38 lines
1 KiB
Nix
38 lines
1 KiB
Nix
{...}: {
|
|
# Podman can run rootless containers and be a drop-in replacement for Docker.
|
|
# It is used for systemd services containers defined using
|
|
# `virtualisation.oci-containers`.
|
|
# https://wiki.nixos.org/wiki/Podman
|
|
virtualisation.containers.enable = true;
|
|
virtualisation.podman = {
|
|
enable = true;
|
|
# Automatically `podman system prune` weekly
|
|
autoPrune.enable = true;
|
|
defaultNetwork.settings = {
|
|
# DNS is required for containers under podman-compose to be able to talk
|
|
# to each other.
|
|
dns_enabled = true;
|
|
ipv6_enabled = true;
|
|
};
|
|
};
|
|
|
|
# Auto-update containers
|
|
# https://docs.podman.io/en/latest/markdown/podman-auto-update.1.html
|
|
systemd = {
|
|
timers.podman-auto-update.enable = true;
|
|
units."podman-auto-update.timer".wantedBy = ["timers.target"];
|
|
};
|
|
|
|
# Persist docker volumes
|
|
environment.persistence."/nix/persist" = {
|
|
directories = [
|
|
{
|
|
directory = "/var/lib/containers";
|
|
user = "root";
|
|
group = "root";
|
|
mode = "0700";
|
|
}
|
|
];
|
|
};
|
|
}
|