse"
];
volumes = [
"/pool/services/podman/synapse:/data"
];
ports = [
"8008:8008"
"8448:8448"
];
extraConfig = {
Service = {
TimeoutStartSec = 900;
};
};
};
metube = { metube = {
image = "ghcr.io/alexta69/metube:latest"; image = "ghcr.io/alexta69/metube:latest";
@ -712,29 +731,6 @@
# }; # };
#}; #};
ntfy = {
image = "docker.io/binwiederhier/ntfy";
autoStart = true;
autoUpdate = "registry";
network = "bridge";
exec = "serve";
environmentFile = [
"/pool/services/secrets/default"
"/pool/services/secrets/ntfy"
];
volumes = [
"/pool/services/podman/ntfy:/var/lib/ntfy"
];
ports = [
"81:80"
];
extraConfig = {
Service = {
TimeoutStartSec = 900;
};
};
};
ntp = { ntp = {
image = "docker.io/cturra/ntp"; image = "docker.io/cturra/ntp";
autoStart = true; autoStart = true;
@ -780,7 +776,6 @@
autoStart = true; autoStart = true;
autoUpdate = "registry"; autoUpdate = "registry";
network = "bridge"; network = "bridge";
devices = [ "nvidia.com/gpu=all" ];
environmentFile = [ environmentFile = [
"/pool/services/secrets/default" "/pool/services/secrets/default"
"/pool/services/secrets/ollama" "/pool/services/secrets/ollama"
@ -863,27 +858,6 @@
}; };
}; };
privatebin = {
image = "docker.io/privatebin/nginx-fpm-alpine:latest";
autoStart = true;
autoUpdate = "registry";
network = "bridge";
environmentFile = [
"/pool/services/secrets/default"
];
volumes = [
"/pool/media/privatebin:/srv/data"
];
ports = [
"8082:8080"
];
extraConfig = {
Service = {
TimeoutStartSec = 900;
};
};
};
prowlarr = { prowlarr = {
image = "lscr.io/linuxserver/prowlarr:latest"; image = "lscr.io/linuxserver/prowlarr:latest";
autoStart = true; autoStart = true;
@ -1220,29 +1194,6 @@
}; };
}; };
vaultwarden = {
image = "docker.io/vaultwarden/server:latest";
autoStart = true;
autoUpdate = "registry";
network = "bridge";
environmentFile = [
"/pool/services/secrets/default"
"/pool/services/secrets/vaultwarden"
];
volumes = [
"/pool/services/podman/vaultwarden:/data/"
];
ports = [
"8000:80"
"3012:3012"
];
extraConfig = {
Service = {
TimeoutStartSec = 900;
};
};
};
webdav = { webdav = {
image = "docker.io/bytemark/webdav:latest"; image = "docker.io/bytemark/webdav:latest";
autoStart = true; autoStart = true;

4
hosts/desktop/settings.nix
View File

@ -24,12 +24,12 @@
wakeOnLan.enable = true; wakeOnLan.enable = true;
ipv4.addresses = [ ipv4.addresses = [
{ {
address = "192.168.0.40"; address = "192.168.30.40";
prefixLength = 24; prefixLength = 24;
} }
]; ];
}; };
defaultGateway = "192.168.0.1"; defaultGateway = "192.168.30.1";
nameservers = [ "192.168.0.1" "1.1.1.1" ]; nameservers = [ "192.168.0.1" "1.1.1.1" ];
}; };

104
hosts/server/settings.nix
View File

@ -234,6 +234,51 @@ systemd.services.podman-network-vlan50 = {
# }; # };
}; };
gitea = {
image = "docker.gitea.com/gitea:1.23.7";
autoStart = true;
#autoUpdate = "registry";
networks = [ "vlan50" ];
environmentFiles = [
"/pool/services/secrets/default"
"/pool/services/secrets/gitea"
];
volumes = [
"/pool/services/podman/gitea:/data"
];
extraOptions = [
"--ip=192.168.50.32"
];
# extraConfig = {
# Service = {
# TimeoutStartSec = 900;
# };
# };
};
matrix = {
image = "ghcr.io/element-hq/synapse";
autoStart = true;
#autoUpdate = "registry";
networks = [ "vlan50" ];
environmentFiles = [
"/pool/services/secrets/default"
"/pool/services/secrets/synapse"
];
volumes = [
"/pool/services/podman/synapse:/data"
];
extraOptions = [
"--ip=192.168.50.33"
];
# extraConfig = {
# Service = {
# TimeoutStartSec = 900;
# };
# };
};
nginx = { nginx = {
image = "docker.io/nginx:latest"; image = "docker.io/nginx:latest";
autoStart = true; autoStart = true;
@ -248,7 +293,7 @@ systemd.services.podman-network-vlan50 = {
"/pool/services/podman/hugo/src/mektem.com/public:/usr/share/nginx/html" "/pool/services/podman/hugo/src/mektem.com/public:/usr/share/nginx/html"
]; ];
extraOptions = [ extraOptions = [
"--ip=192.168.50.33" "--ip=192.168.50.34"
]; ];
# extraConfig = { # extraConfig = {
# Service = { # Service = {
@ -257,21 +302,64 @@ systemd.services.podman-network-vlan50 = {
# }; # };
}; };
hugo = { ntfy = {
image = "docker.io/hugomods/hugo:latest"; image = "docker.io/binwiederhier/ntfy";
autoStart = true; autoStart = true;
#autoUpdate = "registry"; #autoUpdate = "registry";
networks = [ "vlan50_web" ]; networks = [ "vlan50" ];
cmd = [ "server -s /src/mektem.com -D" ]; cmd = [ "serve" ];
environmentFiles = [
"/pool/services/secrets/default"
"/pool/services/secrets/ntfy"
];
volumes = [
"/pool/services/podman/ntfy:/var/lib/ntfy"
];
extraOptions = [
"--ip=192.168.50.35"
];
# extraConfig = {
# Service = {
# TimeoutStartSec = 900;
# };
# };
};
privatebin = {
image = "docker.io/privatebin/nginx-fpm-alpine:latest";
autoStart = true;
#autoUpdate = "registry";
networks = [ "vlan50" ];
environmentFiles = [ environmentFiles = [
"/pool/services/secrets/default" "/pool/services/secrets/default"
]; ];
volumes = [ volumes = [
"/pool/services/podman/hugo/src:/src" "/pool/media/privatebin:/srv/data"
"/pool/services/podman/hugo/cache:/tmp/hugo_cache"
]; ];
extraOptions = [ extraOptions = [
"--ip=192.168.50.32" "--ip=192.168.50.36"
];
# extraConfig = {
# Service = {
# TimeoutStartSec = 900;
# };
# };
};
vaultwarden = {
image = "docker.io/vaultwarden/server:latest";
autoStart = true;
#autoUpdate = "registry";
networks = [ "vlan50" ];
environmentFiles = [
"/pool/services/secrets/default"
"/pool/services/secrets/vaultwarden"
];
volumes = [
"/pool/services/podman/vaultwarden:/data/"
];
extraOptions = [
"--ip=192.168.50.37"
]; ];
# extraConfig = { # extraConfig = {
# Service = { # Service = {