tbarnouin/nixos-hypervisor
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1
nixos-hypervisor/services/jellyfin/default.nix
Théo Barnouin b4ffe6215b First try at docker VM
2025-05-14 10:55:34 +02:00

82 lines
2.1 KiB
Nix
Raw Blame History

{
lib,
config,
pkgs,
...
}: let
cfg = config.services.vm_jellyfin;
in {
options.services.vm_jellyfin = {
enable = lib.mkEnableOption "Enable minimal config";
};
config = lib.mkIf cfg.enable {
age.secrets.jellyfin-lapi-key = {
file = ../../secrets/jellyfin-lapi-key.age;
owner = "crowdsec";
};
boot = {
kernelPackages = pkgs.linuxPackages_latest;
kernelParams = ["intel_pstate=enable"];
kernelModules = ["kvm-intel"];
};
systemd.services.jellyfin.environment.LIBVA_DRIVER_NAME = "iHD";
environment = {
sessionVariables = { LIBVA_DRIVER_NAME = "iHD"; };
systemPackages = with pkgs; [
cifs-utils
s-tui
];
};
# Intel Hardware Acceleration config
hardware = {
cpu.intel.updateMicrocode = true;
enableAllFirmware = true;
intel-gpu-tools.enable = true;
graphics = {
enable = true;
extraPackages = with pkgs; [
intel-media-driver
libva-vdpau-driver
intel-compute-runtime # OpenCL filter support (hardware tonemapping and subtitle burn-in)
intel-ocl
vpl-gpu-rt # QSV on 11th gen or newer
];
extraPackages32 = with pkgs.pkgsi686Linux; [
intel-media-driver
];
};
};
services = {
crowdsec = {
hub.collections = [
"LePresidente/jellyfin"
];
settings.lapi.credentialsFile = "${config.age.secrets.jellyfin-lapi-key.path}";
localConfig = {
acquisitions = [
{
source = "journalctl";
journalctl_filter = [ "_SYSTEMD_UNIT=jellyfin.service" ];
labels = {
type = "syslog";
};
}
];
};
};
jellyfin= {
enable = true;
user = "tbarnouin";
openFirewall = true;
};
};
fileSystems."/mnt/media" = {
device = "192.168.1.125:/BIGDATA";
fsType = "nfs";
options = [
"x-systemd.automount"
"noauto"
];
};
};
}
Reference in a new issue View git blame Copy permalink