nixos-config/profiles/servers/tinyproxy.nix

{ config, pkgs, lib, ... }: {
  containers.tinyproxy = {
    extraFlags = [ "-U" ];
    autoStart = true;
    ephemeral = true;
    privateNetwork = true;
    hostBridge = "br0";
    localAddress = "192.168.0.6/24";
    # tmpfs = [ "/" ]; # not working with unprivilliged container
    config = { config, pkgs, ... }: {
      services.privoxy = {
        enable = true;
        settings = {
          listen-address = "192.168.0.6:8888";
          toggle = false;
          keep-alive-timeout = 300;
          default-server-timeout = 60;
          connection-sharing = false;
        };
      };
      networking = {
        defaultGateway = "192.168.0.1";
        hostName = "tinyproxy-node";
        nameservers = [ "192.168.0.1" ];
        # enableIPv6 = false;
        useHostResolvConf = false;
        firewall = {
          enable = true;
          allowedTCPPorts = [ 8888 ];
          rejectPackets = false;
        };
      };
      system.stateVersion = "22.11";
    };
  };
}
huge update to server containers 2023-03-23 01:58:10 +03:00			`{ config, pkgs, lib, ... }: {`
			`containers.tinyproxy = {`
			`extraFlags = [ "-U" ];`
			`autoStart = true;`
			`ephemeral = true;`
			`privateNetwork = true;`
			`hostBridge = "br0";`
			`localAddress = "192.168.0.6/24";`
			`# tmpfs = [ "/" ]; # not working with unprivilliged container`
			`config = { config, pkgs, ... }: {`
			`services.privoxy = {`
			`enable = true;`
			`settings = {`
			`listen-address = "192.168.0.6:8888";`
			`toggle = false;`
			`keep-alive-timeout = 300;`
			`default-server-timeout = 60;`
			`connection-sharing = false;`
			`};`
			`};`
			`networking = {`
			`defaultGateway = "192.168.0.1";`
			`hostName = "tinyproxy-node";`
			`nameservers = [ "192.168.0.1" ];`
			`# enableIPv6 = false;`
			`useHostResolvConf = false;`
			`firewall = {`
			`enable = true;`
			`allowedTCPPorts = [ 8888 ];`
			`rejectPackets = false;`
			`};`
			`};`
			`system.stateVersion = "22.11";`
			`};`
			`};`
			`}`