numbus/numbus-server-module
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Updated container networking.

Browse Source
This commit is contained in:
Raphaël Numbus
2026-02-20 11:04:09 +01:00
parent 61d0fbd339
commit 40265e8c81
6 changed files with 28 additions and 91 deletions
Download Patch File Download Diff File Expand all files Collapse all files
modules/services/frigate.nix
+2 -5
View File
@@ -32,8 +32,7 @@ helper.mkPodmanService {
hostname: frigate hostname: frigate
shm_size: "256mb" shm_size: "256mb"
networks: networks:
home-assistant_frontend: home-assistant:
home-assistant_backend:
ports: ports:
- "${cfg.port}:8971/tcp" - "${cfg.port}:8971/tcp"
volumes: volumes:
@@ -54,9 +53,7 @@ ${lib.concatStringsSep "\n" (map (d: " - \"${d}\"") cfg.devices)}
restart: unless-stopped restart: unless-stopped
networks: networks:
home-assistant_backend: home-assistant:
external: true
home-assistant_frontend:
external: true external: true
''; '';
} }
modules/services/gitea.nix
+4 -19
View File
@@ -20,8 +20,7 @@ helper.mkPodmanService {
container_name: gitea-server container_name: gitea-server
hostname: gitea-server hostname: gitea-server
networks: networks:
gitea_frontend: gitea:
gitea_backend:
ports: ports:
- "${cfg.port}:3000/tcp" - "${cfg.port}:3000/tcp"
volumes: volumes:
@@ -39,13 +38,12 @@ helper.mkPodmanService {
depends_on: depends_on:
- gitea-database - gitea-database
restart: unless-stopped restart: unless-stopped
gitea-database: gitea-database:
image: docker.io/library/postgres:14 image: docker.io/library/postgres:14
container_name: gitea-database container_name: gitea-database
hostname: gitea-database hostname: gitea-database
networks: networks:
gitea_backend: gitea:
volumes: volumes:
- gitea_database:/var/lib/postgresql/data - gitea_database:/var/lib/postgresql/data
environment: environment:
@@ -53,24 +51,11 @@ helper.mkPodmanService {
- POSTGRES_PASSWORD=$DB_PASSWORD - POSTGRES_PASSWORD=$DB_PASSWORD
- POSTGRES_DB=$DB_NAME - POSTGRES_DB=$DB_NAME
restart: unless-stopped restart: unless-stopped
volumes: volumes:
gitea_database: gitea_database:
networks: networks:
gitea_frontend: gitea:
name: gitea_frontend name: gitea
driver: bridge driver: bridge
ipam:
config:
- subnet: "10.89.3.0/24"
gateway: "10.89.3.254"
gitea_backend:
name: gitea_backend
driver: bridge
ipam:
config:
- subnet: "10.89.4.0/24"
gateway: "10.89.4.254"
''; '';
} }
modules/services/home-assistant.nix
+8 -18
View File
@@ -23,6 +23,10 @@ helper.mkPodmanService {
}; };
}; };
extraConfig = {
};
composeText = '' composeText = ''
services: services:
home-assistant: home-assistant:
@@ -30,8 +34,7 @@ helper.mkPodmanService {
container_name: home-assistant container_name: home-assistant
hostname: home-assistant hostname: home-assistant
networks: networks:
home-assistant_frontend: home-assistant:
home-assistant_backend:
ports: ports:
- "${cfg.port}:8123/tcp" - "${cfg.port}:8123/tcp"
volumes: volumes:
@@ -43,31 +46,18 @@ ${lib.optionalString (cfg.devices != []) ''
${lib.concatStringsSep "\n" (map (d: " - \"${d}\"") cfg.devices)} ${lib.concatStringsSep "\n" (map (d: " - \"${d}\"") cfg.devices)}
''} ''}
restart: unless-stopped restart: unless-stopped
home-assistant-mqtt: home-assistant-mqtt:
image: docker.io/library/eclipse-mosquitto:latest image: docker.io/library/eclipse-mosquitto:latest
container_name: home-assistant-mqtt container_name: home-assistant-mqtt
hostname: home-assistant-mqtt hostname: home-assistant-mqtt
networks: networks:
home-assistant_backend: home-assistant:
volumes: volumes:
- /mnt/config/mosquitto:/mosquitto - /mnt/config/mosquitto:/mosquitto
restart: unless-stopped restart: unless-stopped
networks: networks:
home-assistant_frontend: home-assistant:
name: home-assistant_frontend name: home-assistant
driver: bridge driver: bridge
ipam:
config:
- subnet: "10.89.5.0/24"
gateway: "10.89.5.254"
home-assistant_backend:
name: home-assistant_backend
driver: bridge
ipam:
config:
- subnet: "10.89.6.0/24"
gateway: "10.89.6.254"
''; '';
} }
modules/services/immich.nix
+7 -23
View File
@@ -21,10 +21,9 @@ helper.mkPodmanService {
hostname: immich-server hostname: immich-server
user: '1000:1000' user: '1000:1000'
networks: networks:
immich_frontend: immich:
immich_backend:
ports: ports:
- "${cfg.port}:2283/tcp" #http - "${cfg.port}:2283/tcp"
volumes: volumes:
