rouven.seifert/nixos-config
1
1
Fork 0
mirror of https://git.sr.ht/~rouven/nixos-config synced 2025-01-18 17:11:39 +01:00
Code Issues Projects Releases Packages Wiki Activity

docker: enable rootless

Browse source
This commit is contained in:
Rouven Seifert 2024-04-11 11:52:03 +02:00
parent 1b1a02caa0
commit 2297f6506d
Signed by: rouven.seifert
GPG key ID: B95E8FE6B11C4D09
1 changed files with 8 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
hosts/thinkpad/modules/virtualisation/default.nix
View file

@ -2,8 +2,13 @@
{
virtualisation = {
docker = {
enable = true;
extraOptions = "--iptables=false";
rootless = {
enable = true;
setSocketVariable = true;
daemon.settings = {
iptables = false;
};
};
};
libvirtd = {
enable = true;
@ -18,7 +23,7 @@
spiceUSBRedirection.enable = true;
};
# allow libvirts internal network stuff
networking.firewall.trustedInterfaces = [ "virbr0" "br0" "docker0" ];
networking.firewall.trustedInterfaces = [ "virbr0" ];
programs.virt-manager.enable = true;
environment.systemPackages = with pkgs; [
virt-viewer