This commit is contained in:
mjallen18
2025-08-23 10:26:12 -05:00
parent a96b8ddf86
commit bc18b0775b
43 changed files with 796 additions and 177 deletions

View File

@@ -0,0 +1,57 @@
{
config,
lib,
namespace,
...
}:
with lib;
let
cfg = config.${namespace}.services.netbootxyz;
in
{
imports = [ ./options.nix ];
config = mkIf cfg.enable {
# Open firewall for netbootxyz if enabled
networking.firewall = mkIf cfg.openFirewall {
allowedTCPPorts = [
cfg.httpPort
cfg.httpsPort
];
allowedUDPPorts = [
cfg.httpPort
cfg.httpsPort
];
};
# Create data directory
systemd.tmpfiles.rules = [
"d ${cfg.dataDir} 0755 root root -"
];
# Configure netbootxyz as a container service
virtualisation.oci-containers = {
backend = "podman";
containers.netbootxyz = {
image = "ghcr.io/netbootxyz/netbootxyz:latest";
ports = [
"${toString cfg.httpPort}:3000"
"${toString cfg.httpsPort}:3001"
];
volumes = [
"${cfg.dataDir}:/app/src/config"
];
environment = {
MENU_VERSION = "2.0.76";
PORT_RANGE = "30000:30010";
};
extraOptions = [
"--restart=unless-stopped"
];
};
};
# Enable podman for oci-containers
virtualisation.podman.enable = true;
};
}

View File

@@ -0,0 +1,31 @@
{ lib, namespace, ... }:
with lib;
{
options.${namespace}.services.netbootxyz = {
enable = mkEnableOption "netbootxyz network boot service";
httpPort = mkOption {
type = types.port;
default = 4000;
description = "HTTP port for netbootxyz";
};
httpsPort = mkOption {
type = types.port;
default = 4080;
description = "HTTPS port for netbootxyz";
};
openFirewall = mkOption {
type = types.bool;
default = true;
description = "Whether to open firewall for netbootxyz";
};
dataDir = mkOption {
type = types.str;
default = "/var/lib/netbootxyz";
description = "Data directory for netbootxyz";
};
};
}