System/Nixinator: Disable rootless docker

2026-01-18 01:19:04 +01:00
parent eaa36cfce2
commit 5e422d05c9
3 changed files with 9 additions and 7 deletions
--- a/system/default.nix
+++ b/system/default.nix
@ -46,12 +46,9 @@ with mylib.networking; {

    docker = {
      enable = true;
-
-      # Use podman on the desktops, the servers are
-      # already configured using docker though...
-      # TODO: Use podman on the servers
-      podman = !headless;
-      docker.rootless = true;
+      podman = false;
+      docker.rootless = false;
+      docker.buildkit = true;
    };

    fonts = {
--- a/system/modules/docker/default.nix
+++ b/system/modules/docker/default.nix
@ -18,6 +18,10 @@ in {

    networking.firewall.trustedInterfaces = ["docker0" "podman0"];

+    # Needed for default bridge network to automatically work
+    # boot.kernel.sysctl."net.ipv4.ip_forward" = 1;
+    # boot.kernel.sysctl."net.ipv6.ip_forward" = 1;
+
    virtualisation = {
      docker = {
        enable = !docker.podman;
@ -25,6 +29,7 @@ in {

        extraPackages = with pkgs; [docker-compose];

+        # TODO: Rootless docker has no internet?
        rootless = {
          enable = docker.docker.rootless;
          setSocketVariable = true;
--- a/system/modules/impermanence/default.nix
+++ b/system/modules/impermanence/default.nix
@ -162,7 +162,7 @@ in {
            (mkUDir ".config/Zeal" m755)

            # Share
-            (mkUDir ".local/share/containers" m755)
+            # (mkUDir ".local/share/containers" m755) # Rootless docker
            (mkUDir ".local/share/direnv" m755)
            (mkUDir ".local/share/docker" m755)
            (mkUDir ".local/share/fish" m755)