| options/nixos/services.radicle.publicKey | An SSH public key (as an absolute file path or directly as a string),
usually generated by rad auth
|
| options/nixos/services.monica.nginx.locations.<name>.proxyWebsockets | Whether to support proxying websocket connections with HTTP/1.1.
|
| options/nixos/services.prometheus.exporters.tibber.firewallFilter | Specify a filter for iptables to use when
services.prometheus.exporters.tibber.openFirewall
is true
|
| options/nixos/services.nsd.zones.<name>.dnssecPolicy.ksk.postPublish | How long after deactivation to keep a key in the zone
|
| options/nixos/services.traefik.package | The traefik package to use.
|
| options/nixos/services.prometheus.exporters.fritzbox.openFirewall | Open port in firewall for incoming connections.
|
| options/nixos/services.prometheus.exporters.nextcloud.username | Username for connecting to Nextcloud
|
| options/nixos/services.sshwifty.socks5PasswordFile | Path to a file containing the SOCKS5 password.
|
| options/nixos/services.prometheus.exporters.bitcoin.openFirewall | Open port in firewall for incoming connections.
|
| options/nixos/services.minio.enable | Whether to enable Minio Object Storage.
|
| options/nixos/services.smartd.notifications.mail.enable | Whenever to send e-mail notifications.
|
| options/nixos/services.prometheus.remoteRead.*.proxy_url | Optional Proxy URL.
|
| options/nixos/services.pghero.package | The pghero package to use.
|
| options/nixos/services.mysql.settings | MySQL configuration
|
| options/nixos/services.prometheus.exporters.junos-czerwonk.user | User name under which the junos-czerwonk exporter shall be run.
|
| options/nixos/services.prometheus.exporters.dmarc.user | User name under which the dmarc exporter shall be run.
|
| options/nixos/services.prometheus.scrapeConfigs.*.eureka_sd_configs.*.oauth2.scopes | Scopes for the token request.
|
| options/nixos/services.tautulli.port | TCP port where Tautulli listens.
|
| options/nixos/services.taler.exchange.settings | Configuration options for the taler exchange config file
|
| options/nixos/services.maddy.config | Server configuration, see
https://maddy.email for
more information
|
| options/nixos/services.namecoind.rpc.address | IP address the RPC server will bind to.
|
| options/nixos/services.umurmur.settings.max_bandwidth | Maximum bandwidth (in bits per second) that clients may send
speech at.
|
| options/nixos/services.netclient.enable | Whether to enable Netclient Daemon.
|
| options/nixos/services.outline.oidcAuthentication.scopes | OpenID authentication scopes.
|
| options/nixos/services.syncthing.overrideDevices | Whether to delete the devices which are not configured via the
devices option
|
| options/nixos/services.pinchflat.extraConfig | The configuration of Pinchflat is handled through environment variables
|
| options/nixos/services.syncoid.package | The sanoid package to use.
|
| options/nixos/services.nsd.tcpQueryCount | Maximum number of queries served on a single TCP connection.
0 means no maximum.
|
| options/nixos/services.saunafs.metalogger.settings.DATA_PATH | Data storage directory
|
| options/nixos/services.suricata.settings.vars.port-groups | The port group variables for suricata.
|
| options/nixos/services.locate.extraFlags | Extra flags to pass to updatedb.
|
| options/nixos/services.netbird.clients | Attribute set of NetBird client daemons, by default each one will:
- be manageable using dedicated tooling:
netbird-<name> script,NetBird - netbird-<name> graphical interface when appropriate (see ui.enable),
- run as a
netbird-<name>.service,
- listen for incoming remote connections on the port
51820 (openFirewall by default),
- manage the
netbird-<name> wireguard interface,
- use the /var/lib/netbird-/config.json configuration file,
- override /var/lib/netbird-/config.json with values from /etc/netbird-/config.d/*.json,
- (
hardened) be locally manageable by netbird-<name> system group,
With following caveats:
- multiple daemons will interfere with each other's DNS resolution of
netbird.cloud, but
should remain fully operational otherwise
|
| options/nixos/services.oauth2-proxy.redirectURL | The OAuth2 redirect URL.
|
| options/nixos/services.peertube-runner.settings | Configuration for peertube-runner
|
| options/nixos/services.snipe-it.database.user | Database username.
|
| options/nixos/services.smartd.notifications.wall.enable | Whenever to send wall notifications to all users.
|
| options/nixos/services.nbd.server.exports.<name>.allowAddresses | IPs and subnets that are authorized to connect for this device
|
| options/nixos/services.netbird.clients.<name>.dir.runtime | A runtime directory used by NetBird client.
|
| options/nixos/services.plantuml-server.home | Home directory of the PlantUML server instance.
|
| options/nixos/services.prometheus.exporters.pve.port | Port to listen on.
|
| options/nixos/services.prometheus.exporters.artifactory.extraFlags | Extra commandline options to pass to the artifactory exporter.
|
| options/nixos/services.ncps.cache.databaseURLFile | File containing the URL of the database.
|
| options/nixos/services.nginx.proxyCachePath.<name>.inactive | Cached data that has not been accessed for the time specified by
the inactive parameter is removed from the cache, regardless of
its freshness.
|
| options/nixos/services.prometheus.scrapeConfigs.*.dockerswarm_sd_configs.*.authorization | Optional Authorization header configuration.
|
| options/nixos/services.plex.user | User account under which Plex runs.
|
| options/nixos/services.tayga.ipv4 | IPv4-specific configuration.
