aboutsummaryrefslogblamecommitdiff
path: root/systems/zoldene/virtualisation.nix
blob: d2212fed19864c16ed3b584870f0140fb582cd05 (plain) (tree) 
d3a40bd














































1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46














































                                                                                                      
{ pkgs-no-overlay, ... }:
{
  boot.kernelModules = [ "nf_nat_ftp" ];

  ### Enable Docker
  virtualisation.docker.enable = true;
  disko.devices.zpool.zfast.datasets."root/persist/var/lib/docker" =
    { type = "zfs_fs"; mountpoint = "/persist/zfast/var/lib/docker"; options.mountpoint = "legacy"; };

  ### Enable LXC
  disko.devices.zpool.zfast.datasets."root/persist/var/lib/lxc" =
    { type = "zfs_fs"; mountpoint = "/persist/zfast/var/lib/lxc"; options.mountpoint = "legacy"; };
  virtualisation.lxc = {
    enable = true;
    lxcfs.enable = true;
  };

  ### Enable libvirtd
  virtualisation.libvirtd = {
    enable = true;
    qemu.package = pkgs-no-overlay.qemu;
  };

  ### Persistence for LXC / Docker
  environment.persistence."/persist/zfast".directories = [
    {
      directory = "/var/lib/lxc";
      user = "root";
      group = "root";
      mode = "0755";
    }
    {
      directory = "/var/lib/docker";
      user = "root";
      group = "root";
      mode = "0750";
    }
  ];

  # ip forwarding is needed for NAT'ing to work in containers/VMs.
  boot.kernel.sysctl = {
    "net.ipv4.conf.all.forwarding" = true;
    "net.ipv4.conf.default.forwarding" = true;
  };
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-23 02:14:30 +0000