satellite/hosts/nixos/lapetus/services/qbittorrent.nix

# Sources:
# https://github.com/nickkjolsing/dockerMullvadVPN
# https://www.reddit.com/r/HomeServer/comments/xapl93/a_minimal_configuration_stepbystep_guide_to_media/
{ config, pkgs, ... }:
let
  port = config.satellite.ports.qbittorrent;
  dataDir = "/persist/data/media";
  configDir = "/persist/state/var/lib/qbittorrent";
in
{
  # {{{ Networking & storage
  satellite.nginx.at.qbit.port = port;
  sops.secrets.vpn_env.sopsFile = ../secrets.yaml;
  systemd.tmpfiles.rules = [
    "d ${dataDir} 777 ${config.users.users.pilot.name} users"
    "d ${configDir}"
  ];
  # }}}
  # {{{ Qbit
  virtualisation.oci-containers.containers.qbittorrent = {
    image = "linuxserver/qbittorrent:latest";
    extraOptions = [ "--network=container:gluetun" ];
    dependsOn = [ "gluetun" ];
    volumes = [ "${dataDir}:/downloads" "${configDir}:/config" ];

    environment = {
      WEBUI_PORT = toString port;
      PUID = toString config.users.users.pilot.uid;
      PGID = toString config.users.groups.users.gid;
      TZ = config.time.timeZone;
    };
  };
  # }}}
  # {{{ Vpn
  virtualisation.oci-containers.containers.gluetun = {
    image = "qmcgaw/gluetun";
    extraOptions = [
      "--cap-add=NET_ADMIN"
      "--cap-add=NET_RAW"
      "--device=/dev/net/tun"
      "--sysctl=net.ipv4.conf.all.forwarding=1"
    ];
    ports = [
      "${toString port}:${toString port}"
      "6881:6881"
      "6881:6881/udp"
    ];

    environmentFiles = [ config.sops.secrets.vpn_env.path ];
    environment = {
      VPN_TYPE = "openvpn";
      VPN_SERVICE_PROVIDER = "mullvad";
      KILL_SWITCH = "on"; # Turns off internet access if the VPN connection drops
    };
  };
  # }}}
}
Maybe gluetun will wokr 2024-05-31 03:46:32 +02:00			`# Sources:`
			`# https://github.com/nickkjolsing/dockerMullvadVPN`
			`# https://www.reddit.com/r/HomeServer/comments/xapl93/a_minimal_configuration_stepbystep_guide_to_media/`
Set up torrent 2024-04-28 01:14:19 +02:00			`{ config, pkgs, ... }:`
			`let`
Attempt to set up guacamole 2024-06-13 15:47:36 +02:00			`port = config.satellite.ports.qbittorrent;`
Move qbit data dir 2024-05-29 03:18:16 +02:00			`dataDir = "/persist/data/media";`
Set up torrent 2024-04-28 01:14:19 +02:00			`configDir = "/persist/state/var/lib/qbittorrent";`
			`in`
			`{`
Attempt to set up guacamole 2024-06-13 15:47:36 +02:00			`# {{{ Networking & storage`
			`satellite.nginx.at.qbit.port = port;`
Maybe gluetun will wokr 2024-05-31 03:46:32 +02:00			`sops.secrets.vpn_env.sopsFile = ../secrets.yaml;`
Move qbit data dir 2024-05-29 03:18:16 +02:00			`systemd.tmpfiles.rules = [`
Maybe gluetun will wokr 2024-05-31 03:46:32 +02:00			`"d ${dataDir} 777 ${config.users.users.pilot.name} users"`
			`"d ${configDir}"`
Move qbit data dir 2024-05-29 03:18:16 +02:00			`];`
Attempt to set up guacamole 2024-06-13 15:47:36 +02:00			`# }}}`
			`# {{{ Qbit`
Same thing 2024-04-28 01:25:19 +02:00			`virtualisation.oci-containers.containers.qbittorrent = {`
Maybe gluetun will wokr 2024-05-31 03:46:32 +02:00			`image = "linuxserver/qbittorrent:latest";`
			`extraOptions = [ "--network=container:gluetun" ];`
Fix qbit depends-on name 2024-05-31 05:19:08 +02:00			`dependsOn = [ "gluetun" ];`
Maybe gluetun will wokr 2024-05-31 03:46:32 +02:00			`volumes = [ "${dataDir}:/downloads" "${configDir}:/config" ];`

			`environment = {`
			`WEBUI_PORT = toString port;`
Fix lapetus build 2024-07-08 03:18:36 +02:00			`PUID = toString config.users.users.pilot.uid;`
			`PGID = toString config.users.groups.users.gid;`
Commit after not doing it for weeks 2024-07-06 19:32:14 +02:00			`TZ = config.time.timeZone;`
Maybe gluetun will wokr 2024-05-31 03:46:32 +02:00			`};`
			`};`
			`# }}}`
Attempt to set up guacamole 2024-06-13 15:47:36 +02:00			`# {{{ Vpn`
Maybe gluetun will wokr 2024-05-31 03:46:32 +02:00			`virtualisation.oci-containers.containers.gluetun = {`
			`image = "qmcgaw/gluetun";`
Fix qbit install 2024-05-31 01:28:43 +02:00			`extraOptions = [`
Few more flags for gluetun 2024-06-11 10:50:12 +02:00			`"--cap-add=NET_ADMIN"`
			`"--cap-add=NET_RAW"`
Provide qbit access to tun device again 2024-05-31 02:15:09 +02:00			`"--device=/dev/net/tun"`
Few more flags for gluetun 2024-06-11 10:50:12 +02:00			`"--sysctl=net.ipv4.conf.all.forwarding=1"`
Fix qbit install 2024-05-31 01:28:43 +02:00			`];`
expose a few more gluetun ports idfk 2024-06-11 11:09:24 +02:00			`ports = [`
			`"${toString port}:${toString port}"`
			`"6881:6881"`
			`"6881:6881/udp"`
			`];`
Fix qbit install 2024-05-31 01:28:43 +02:00
Fix wrong option name in qbit conf 2024-05-31 04:22:19 +02:00			`environmentFiles = [ config.sops.secrets.vpn_env.path ];`
Set up torrent 2024-04-28 01:14:19 +02:00			`environment = {`
Maybe openvpn will work.... 2024-06-01 01:19:12 +02:00			`VPN_TYPE = "openvpn";`
Maybe gluetun will wokr 2024-05-31 03:46:32 +02:00			`VPN_SERVICE_PROVIDER = "mullvad";`
			`KILL_SWITCH = "on"; # Turns off internet access if the VPN connection drops`
Set up torrent 2024-04-28 01:14:19 +02:00			`};`
			`};`
Maybe gluetun will wokr 2024-05-31 03:46:32 +02:00			`# }}}`
Set up torrent 2024-04-28 01:14:19 +02:00			`}`