- ${cfg.dataDir}:/data - ${cfg.dataDir}:/data
- /etc/localtime:/etc/localtime:ro - /etc/localtime:/etc/localtime:ro
@@ -40,14 +39,13 @@ helper.mkPodmanService {
cap_drop: cap_drop:
- NET_RAW - NET_RAW
restart: unless-stopped restart: unless-stopped
immich-machine-learning: immich-machine-learning:
image: ghcr.io/immich-app/immich-machine-learning:latest image: ghcr.io/immich-app/immich-machine-learning:latest
container_name: immich-machine-learning container_name: immich-machine-learning
hostname: immich-machine-learning hostname: immich-machine-learning
user: '1000:1000' user: '1000:1000'
networks: networks:
immich_backend: immich:
volumes: volumes:
- ${cfg.configDir}/machine-learning:/cache - ${cfg.configDir}/machine-learning:/cache
env_file: env_file:
@@ -59,14 +57,13 @@ helper.mkPodmanService {
cap_drop: cap_drop:
- NET_RAW - NET_RAW
restart: unless-stopped restart: unless-stopped
immich-redis: immich-redis:
image: docker.io/valkey/valkey:8-bookworm image: docker.io/valkey/valkey:8-bookworm
container_name: immich-redis container_name: immich-redis
hostname: immich-redis hostname: immich-redis
user: '1000:1000' user: '1000:1000'
networks: networks:
immich_backend: immich:
healthcheck: healthcheck:
test: redis-cli ping || exit 1 test: redis-cli ping || exit 1
security_opt: security_opt:
@@ -74,14 +71,13 @@ helper.mkPodmanService {
cap_drop: cap_drop:
- NET_RAW - NET_RAW
restart: unless-stopped restart: unless-stopped
immich-database: immich-database:
image: ghcr.io/immich-app/postgres:14 image: ghcr.io/immich-app/postgres:14
container_name: immich-database container_name: immich-database
hostname: immich-database hostname: immich-database
user: '1000:1000' user: '1000:1000'
networks: networks:
immich_backend: immich:
shm_size: 128mb shm_size: 128mb
volumes: volumes:
- ${cfg.configDir}/database:/var/lib/postgresql/data - ${cfg.configDir}/database:/var/lib/postgresql/data
@@ -97,21 +93,9 @@ helper.mkPodmanService {
cap_drop: cap_drop:
- NET_RAW - NET_RAW
restart: unless-stopped restart: unless-stopped
networks: networks:
immich_frontend: immich:
name: immich_frontend name: immich
driver: bridge driver: bridge
ipam:
config:
- subnet: "10.89.7.0/24"
gateway: "10.89.7.254"
immich_backend:
name: immich_backend
driver: bridge
ipam:
config:
- subnet: "10.89.8.0/24"
gateway: "10.89.8.254"
''; '';
} }
modules/services/it-tools.nix
+3 -7
View File
@@ -22,18 +22,14 @@ helper.mkPodmanService {
container_name: it-tools container_name: it-tools
hostname: it-tools hostname: it-tools
networks: networks:
it-tools_frontend: it-tools:
ports: ports:
- "${cfg.port}:80/tcp" - "${cfg.port}:80/tcp"
restart: unless-stopped restart: unless-stopped
networks: networks:
it-tools_frontend: it-tools:
name: it-tools_frontend name: it-tools
driver: bridge driver: bridge
ipam:
config:
- subnet: "10.89.9.0/24"
gateway: "10.89.9.254"
''; '';
} }
modules/services/passbolt.nix
+4 -19
View File
@@ -23,8 +23,7 @@ helper.mkPodmanService {
container_name: passbolt-server container_name: passbolt-server
hostname: passbolt-server hostname: passbolt-server
networks: networks:
passbolt_frontend: passbolt:
passbolt_backend:
ports: ports:
- "${cfg.port}:4433/tcp" - "${cfg.port}:4433/tcp"
volumes: volumes:
@@ -61,13 +60,12 @@ helper.mkPodmanService {
cap_drop: cap_drop:
- NET_RAW - NET_RAW
restart: unless-stopped restart: unless-stopped
passbolt-database: passbolt-database:
image: docker.io/library/mariadb:12.2 image: docker.io/library/mariadb:12.2
container_name: passbolt-database container_name: passbolt-database
hostname: passbolt-database hostname: passbolt-database
networks: networks:
passbolt_backend: passbolt:
volumes: volumes:
- passbolt-database:/var/lib/mysql - passbolt-database:/var/lib/mysql
environment: environment:
@@ -80,26 +78,13 @@ helper.mkPodmanService {
cap_drop: cap_drop:
- NET_RAW - NET_RAW
restart: unless-stopped restart: unless-stopped
volumes: volumes:
passbolt-database: passbolt-database:
passbolt-gpg: passbolt-gpg:
passbolt-jwt: passbolt-jwt:
networks: networks:
passbolt_frontend: passbolt:
name: passbolt_frontend name: passbolt
driver: bridge driver: bridge
ipam:
config:
- subnet: "10.89.12.0/24"
gateway: "10.89.12.254"
passbolt_backend:
name: passbolt_backend
driver: bridge
ipam:
config:
- subnet: "10.89.13.0/24"
gateway: "10.89.13.254"
''; '';
} }