diff --git a/flake.nix b/flake.nix index 0c7a32b..b31e1e5 100644 --- a/flake.nix +++ b/flake.nix @@ -219,6 +219,7 @@ ./modules/nixos/users/tiziano.nix + ./modules/nixos/torrentbox.nix ./modules/nixos/nextcloud.nix ./modules/nixos/ntfy.nix ] ++ homeManagerModules ++ [ diff --git a/instances/freya/configuration.nix b/instances/freya/configuration.nix index 658c6ee..dd87777 100644 --- a/instances/freya/configuration.nix +++ b/instances/freya/configuration.nix @@ -1,4 +1,4 @@ -{ pkgs, lib, ... }: +{ pkgs, lib, config, ... }: let hosts = import ../../hosts.nix; in @@ -84,19 +84,19 @@ in # }; + minio = { + enable = true; + dataDir = [ + # "/var/lib/minio/data" + "/mnt/raid/minio/data" + ]; + rootCredentialsFile = config.age.secrets.minio.path; + }; + + fail2ban = { enable = true; bantime-increment.enable = true; }; plex = { enable = true; openFirewall = true; group = "users"; }; jellyfin = { enable = true; openFirewall = true; group = "users"; }; - ombi = { enable = true; openFirewall = true; group = "users"; }; - - prowlarr = { enable = true; openFirewall = true; }; - bazarr = { enable = true; openFirewall = true; group = "users"; }; - lidarr = { enable = true; openFirewall = true; group = "users"; }; - radarr = { enable = true; openFirewall = true; group = "users"; }; - readarr = { enable = true; openFirewall = true; group = "users"; }; - sonarr = { enable = true; openFirewall = true; group = "users"; }; - - transmission = { enable = true; openFirewall = true; group = "users"; settings.download-dir = "/mnt/raid/condiviso/Torrent"; }; home-assistant = { enable = true; diff --git a/modules/nixos/torrentbox.nix b/modules/nixos/torrentbox.nix new file mode 100644 index 0000000..0374c6e --- /dev/null +++ b/modules/nixos/torrentbox.nix @@ -0,0 +1,28 @@ +{ + services = + { + ombi = { enable = true; openFirewall = true; group = "users"; }; + + bazarr = { enable = true; openFirewall = true; group = "users"; }; + lidarr = { enable = true; openFirewall = true; group = "users"; }; + prowlarr = { enable = true; openFirewall = true; }; + radarr = { enable = true; openFirewall = true; group = "users"; }; + readarr = { enable = true; openFirewall = true; group = "users"; }; + sonarr = { enable = true; openFirewall = true; group = "users"; }; + + transmission = { enable = true; openFirewall = true; group = "users"; settings.download-dir = "/mnt/raid/condiviso/Torrent"; }; + }; + + systemd.services = { + ombi.serviceConfig = { MemoryHigh = "400M"; MemoryMax = "800M"; }; + + bazarr.serviceConfig = { MemoryHigh = "400M"; MemoryMax = "800M"; }; + lidarr.serviceConfig = { MemoryHigh = "400M"; MemoryMax = "800M"; }; + prowlarr.serviceConfig = { MemoryHigh = "400M"; MemoryMax = "800M"; }; + radarr.serviceConfig = { MemoryHigh = "400M"; MemoryMax = "800M"; }; + readarr.serviceConfig = { MemoryHigh = "400M"; MemoryMax = "800M"; }; + sonarr.serviceConfig = { MemoryHigh = "400M"; MemoryMax = "800M"; }; + + transmission.serviceConfig = { MemoryHigh = "400M"; MemoryMax = "800M"; }; + }; +} diff --git a/secrets/minio.age b/secrets/minio.age new file mode 100644 index 0000000..2055845 --- /dev/null +++ b/secrets/minio.age @@ -0,0 +1,18 @@ +age-encryption.org/v1 +-> ssh-ed25519 hGQASA vacDVhPM0TXegMurC60WAFbkHbvJHYM/AsWoubH+Wx4 +MmRy5dlnXeSecWpebMkOBlONDCZ18OK6Q3aOP36xB1U +-> ssh-ed25519 4behFA I2MAIPLl5pumnmClkHsNnPrvPvtcMHVzW3YjRDeqMio +r9BFiX+aQ6F72Mj/MDMt45pAAKwpB5PSeq0qGWRFXxs +-> ssh-ed25519 IvyYug krsjkv5Z8qDweE2ddr0+J0sEeiGBKwUy6PaY+v/XpHs +NWpRTRJ9Y7pCNtx41PEGcdPbCPH5IKGgDclwpo1Ma/E +-> ssh-ed25519 v7O/FA weGdkjFwjHqg/bCeh/ez9fiwI4sheRlV+S8bVyR/T3E +CZ1vs/wgntqBSbYRUN4lLMXoeHlio7C98+afgos+mzk +-> ssh-ed25519 XSnoeQ RCV89qRpn9paHr6ui7ekvlsDwx0z/X/cHnjvSP0zT1I +Nrp80eEajS1LbXhifvLrJZXhwPInqGcjuYl6m9IivZE +-> ssh-ed25519 XgC3XA pgG28v3PKzI1n/MW9J0+FhrONRX40s/+PAmQObO4jkM +Mif2gd3Mu7HjxuHFmCoFWp6GMlpleB7B16nPaNK/tRE +-> ssh-ed25519 l795CA KkNAULru5Q25xDmGJ05YkmD59aulcdee8k0RTqvfUHA +3UQ52N/EyAGc+MAjTgziqs69CgqcEBaOnyDhw3ToaYA +--- NTrVSeB9yXDPKc7TFzm8Pl8QxhS9vcnrWRsz2o/qeY0 +W–hNy8ÒøGw7³-TbßÝ°ZÝbQÇ ®X^^ÞÞ»AWæEâ`sQ\ÇM­îiµÎ=FÙ35¦NÞ§GÎR‰h™—‹¥Àë%j*€O»ÔÙf'«‡Q> +´( NÇ]fþc¹¼Ï