Podman container on Metis

2025-12-18 09:19:39 +01:00 · 2024-02-09 16:46:39 +01:00 · 2024-02-09 16:46:39 +01:00 · 9394fe5ee3
commit 9394fe5ee3
parent 77f4541d04
2 changed files with 28 additions and 0 deletions
--- a/machines/metis/default.nix
+++ b/machines/metis/default.nix
@ -46,6 +46,9 @@
    # enable wireguard
    wireguard.enable = true;

+    # enable podman
+    container.podman.enable = true;
+
    # user setup
    users = {
      enable = true;
@ -89,6 +92,9 @@
      externalInterface = "ens3";
      internalInterfaces = ["wg-stelnet"];
    };
+
+    # port for podman container
+    firewall.allowedTCPPorts = [8888];
  };
  system.stateVersion = "22.05";
 }
--- a/modules/container.nix
+++ b/modules/container.nix
@ -0,0 +1,22 @@
+{
+  config,
+  lib,
+  pkgs,
+  ...
+}:
+with lib; {
+  options.elss.container.podman.enable = mkEnableOption "enable podman dockerisation";
+
+  config = let
+    cfg = config.elss.container.podman;
+  in
+    mkIf cfg.enable {
+      virtualisation = {
+        podman = {
+          enable = true;
+          dockerCompat = true;
+          defaultNetwork.settings.dns_enabled = true;
+        };
+      };
+    };
+}