sstent/nixos-cluster
1
0
Fork 0
mirror of https://github.com/sstent/nixos-cluster.git synced 2025-12-06 06:01:54 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
d1b441160b719de428425c5face1497afc25bfeb
nixos-cluster/modules/nomad.nix
sstent d1b441160b addin ssh key
2023-11-22 14:27:06 +00:00

77 lines
2.1 KiB
Nix
Raw Blame History

{
lib,
pkgs,
config,
inputs,
...
}: {
virtualisation.docker.enable = true;
networking.firewall = {
allowedTCPPorts = [4646 4647 4648 8123];
allowedUDPPorts = [4646 4647 4648 8123];
};
#
systemd.tmpfiles.rules = [
"d /mount/configs/postgres 0770 1000 1000 -"
];
services.nomad = {
package = pkgs.nomad_1_6;
dropPrivileges = false;
enableDocker = true;
enable = true;
settings = {
server = {
enabled = true;
bootstrap_expect = 3;
start_join = ["192.168.1.225" "192.168.1.226" "192.168.1.227" "192.168.1.228"];
rejoin_after_leave = false;
enabled_schedulers = ["service" "batch" "system"];
num_schedulers = 4;
node_gc_threshold = "24h";
eval_gc_threshold = "1h";
job_gc_threshold = "4h";
deployment_gc_threshold = "1h";
encrypt = "";
raft_protocol = 3;
raft_multiplier = 5;
};
client = {
enabled = true;
node_class = "";
no_host_uuid = false;
servers = ["192.168.1.221:4647" "192.168.1.225:4647" "192.168.1.226:4647" "192.168.1.227:4647" "192.168.1.222:4647" "192.168.1.223:4647" "192.168.1.224:4647"];
max_kill_timeout = "30s";
network_speed = 0;
cpu_total_compute = 0;
gc_interval = "1m";
gc_disk_usage_threshold = 80;
gc_inode_usage_threshold = 70;
gc_parallel_destroys = 2;
reserved = {
cpu = 0;
memory = 200;
disk = 0;
};
options = {
"docker.caps.whitelist" = "SYS_ADMIN,NET_ADMIN,chown,dac_override,fsetid,fowner,mknod,net_raw,setgid,setuid,setfcap,setpcap,net_bind_service,sys_chroot,kill,audit_write,sys_module";
"driver.raw_exec.enable" = "1";
"docker.volumes.enabled" = "True";
"docker.privileged.enabled" = "true";
"docker.auth.config" = "/root/.docker/config.json";
};
};
# custom = {
"telemetry" = {
"prometheus_metrics" = true;
"publish_allocation_metrics" = true;
"publish_node_metrics" = true;
};
# };
};
};
}
Reference in New Issue View Git Blame Copy Permalink