ustetind/gitea-runners: fix podman dns

2024-12-09 23:25:44 +01:00 · 2024-12-09 23:25:44 +01:00 · 40dd069a52
commit 40dd069a52
parent 04a838fc62
2 changed files with 31 additions and 12 deletions
--- a/hosts/ustetind/configuration.nix
+++ b/hosts/ustetind/configuration.nix
@ -16,19 +16,28 @@
  networking.hostName = "ustetind";

  networking.useHostResolvConf = lib.mkForce false;
-  # systemd.network.enable = lib.mkForce false;
-  # networking.useDHCP = lib.mkForce true;
-  # networking.address = with values.hosts.georg; [ (ipv4 + "/25") (ipv6 + "/64") ];

-  systemd.network.networks."30-lxc-veth" = values.defaultNetworkConfig // {
-    matchConfig = {
-      Type = "ether";
-      Kind = "veth";
-      Name = [
-        "eth*"
-      ];
+  systemd.network.networks = {
+    "30-lxc-eth" = values.defaultNetworkConfig // {
+      matchConfig = {
+        Type = "ether";
+        Kind = "veth";
+        Name = [
+          "eth*"
+        ];
+      };
+      address = with values.hosts.ustetind; [ (ipv4 + "/25") (ipv6 + "/64") ];
+    };
+    "40-podman-veth" = values.defaultNetworkConfig // {
+      matchConfig = {
+        Type = "ether";
+        Kind = "veth";
+        Name = [
+          "veth*"
+        ];
+      };
+      DHCP = "yes";
    };
-    address = with values.hosts.ustetind; [ (ipv4 + "/25") (ipv6 + "/64") ];
  };

  system.stateVersion = "24.11";
--- a/hosts/ustetind/services/gitea-runners.nix
+++ b/hosts/ustetind/services/gitea-runners.nix
@ -27,5 +27,15 @@ lib.mkMerge [
  (mkRunner "alpha")
  (mkRunner "beta")
  (mkRunner "epsilon")
-  { virtualisation.podman.enable = true; }
+  {
+    virtualisation.podman = {
+      enable = true;
+      defaultNetwork.settings.dns_enabled = true;
+      autoPrune.enable = true;
+    };
+
+    networking.dhcpcd.IPv6rs = false;
+
+    networking.firewall.interfaces."podman+".allowedUDPPorts = [53 5353];
+  }
 ]