nix-infra/config/hosts/woodpecker/woodpecker-agent/podman.nix

# Sources for this configuration:
# - https://woodpecker-ci.org/docs/administration/deployment/nixos
# - https://woodpecker-ci.org/docs/administration/backends/docker
# - https://nixos.wiki/wiki/Podman

{ config, pkgs, ... }:

{
  virtualisation.podman = {
    enable = true;
    defaultNetwork.settings.dns_enabled = true;
  };

  networking.firewall.interfaces."podman0" = {
    # allowedUDPPorts = [ 53 ] gets already set by virtualisation.podman.defaultNetwork.settings.dns_enabled, but set it here explicitly anyway.
    allowedUDPPorts = [ 53 ];
    # For git.hamburg.ccc.de to resolve in the clone step for example, allowedTCPPorts also needs to be set to allow DNS.
    allowedTCPPorts = [ 53 ];
  };
}
Add woodpecker host running a woodpecker-server and -agent for CI 2024-06-22 04:20:38 +02:00			`# Sources for this configuration:`
			`# - https://woodpecker-ci.org/docs/administration/deployment/nixos`
			`# - https://woodpecker-ci.org/docs/administration/backends/docker`
			`# - https://nixos.wiki/wiki/Podman`

			`{ config, pkgs, ... }:`

			`{`
			`virtualisation.podman = {`
			`enable = true;`
			`defaultNetwork.settings.dns_enabled = true;`
			`};`
Fix clone step failing, because git.hamburg.ccc.de could not be resolved 2024-06-22 17:11:11 +02:00
			`networking.firewall.interfaces."podman0" = {`
			`# allowedUDPPorts = [ 53 ] gets already set by virtualisation.podman.defaultNetwork.settings.dns_enabled, but set it here explicitly anyway.`
			`allowedUDPPorts = [ 53 ];`
			`# For git.hamburg.ccc.de to resolve in the clone step for example, allowedTCPPorts also needs to be set to allow DNS.`
			`allowedTCPPorts = [ 53 ];`
			`};`
Add woodpecker host running a woodpecker-server and -agent for CI 2024-06-22 04:20:38 +02:00			`}`