dot

NixOS dotfiles
git clone https://git.echoz.io/dot.git
Log | Files | Refs

default.nix (550B)

      1 { pkgs, ... }:
      2 {
      3   virtualisation.docker.rootless = {
      4     enable = true;
      5     setSocketVariable = true;
      6     daemon.settings = {
      7       features.containerd-snapshotter = true;
      8     };
      9     extraPackages = [ pkgs.passt ];
     10   };
     11 
     12   systemd.user.services.docker.environment = {
     13     DOCKERD_ROOTLESS_ROOTLESSKIT_NET = "pasta";
     14     DOCKERD_ROOTLESS_ROOTLESSKIT_PORT_DRIVER = "implicit";
     15   };
     16 
     17   boot = {
     18     kernel.sysctl = {
     19       "net.ipv4.ip_unprivileged_port_start" = 0;
     20       "net.ipv4.ip_forward" = 1;
     21     };
     22     kernelModules = [ "iptable_nat" ];
     23   };
     24 }