Update and add more sysctl configs.

2 weeks ago · fc79067444
4 changed files with 37 additions and 27 deletions
--- a/flake.lock
+++ b/flake.lock
@ -7,11 +7,11 @@
        ]
      },
      "locked": {
        "lastModified": 1723080788,
        "narHash": "sha256-C5LbM5VMdcolt9zHeLQ0bYMRjUL+N+AL5pK7/tVTdes=",
        "lastModified": 1725377834,
        "narHash": "sha256-tqoAO8oT6zEUDXte98cvA1saU9+1dLJQe3pMKLXv8ps=",
        "owner": "nix-community",
        "repo": "disko",
        "rev": "ffc1f95f6c28e1c6d1e587b51a2147027a3e45ed",
        "rev": "e55f9a8678adc02024a4877c2a403e3f6daf24fe",
        "type": "github"
      },
      "original": {
@ -26,16 +26,16 @@
        "utils": "utils"
      },
      "locked": {
        "lastModified": 1722178161,
        "narHash": "sha256-9Nmg+1ngRCsKMJXN4JWFzg4SLTj1iJfakxiOsF48rZw=",
        "lastModified": 1725688145,
        "narHash": "sha256-WCdR85Psl7yfl1/gDruytzZcDUtj+V3GBxwb0kMWbts=",
        "owner": "GermanBread",
        "repo": "declarative-flatpak",
        "rev": "cbabea429cd7d659041e5338e869a8e70f59fa74",
        "rev": "1cd36d4068cdeb3fa3fb815f8c9bfbc1217f445d",
        "type": "github"
      },
      "original": {
        "owner": "GermanBread",
        "ref": "stable",
        "ref": "stable-v3",
        "repo": "declarative-flatpak",
        "type": "github"
      }
@ -47,11 +47,11 @@
        ]
      },
      "locked": {
        "lastModified": 1720042825,
        "narHash": "sha256-A0vrUB6x82/jvf17qPCpxaM+ulJnD8YZwH9Ci0BsAzE=",
        "lastModified": 1725703823,
        "narHash": "sha256-tDgM4d8mLK0Hd6YMB2w1BqMto1XBXADOzPEaLl10VI4=",
        "owner": "nix-community",
        "repo": "home-manager",
        "rev": "e1391fb22e18a36f57e6999c7a9f966dc80ac073",
        "rev": "208df2e558b73b6a1f0faec98493cb59a25f62ba",
        "type": "github"
      },
      "original": {
@ -68,11 +68,11 @@
        ]
      },
      "locked": {
        "lastModified": 1723015306,
        "narHash": "sha256-jQnFEtH20/OsDPpx71ntZzGdRlpXhUENSQCGTjn//NA=",
        "lastModified": 1725831139,
        "narHash": "sha256-9syY5nEehCswE8AMcjpUO4T0iX9nrNbzq69Kqcs92L0=",
        "owner": "nix-community",
        "repo": "home-manager",
        "rev": "b3d5ea65d88d67d4ec578ed11d4d2d51e3de525e",
        "rev": "8a175a89137fe798b33c476d4dae17dba5fb3fd3",
        "type": "github"
      },
      "original": {
@ -83,27 +83,27 @@
    },
    "nixpkgs": {
      "locked": {
        "lastModified": 1720535198,
        "narHash": "sha256-zwVvxrdIzralnSbcpghA92tWu2DV2lwv89xZc8MTrbg=",
        "lastModified": 1724316499,
        "narHash": "sha256-Qb9MhKBUTCfWg/wqqaxt89Xfi6qTD3XpTzQ9eXi3JmE=",
        "owner": "NixOS",
        "repo": "nixpkgs",
        "rev": "205fd4226592cc83fd4c0885a3e4c9c400efabb5",
        "rev": "797f7dc49e0bc7fab4b57c021cdf68f595e47841",
        "type": "github"
      },
      "original": {
        "owner": "NixOS",
        "ref": "nixos-23.11",
        "ref": "nixos-24.05",
        "repo": "nixpkgs",
        "type": "github"
      }
    },
    "nixpkgs-unstable": {
      "locked": {
        "lastModified": 1722813957,
        "narHash": "sha256-IAoYyYnED7P8zrBFMnmp7ydaJfwTnwcnqxUElC1I26Y=",
        "lastModified": 1725634671,
        "narHash": "sha256-v3rIhsJBOMLR8e/RNWxr828tB+WywYIoajrZKFM+0Gg=",
        "owner": "nixos",
        "repo": "nixpkgs",
        "rev": "cb9a96f23c491c081b38eab96d22fa958043c9fa",
        "rev": "574d1eac1c200690e27b8eb4e24887f8df7ac27c",
        "type": "github"
      },
      "original": {
@ -115,11 +115,11 @@
    },
    "nixpkgs_2": {
      "locked": {
        "lastModified": 1722987190,
        "narHash": "sha256-68hmex5efCiM2aZlAAEcQgmFI4ZwWt8a80vOeB/5w3A=",
        "lastModified": 1725693463,
        "narHash": "sha256-ZPzhebbWBOr0zRWW10FfqfbJlan3G96/h3uqhiFqmwg=",
        "owner": "nixos",
        "repo": "nixpkgs",
        "rev": "21cc704b5e918c5fbf4f9fff22b4ac2681706d90",
        "rev": "68e7dce0a6532e876980764167ad158174402c6f",
        "type": "github"
      },
      "original": {
--- a/flake.nix
+++ b/flake.nix
@ -20,7 +20,7 @@
      url = "github:nix-community/home-manager";
      inputs.nixpkgs.follows = "nixpkgs";
    };
    flatpaks.url = "github:GermanBread/declarative-flatpak/stable";
    flatpaks.url = "github:GermanBread/declarative-flatpak/stable-v3";
  };
  # Flake outputs, NixOS and Home Configurations.
--- a/modules/nixos/common.nix
+++ b/modules/nixos/common.nix
@ -21,6 +21,11 @@
  boot.loader.systemd-boot.enable = true;
  boot.loader.efi.canTouchEfiVariables = true;
  boot.supportedFilesystems = [ "btrfs" ];
  boot.kernel.sysctl = {
    "kernel.sysrq" = 1;
    "fs.inotify.max_user_watches" = 999999999;
    "vm.max_map_count" = 2147483642;
  };
  # BTRFS Scrubbing Services.
  services.btrfs.autoScrub.enable = true;
--- a/modules/nixos/virtualization.nix
+++ b/modules/nixos/virtualization.nix
@ -15,9 +15,14 @@
      /run/current-system/sw/bin/iptables -I FORWARD -m physdev --physdev-is-bridged -j ACCEPT
    '';
  boot.kernel.sysctl."net.bridge.bridge-nf-call-ip6tables" = 0;
  boot.kernel.sysctl."net.bridge.bridge-nf-call-iptables" = 0;
  boot.kernel.sysctl."net.bridge.bridge-nf-call-arptables" = 0;
  boot.kernel.sysctl = {
    "net.bridge.bridge-nf-call-ip6tables" = 0;
    "net.bridge.bridge-nf-call-iptables" = 0;
    "net.bridge.bridge-nf-call-arptables" = 0;
    # Fixing ESP Home No buffer space available
    "net.ipv4.igmp_max_memberships" = 50;
    "net.ipv4.igmp_max_msf" = 30;
  };
  virtualisation.libvirtd = {
    enable = true;