quasigod.xyz / nixconfig
My NixOS and Home Manager configurations
10
fork

Configure Feed

Select the types of activity you want to include in your feed.

networking and virtualisation improvements fixes

quasigod f75d0052 5b104b54

+24 -25
+1 -4
modules/hacking/default.nix
··· 9 9 styx.hax = den.lib.parametric { 10 10 includes = [ 11 11 styx.hax._.subfinder 12 - (styx.groups [ 13 - "wireshark" 14 - "docker" 15 - ]) 12 + styx.virt._.docker 16 13 ]; 17 14 nixos = { 18 15 environment.etc.hosts.mode = "0644";
+9 -16
modules/networking.nix
··· 5 5 matchConfig.Type = "ether"; 6 6 linkConfig.WakeOnLan = "magic"; 7 7 }; 8 + provides.wireless.nixos = 9 + { lib, ... }: 10 + { 11 + systemd.network.enable = lib.mkForce false; 12 + networking.networkmanager.enable = true; 13 + }; 8 14 nixos = { 9 - systemd.network.networks = { 10 - "99-ethernet-default-dhcp".networkConfig.UseDomains = "yes"; 11 - "99-wlan-unmanaged" = { 12 - matchConfig.WLANInterfaceType = "station"; 13 - linkConfig.Unmanaged = true; 14 - }; 15 - }; 16 - networking = { 17 - nftables.enable = true; 18 - wireguard.enable = true; 19 - firewall.trustedInterfaces = [ 20 - "virbr0" 21 - "podman0" 22 - "docker0" 23 - ]; 24 - }; 15 + systemd.network.networks."99-ethernet-default-dhcp".networkConfig.UseDomains = "yes"; 16 + networking.nftables.enable = true; 17 + networking.wireguard.enable = true; 25 18 }; 26 19 }; 27 20 }
+1
modules/profiles.nix
··· 16 16 laptop.includes = [ 17 17 <styx/boot/graphical> 18 18 <styx/boot/secure> 19 + <styx/networking/wireless> 19 20 <styx/performance/responsive> 20 21 <styx/power-mgmt> 21 22 <styx/workstation>
+13 -5
modules/virtualisation.nix
··· 1 1 { den, styx, ... }: 2 2 { 3 3 styx.virt.provides = { 4 - qemu = den.lib.parametric { 4 + qemu = { 5 5 includes = [ (styx.groups "kvm") ]; 6 6 nixos = 7 7 { pkgs, ... }: 8 8 { 9 9 boot.kernelParams = [ "amd_iommu=on" ]; 10 + networking.firewall.trustedInterfaces = [ "virbr0" ]; 10 11 programs.virt-manager.enable = true; 11 12 environment.systemPackages = with pkgs; [ 12 13 gnome-boxes ··· 20 21 }; 21 22 }; 22 23 waydroid.nixos.virtualisation.waydroid.enable = true; 23 - podman.nixos.virtualisation.podman = { 24 - enable = true; 25 - autoPrune = { 24 + docker.nixos = { 25 + virtualisation.docker.enable = true; 26 + networking.firewall.trustedInterfaces = [ "docker0" ]; 27 + }; 28 + podman.nixos = { 29 + networking.firewall.trustedInterfaces = [ "podman0" ]; 30 + virtualisation.podman = { 26 31 enable = true; 27 - flags = [ "--all" ]; 32 + autoPrune = { 33 + enable = true; 34 + flags = [ "--all" ]; 35 + }; 28 36 }; 29 37 }; 30 38 };