john/ad-nix
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: john:a905bff8b0b1bcf7557074ece7fd17b379cdda75
Branches Tags
john:main john:flakes
...
compare: john:809d4ee6c1647b0f72f675ee62433f0a485c9825
Branches Tags
john:main john:flakes

2 Commits
a905bff8b0 ... 809d4ee6c1

Author SHA1 Message Date
John Lancaster
809d4ee6c1 observation conversion 2024-12-01 23:21:42 -06:00
John Lancaster
5cfe401b8c workspace 2024-12-01 23:20:56 -06:00
6 changed files with 119 additions and 5 deletions
Expand all files Collapse all files

11
ad-nix.code-workspace
View File

@@ -1,14 +1,17 @@
{
"folders": [
{
"path": "/srv/appdaemon/ad-nix"
},
{
"path": "/usr/src/app"
},
{
"path": "/conf"
}
},
{
"path": "/srv/appdaemon/snippets"
},
{
"path": "/srv/appdaemon/ad-nix"
},
],
"settings": {
"python.defaultInterpreterPath": "/usr/src/app/.venv/bin/python3"

6
configuration.nix
View File

@@ -14,6 +14,9 @@ in
(import "${builtins.fetchTarball https://github.com/nix-community/home-manager/archive/release-24.05.tar.gz}/nixos")
(fetchTarball "https://github.com/nix-community/nixos-vscode-server/tarball/master")
./telegraf.nix
./promtail.nix
./portainer.nix
./watchtower.nix
];
environment.systemPackages = with pkgs; [
@@ -27,6 +30,7 @@ in
echo "${adPath} already exists"
fi
'')
unstable.uv
bash
git
eza
@@ -37,6 +41,8 @@ in
time.timeZone = "America/Chicago";
virtualisation.docker.enable = true;
virtualisation.oci-containers.backend = "docker";
services.vscode-server.enable = true;
services.openssh.enable = true;
services.tailscale.enable = true;

13
portainer.nix Normal file
View File

@@ -0,0 +1,13 @@
{ ... }:
{
virtualisation.oci-containers.containers.portainer-agent = {
image = "portainer/agent:latest"; # Use the latest Portainer agent image
ports = [
"9001:9001" # Expose the Portainer agent API port
];
volumes = [
"/etc/zoneinfo/America/Chicago:/etc/localtime:ro"
"/var/run/docker.sock:/var/run/docker.sock"
];
};
}

81
promtail.nix Normal file
View File

@@ -0,0 +1,81 @@
{ config, ... }:
let
lokiHost = "192.168.1.174:3100";
in
{
systemd.services.promtail.serviceConfig = {
SupplementaryGroups = [ "docker" ];
};
services.promtail = {
enable = true;
configuration = {
server = {
http_listen_port = 3031;
grpc_listen_port = 0;
};
positions = {
filename = "/tmp/positions.yaml";
};
clients = [{url = "http://${lokiHost}/loki/api/v1/push";}];
scrape_configs = [
{
job_name = "journal";
journal = {
max_age = "24h";
path = "/var/log/journal";
json = true;
# matches: _TRANSPORT=kernel;
labels = {
job = "systemd-journal";
host = config.networking.hostName; # Dynamically fetch the hostname
};
};
relabel_configs = [
{
source_labels = [ "__journal__systemd_unit" ];
target_label = "unit";
}
];
}
{
job_name = "flog_scrape";
docker_sd_configs = [
{
host = "unix:///var/run/docker.sock";
refresh_interval = "5s";
}
];
relabel_configs = [
{
source_labels = [ "__meta_docker_container_name" ];
regex = "/(.*)";
target_label = "container";
}
{
source_labels = [ "__meta_docker_container_label_com_docker_compose_oneoff" ];
target_label = "oneoff";
}
{
source_labels = [ "__meta_docker_container_label_com_docker_compose_project_config_files" ];
target_label = "compose_file";
}
{
source_labels = [ "__meta_docker_container_label_com_docker_compose_project" ];
target_label = "project_name";
}
{
source_labels = [ "__meta_docker_container_label_com_docker_compose_service" ];
target_label = "service";
}
{
target_label = "host";
replacement = "${config.networking.hostName}";
}
];
}
];
};
# extraFlags
};
}

11
watchtower.nix Normal file
View File

@@ -0,0 +1,11 @@
{ ... }:
{
virtualisation.oci-containers.containers.watchtower = {
image = "containrrr/watchtower:latest";
volumes = [
"/etc/zoneinfo/America/Chicago:/etc/localtime:ro"
"/var/run/docker.sock:/var/run/docker.sock"
];
environment = {WATCHTOWER_SCHEDULE = "0 0 3 * * *";};
};
}