trying akvorado
This commit is contained in:
Stefan Kempinger
parent
5aab046d7b
commit
2db9235ad0
4 changed files with 636 additions and 14 deletions
|
|
@ -14,6 +14,7 @@
|
|||
imports = [
|
||||
# Include the results of the hardware scan.
|
||||
./hardware-configuration.nix
|
||||
./akvorado.nix
|
||||
specialArgs.inputs.vscode-server.nixosModules.default
|
||||
];
|
||||
|
||||
|
|
@ -32,7 +33,7 @@
|
|||
# "net.bridge.bridge-nf-call-iptables" = 1;
|
||||
# "net.bridge.bridge-nf-call-ip6tables" = 1;
|
||||
};
|
||||
|
||||
|
||||
boot.supportedFilesystems = [ "zfs" ];
|
||||
boot.zfs.forceImportRoot = false;
|
||||
|
||||
|
|
@ -63,12 +64,23 @@
|
|||
443
|
||||
2222 # forgejo ssh
|
||||
3000 # forgejo frontend
|
||||
2055 # akvorado sink
|
||||
8080 # akvorado frontend
|
||||
8081 # akvorado frontend
|
||||
8123 # homeassistant
|
||||
5580 # homeassistant matter
|
||||
2283 # immich
|
||||
3003 # immich ml
|
||||
1984 # frigate go2rtc
|
||||
8971 # frigate
|
||||
8554 # frigate rtsp
|
||||
8555 # frigate rtsp
|
||||
9000
|
||||
];
|
||||
networking.firewall.allowedUDPPorts = [
|
||||
8555 # frigate rtsp
|
||||
2055 # ntopng sink
|
||||
];
|
||||
|
||||
# Users
|
||||
users.users.root = {
|
||||
|
|
@ -99,6 +111,7 @@
|
|||
inetutils
|
||||
smartmontools
|
||||
parted
|
||||
borgbackup
|
||||
|
||||
nil
|
||||
];
|
||||
|
|
@ -115,7 +128,6 @@
|
|||
hardware.bluetooth.enable = true;
|
||||
services.blueman.enable = true;
|
||||
|
||||
|
||||
security.acme = {
|
||||
acceptTerms = true;
|
||||
defaults.email = "mail@kempinger.xyz";
|
||||
|
|
@ -123,7 +135,7 @@
|
|||
};
|
||||
|
||||
services.resolved.enable = true;
|
||||
|
||||
|
||||
services.nginx = {
|
||||
enable = true;
|
||||
recommendedTlsSettings = true;
|
||||
|
|
@ -204,6 +216,34 @@
|
|||
# USER = "noreply@${srv.DOMAIN}";
|
||||
# };
|
||||
};
|
||||
dump = {
|
||||
enable = true;
|
||||
backupDir = "/backup/forgejo";
|
||||
age = "6 months";
|
||||
interval = "weekly";
|
||||
};
|
||||
};
|
||||
|
||||
# services.borgbackup.jobs."forgejo" = {
|
||||
# paths = config.services.forgejo.repositoryRoot;
|
||||
# repo = "/backup/forgejo";
|
||||
# startAt = "Sat 04:00";
|
||||
# compression = "zstd";
|
||||
# encryption.mode = "none";
|
||||
# prune.keep = {
|
||||
# last = 2;
|
||||
# };
|
||||
# };
|
||||
|
||||
services.borgbackup.jobs."immich" = {
|
||||
paths = config.services.immich.mediaLocation;
|
||||
repo = "/backup/immich";
|
||||
startAt = "Sat 04:00";
|
||||
compression = "zstd";
|
||||
encryption.mode = "none";
|
||||
prune.keep = {
|
||||
last = 2;
|
||||
};
|
||||
};
|
||||
|
||||
# systemd.services.forgejo.preStart =
|
||||
|
|
@ -230,6 +270,7 @@
|
|||
volumes = [
|
||||
"home-assistant:/config"
|
||||
"/run/dbus:/run/dbus:ro"
|
||||
"/backup/home-assistant:/config/backups"
|
||||
];
|
||||
environment.TZ = "Europe/Berlin";
|
||||
# Note: The image will not be updated on rebuilds, unless the version label changes
|
||||
|
|
@ -256,6 +297,36 @@
|
|||
"--privileged"
|
||||
];
|
||||
};
|
||||
|
||||
|
||||
containers.frigate = {
|
||||
#autoStart = true;
|
||||
volumes = [
|
||||
"frigate:/config"
|
||||
"/run/dbus:/run/dbus:ro"
|
||||
"/etc/localtime:/etc/localtime:ro"
|
||||
];
|
||||
environment.FRIGATE_RTSP_PASSWORD = "password123";
|
||||
# Note: The image will not be updated on rebuilds, unless the version label changes
|
||||
image = "ghcr.io/blakeblackshear/frigate:stable";
|
||||
extraOptions = [
|
||||
"--shm-size=512m"
|
||||
"--network=host"
|
||||
];
|
||||
};
|
||||
containers.mosquitto = {
|
||||
#autoStart = true;
|
||||
volumes = [
|
||||
"mosquitto:/mosquitto"
|
||||
"/run/dbus:/run/dbus:ro"
|
||||
"/etc/localtime:/etc/localtime:ro"
|
||||
];
|
||||
# Note: The image will not be updated on rebuilds, unless the version label changes
|
||||
image = "eclipse-mosquitto";
|
||||
extraOptions = [
|
||||
"--network=host"
|
||||
];
|
||||
};
|
||||
};
|
||||
|
||||
services.immich = {
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue