| options/nixos/systemd.network.links | Definition of systemd network links.
|
| options/nixos/virtualisation.docker.autoPrune.dates | Specification (in the format described by
systemd.time(7)) of the time at
which the prune will occur.
|
| options/nixos/xdg.portal.enable | Whether to enable xdg desktop integration.
|
| options/nixos/services.nghttpx.frontends.*.params | Parameters to configure a backend.
|
| options/nixos/services.wg-access-server.settings.storage | A storage backend connection string
|
| options/nixos/services.writefreely.admin.initialPasswordFile | Path to a file containing the initial password for the admin user
|
| options/nixos/services.zabbixWeb.httpd.virtualHost.useACMEHost | A host of an existing Let's Encrypt certificate to use
|
| options/nixos/services.stash.settings.cache | Path to cache
|
| options/nixos/systemd.mounts.*.restartTriggers | An arbitrary list of items such as derivations
|
| options/nixos/systemd.user.slices.<name>.requires | Start the specified units when this unit is started, and stop
this unit when the specified units are stopped or fail.
|
| options/nixos/services.xserver.autorun | Whether to start the X server automatically.
|
| options/nixos/services.zabbixWeb.nginx.virtualHost.listen.*.ssl | Enable SSL.
|
| options/nixos/services.warpgate.settings.http.listen | Listen endpoint of HTTP listener.
|
| options/nixos/services.rke2.nodeLabel | Registering and starting kubelet with set of labels.
|
| options/nixos/services.jirafeau.nginxConfig.locations.<name>.proxyPass | Adds proxy_pass directive and sets recommended proxy headers if
recommendedProxySettings is enabled.
|
| options/nixos/services.zfs.autoReplication.identityFilePath | Path to SSH key used to login to host.
|
| options/nixos/systemd.tmpfiles.settings.<config-name>.<path>.<tmpfiles-type>.argument | An argument whose meaning depends on the type of operation
|
| options/nixos/services.kanidm.provision.systems.oauth2.<name>.present | Whether to ensure that this oauth2 resource server is present or absent.
|
| options/nixos/services.kubernetes.pki.certs | List of certificate specs to feed to cert generator.
|
| options/nixos/services.xserver.windowManager.evilwm.enable | Whether to enable evilwm.
|
| options/nixos/systemd.sockets.<name>.startLimitIntervalSec | Configure unit start rate limiting
|
| options/nixos/boot.isContainer | Whether this NixOS machine is a lightweight container running
in another NixOS system.
|
| options/nixos/systemd.oomd.enableRootSlice | Whether to enable oomd on the root slice (-.slice).
|
| options/nixos/virtualisation.docker.enableNvidia | Deprecated, please use hardware.nvidia-container-toolkit.enable instead
|
| options/nixos/systemd.user.paths.<name>.wantedBy | Units that want (i.e. depend on) this unit
|
| options/nixos/containers.<name>.extraVeths.<name>.forwardPorts.*.hostPort | Source port of the external interface on host
|
| options/nixos/services.jirafeau.nginxConfig.http3_hq | Whether to enable the HTTP/0.9 protocol negotiation used in QUIC interoperability tests
|
| options/nixos/services.vdr.enableLirc | Whether to enable LIRC.
|
| options/nixos/services.zigbee2mqtt.package | The zigbee2mqtt package to use.
|
| options/nixos/services.zitadel.settings.Port | The port that ZITADEL listens on.
|
| options/nixos/systemd.mounts.*.upholds | Keeps the specified running while this unit is running
|
| options/nixos/virtualisation.oci-containers.containers.<name>.login.passwordFile | Path to file containing password.
|
| options/nixos/services.xserver.desktopManager.phosh.phocConfig | Configurations for the Phoc compositor.
|
| options/nixos/services.zabbixWeb.httpd.virtualHost.enableUserDir | Whether to enable serving ~/public_html as
/~«username».
|
| options/nixos/virtualisation.oci-containers.containers.<name>.autoRemoveOnStop | Automatically remove the container when it is stopped or killed
|
| options/nixos/containers.<name>.forwardPorts.*.containerPort | Target port of container
|
| options/nixos/services.k3s.selinux | Enable SELinux in containerd.
|
| options/nixos/services.kubernetes.apiserverAddress | Clusterwide accessible address for the kubernetes apiserver,
including protocol and optional port.
|
| options/nixos/services.xl2tpd.extraXl2tpOptions | Adds extra lines to the xl2tpd configuration file.
|
| options/nixos/systemd.user.slices.<name>.aliases | Aliases of that unit.
|
| options/nixos/users.ldap.loginPam | Whether to include authentication against LDAP in login PAM.
|
| options/nixos/services.frr.openFilesLimit | This is the maximum number of FD's that will be available
|
| options/nixos/services.vault.tlsCertFile | TLS certificate file
|
| options/nixos/services.warpgate.settings.log.retention | How long Warpgate keep its logs.
|
| options/nixos/systemd.user.services.<name>.reloadIfChanged | Whether the service should be reloaded during a NixOS
configuration switch if its definition has changed
|
| options/nixos/services.github-runners.<name>.nodeRuntimes | List of Node.js runtimes the runner should support.
|
| options/nixos/services.vault-agent.instances.<name>.package | The vault package to use.
|
| options/nixos/users.users.<name>.createHome | Whether to create the home directory and ensure ownership as well as
permissions to match the user.
|
| options/nixos/virtualisation.containerd.args | extra args to append to the containerd cmdline
|
| options/nixos/containers.<name>.networkNamespace | Takes the path to a file representing a kernel network namespace that the container
shall run in
|
| options/nixos/services.nghttpx.backends.*.server | Backend server location specified as either a host:port pair
or a unix domain docket.
