jasmine/dotfiles.nix
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity

fix networking

Browse source
This commit is contained in:
♥ Minnie ♥ 2023-07-30 09:13:40 +08:00
parent 2b9c3b7b4c
commit 4999b71c94
10 changed files with 22 additions and 12 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

16
nixos/lavender/configuration.nix
View file

@ -111,8 +111,20 @@
networkmanager.enable = true; networkmanager.enable = true;
firewall = { firewall = {
enable = true; enable = true;
allowedTCPPorts = [ 80 443 32400 32372 ]; allowedTCPPorts = [
allowedUDPPorts = [ 80 443 32400 32372 ]; 53 # pihole-FTL (DNS)
80 # traefik (HTTP)
443 # traefik (HTTPS)
32400 # plex
32372 # qbittorrent
];
allowedUDPPorts = [
53 # pihole-FTL (DNS)
80 # traefik (HTTP)
443 # traefik (HTTPS)
32400 # plex
32372 # qbittorrent
];
}; };
}; };

1
nixos/lavender/containers/homepage/default.nix
View file

@ -10,7 +10,6 @@
"/srv/data:/srv/data:ro" "/srv/data:/srv/data:ro"
"/var/run/docker.sock:/var/run/docker.sock" # pass local proxy "/var/run/docker.sock:/var/run/docker.sock" # pass local proxy
]; ];
ports = [ "3000:3000" ];
extraOptions = ["--network=host"]; extraOptions = ["--network=host"];
}; };
} }

6
nixos/lavender/containers/pihole/default.nix
View file

@ -11,9 +11,9 @@
"/srv/containers/pihole/secrets:/secrets" "/srv/containers/pihole/secrets:/secrets"
]; ];
ports = [ ports = [
"53:53/tcp" "192.168.1.100:53:53/tcp" # pihole-FTL (DNS)
"53:53/udp" "192.168.1.100:53:53/udp" # pihole-FTL (DNS)
"8181:80/tcp" "192.168.1.100:8181:80/tcp" # lighttpd (HTTP)
]; ];
environment = { environment = {
WEBPASSWORD_FILE = "/secrets/admin-password"; WEBPASSWORD_FILE = "/secrets/admin-password";

1
nixos/lavender/containers/plex/default.nix
View file

@ -9,7 +9,6 @@
"/srv/containers/plex:/config" "/srv/containers/plex:/config"
"/srv/data/media:/data/media:ro" "/srv/data/media:/data/media:ro"
]; ];
ports = [ "32400:32400" ];
extraOptions = ["--network=host"]; extraOptions = ["--network=host"];
}; };
} }

1
nixos/lavender/containers/prowlarr/default.nix
View file

@ -10,5 +10,6 @@
"/srv/data:/data" "/srv/data:/data"
]; ];
ports = [ "9696:9696" ]; ports = [ "9696:9696" ];
extraOptions = ["--network=media-stack"];
}; };
} }

1
nixos/lavender/containers/qbittorrent/default.nix
View file

@ -13,5 +13,6 @@
"8383:8080" "8383:8080"
"32372:32372" "32372:32372"
]; ];
extraOptions = ["--network=media-stack"];
}; };
} }

1
nixos/lavender/containers/radarr/default.nix
View file

@ -10,5 +10,6 @@
"/srv/data:/data" "/srv/data:/data"
]; ];
ports = [ "7878:7878" ]; ports = [ "7878:7878" ];
extraOptions = ["--network=media-stack"];
}; };
} }

1
nixos/lavender/containers/recyclarr/default.nix
View file

@ -8,5 +8,6 @@
volumes = [ volumes = [
"/srv/containers/recyclarr:/config" "/srv/containers/recyclarr:/config"
]; ];
extraOptions = ["--network=media-stack"];
}; };
} }

1
nixos/lavender/containers/sonarr/default.nix
View file

@ -10,5 +10,6 @@
"/srv/data:/data" "/srv/data:/data"
]; ];
ports = [ "8989:8989" ]; ports = [ "8989:8989" ];
extraOptions = ["--network=media-stack"];
}; };
} }

5
nixos/lavender/containers/traefik/default.nix
View file

@ -11,11 +11,6 @@
"/srv/containers/traefik/letsencrypt:/letsencrypt" "/srv/containers/traefik/letsencrypt:/letsencrypt"
"/srv/containers/traefik/secrets:/secrets" "/srv/containers/traefik/secrets:/secrets"
]; ];
ports = [
"80:80"
"443:443"
"8080:8080"
];
environment = { environment = {
CF_API_EMAIL_FILE = "/secrets/cf-api-email"; CF_API_EMAIL_FILE = "/secrets/cf-api-email";
CF_API_KEY_FILE = "/secrets/cf-api-key"; CF_API_KEY_FILE = "/secrets/cf-api-key";