|
| options/nixos/services.qui.settings.host | The host address qui listens on.
|
| options/nixos/services.prometheus.listenAddress | Address to listen on for the web interface, API, and telemetry.
|
| options/nixos/services.rabbitmq.managementPlugin.port | On which port to run the management plugin
|
| options/nixos/services.suricata.settings.run-as.group | Run Suricata with a specific group-id.
|
| options/nixos/services.monica.nginx.listen.*.port | Port number to listen on
|
| options/nixos/services.netbird.server.management.extraOptions | Additional options given to netbird-mgmt as commandline arguments.
|
| options/nixos/services.nginx.virtualHosts.<name>.http2 | Whether to enable the HTTP/2 protocol
|
| options/nixos/services.mailman.webUser | User to run mailman-web as
|
| options/nixos/services.prometheus.scrapeConfigs.*.kuma_sd_configs.*.oauth2.client_id | OAuth client ID.
|
| options/nixos/services.public-inbox.enable | Whether to enable the public-inbox mail archiver.
|
| options/nixos/services.ollama.enable | Whether to enable ollama server for local large language models.
|
| options/nixos/services.prometheus.exporters.klipper.group | Group under which the klipper exporter shall be run.
|
| options/nixos/services.sympa.settingsFile.<name>.enable | Whether this file should be generated
|
| options/nixos/services.prometheus.exporters.mongodb.telemetryPath | Metrics expose path
|
| options/nixos/services.system76-scheduler.settings.processScheduler.foregroundBoost.foreground.ioPrio | IO scheduler priority.
|
| options/nixos/services.syncthing.relay.enable | Whether to enable Syncthing relay service.
|
| options/nixos/services.limesurvey.httpd.virtualHost.http2 | Whether to enable HTTP 2
|
| options/nixos/services.postgresql.package | The package being used by postgresql.
|
| options/nixos/services.prometheus.exporters.unpoller.loki.verify_ssl | Verify Loki's certificate.
|
| options/nixos/services.matrix-alertmanager.homeserverUrl | URL of the Matrix homeserver to use.
|
| options/nixos/services.ncdns.settings | ncdns settings
|
| options/nixos/services.tuned.settings.dynamic_tuning | Whether to enable dynamic tuning.
|
| options/nixos/services.turn-rs.settings | Turn-rs server config file
|
| options/nixos/services.nominatim.database.host | Host of the postgresql server
|
| options/nixos/services.radicle.ci.broker.settings.adapters | CI adapters
|
| options/nixos/services.prosody.modules.server_contact_info | Publish contact information for this service
|
| options/nixos/services.prometheus.exporters.artifactory.artiAccessToken | Access token for authentication against JFrog Artifactory API
|
| options/nixos/services.public-inbox.inboxes.<name>.watchheader | If specified, public-inbox-watch(1) will only process
mail containing a matching header.
|
| options/nixos/services.rsync.jobs.<name>.sources | Source directories.
|
| options/nixos/services.reposilite.database.host | Database host address.
|
| options/nixos/services.mastodon.webProcesses | Processes used by the mastodon-web service.
|
| options/nixos/services.logstash.dataDir | A path to directory writable by logstash that it uses to store data
|
| options/nixos/services.lvm.boot.vdo.enable | Whether to enable support for booting from VDOLVs.
|
| options/nixos/services.smartd.devices | List of devices to monitor.
|
| options/nixos/services.pixelfed.runtimeDir | Ruutime directory of the pixelfed user which holds
the application's caches and temporary files.
|
| options/nixos/services.navidrome.package | The navidrome package to use.
|
| options/nixos/services.limesurvey.nginx.virtualHost.acmeFallbackHost | Host which to proxy requests to if ACME challenge is not found
|
| options/nixos/services.misskey.reverseProxy.webserver.nginx.globalRedirect | If set, all requests for this host are redirected (defaults to 301,
configurable with redirectCode) to the given hostname.
|
| options/nixos/services.prometheus.exporters.mqtt.esphomeTopicPrefixes | MQTT topic used for ESPHome messages.
|
| options/nixos/services.phpfpm.pools | PHP-FPM pools
|
| options/nixos/services.overseerr.package | The overseerr package to use.
|
| options/nixos/services.readarr.group | Group under which Readarr runs.
|
| options/nixos/services.tts.servers.<name>.enable | Whether to enable Coqui TTS server.
|
| options/nixos/services.sshwifty.settings | Configuration for Sshwifty
|
| options/nixos/services.marytts.package | The marytts package to use.
|
| options/nixos/services.pdfding.gunicorn.extraArgs | Command line arguments passed to Gunicorn server.
|
| options/nixos/services.mlmmj.listDomain | Set the mailing list domain
|
| options/nixos/services.subsonic.transcoders | List of paths to transcoder executables that should be accessible
from Subsonic
|
| options/nixos/services.moosefs.master.openFirewall | Whether to automatically open required firewall ports for master service.
|
| options/nixos/services.tarsnap.enable | Whether to enable periodic tarsnap backups.
|
| options/nixos/services.prometheus.scrapeConfigs.*.openstack_sd_configs.*.username | username is required if using Identity V2 API
|
| options/nixos/services.softether.vpnserver.enable | Whether to enable SoftEther VPN Server.
|
| options/nixos/services.terraria.worldPath | The path to the world file (.wld) which should be loaded
|
| options/nixos/services.opensearch.settings."network.host" | Which port this service should listen on.
|