|
| options/nixos/services.vdr.videoDir | Recording directory
|
| options/nixos/services.kanidm.provision.systems.oauth2.<name>.removeOrphanedClaimMaps | Whether claim maps not specified here but present in kanidm should be removed from kanidm.
|
| options/nixos/services.xserver.desktopManager.cinnamon.extraGSettingsOverrides | Additional gsettings overrides.
|
| options/nixos/services.lasuite-docs.collaborationServer.settings.COLLABORATION_SERVER_ORIGIN | Origins allowed to connect to the collaboration server
|
| options/nixos/services.wordpress.sites.<name>.virtualHost.http2 | Whether to enable HTTP 2
|
| options/nixos/services.xserver.xkb.extraLayouts.<name>.keycodesFile | The path to the xkb keycodes file
|
| options/nixos/systemd.targets.<name>.requires | Start the specified units when this unit is started, and stop
this unit when the specified units are stopped or fail.
|
| options/nixos/virtualisation.docker.autoPrune.randomizedDelaySec | Add a randomized delay before each auto prune
|
| options/nixos/users.mysql.pam.logging.rHostColumn | The name of the column in the log table to which the name of the remote
host that initiates the session is stored
|
| options/nixos/services.rke2.serverAddr | The rke2 server to connect to, used to join a cluster.
|
| options/nixos/services.webhook.ip | The IP webhook should serve hooks on
|
| options/nixos/services.wordpress.sites.<name>.virtualHost | Apache configuration can be done by adapting services.httpd.virtualHosts.
|
| options/nixos/services.znapzend.zetup.<name>.presnap | Command to run before snapshots are taken on the source dataset,
e.g. for database locking/flushing
|
| options/nixos/systemd.user.services.<name>.enable | If set to false, this unit will be a symlink to
/dev/null
|
| options/nixos/virtualisation.emptyDiskImages | Additional disk images to provide to the VM
|
| options/nixos/virtualisation.docker.rootless.package | The docker package to use.
|
| options/nixos/services.vlagent.remoteWrite.basicAuthUsername | Basic Auth username used to connect to remote_write endpoint
|
| options/nixos/systemd.user.targets.<name>.requisite | Similar to requires
|
| options/nixos/systemd.user.targets.<name>.overrideStrategy | Defines how unit configuration is provided for systemd:
asDropinIfExists creates a unit file when no unit file is provided by the package
otherwise it creates a drop-in file named overrides.conf.
asDropin creates a drop-in file named overrides.conf
|
| options/nixos/services.rke2.autoDeployCharts.<name>.package | The packaged Helm chart
|
| options/nixos/services.usbmuxd.enable | Enable the usbmuxd ("USB multiplexing daemon") service
|
| options/nixos/services.gerrit.builtinPlugins | List of builtins plugins to install
|
| options/nixos/services.kubernetes.lib | Common functions for the kubernetes modules.
|
| options/nixos/services.zigbee2mqtt.enable | Whether to enable zigbee2mqtt service.
|
| options/nixos/users.users.<name>.openssh.authorizedPrincipals | A list of verbatim principal names that should be added to the user's
authorized principals.
|
| options/nixos/users.ldap.timeLimit | Specifies the time limit (in seconds) to use when performing
searches
|
| options/nixos/virtualisation.xen.package | The Xen Hypervisor package to use.
|
| options/nixos/services.youtrack.virtualHost | Name of the nginx virtual host to use and setup
|
| options/nixos/systemd.network.networks.<name>.hierarchyTokenBucketClassConfig | Each attribute in this set specifies an option in the
[HierarchyTokenBucketClass] section of the unit
|
| options/nixos/services.xinetd.services.*.user | User account for the service
|
| options/nixos/virtualisation.libvirtd.firewallBackend | The backend used to setup virtual network firewall rules.
|
| options/nixos/services.frr.mgmtd.options | Options for the FRR mgmtd daemon.
|
| options/nixos/systemd.network.networks.<name>.bond | A list of bond interfaces to be added to the network section of the
unit
|
| options/nixos/virtualisation.libvirtd.package | The libvirt package to use.
|
| options/nixos/virtualisation.libvirtd.qemu.runAsRoot | If true, libvirtd runs qemu as root
|
| options/nixos/containers.<name>.extraVeths | Extra veth-pairs to be created for the container.
|
| options/nixos/services.vault.storageConfig | HCL configuration to insert in the storageBackend section
|
| options/nixos/services.warpgate.settings.http.sni_certificates.*.certificate | Path to certificate.
|
| options/nixos/services.watchdogd.settings.loadavg.enabled | Whether to enable watchdogd plugin loadavg.
|
| options/nixos/services.xserver.windowManager.bspwm.sxhkd.package | The sxhkd package to use.
|
| options/nixos/services.wyoming.satellite.microphone.noiseSuppression | Noise suppression level with 4 being the maximum suppression,
which may cause audio distortion
|
| options/nixos/services.xray.package | The xray package to use.
|
| options/nixos/services.your_spotify.enableLocalDB | Whether to enable a local mongodb instance.
|
| options/nixos/services.zerotierone.joinNetworks | List of ZeroTier Network IDs to join on startup
|
| options/nixos/systemd.user.timers.<name>.enable | If set to false, this unit will be a symlink to
/dev/null
|
| options/nixos/services.kubernetes.clusterCidr | Kubernetes controller manager and proxy CIDR Range for Pods in cluster.
|
| options/nixos/services.matrix-appservice-irc.registrationUrl | The URL where the application service is listening for homeserver requests,
from the Matrix homeserver perspective.
|
| options/nixos/services.wstunnel.clients | wstunnel clients to set up.
|
| options/nixos/services.home-assistant.blueprints.automation | List of automation
blueprints to
install into ${config.services.home-assistant.configDir}/blueprints/automation.
|