| options/nixos/services.postfix.aliasFiles | Aliases' tables to be compiled and placed into /var/lib/postfix/conf.
|
| options/nixos/services.prometheus.exporters.deluge.firewallRules | Specify rules for nftables to add to the input chain
when services.prometheus.exporters.deluge.openFirewall is true.
|
| options/nixos/services.llama-cpp.enable | Whether to enable LLaMA C++ server.
|
| options/nixos/services.radicle.ci.adapters.native.instances.<name>.name | Adapter name that is used in the radicle-ci-broker configuration
|
| options/nixos/services.printing.openFirewall | Whether to open the firewall for TCP ports specified in
listenAddresses option.
|
| options/nixos/services.namecoind.wallet | Wallet file
|
| options/nixos/services.prometheus.exporters.bitcoin.user | User name under which the bitcoin exporter shall be run.
|
| options/nixos/services.lifecycled.snsTopic | The SNS topic that receives events.
|
| options/nixos/services.prometheus.exporters.rasdaemon.port | Port to listen on.
|
| options/nixos/services.prometheus.exporters.bird.firewallFilter | Specify a filter for iptables to use when
services.prometheus.exporters.bird.openFirewall
is true
|
| options/nixos/services.redmine.components.ghostscript | Whether to enable exporting Gant diagrams as PDF..
|
| options/nixos/services.stirling-pdf.package | The stirling-pdf package to use.
|
| options/nixos/services.rathole.credentialsFile | Path to a TOML file to be merged with the settings
|
| options/nixos/services.netbox.plugins | List of plugin packages to install.
|
| options/nixos/services.mediawiki.package | The mediawiki package to use.
|
| options/nixos/services.redshift.temperature.night | Colour temperature to use at night, between
1000 and 25000 K.
|
| options/nixos/services.stalwart.settings | Configuration options for the Stalwart server
|
| options/nixos/services.pgbackrest.commands.server | Options for the 'server' command
|
| options/nixos/services.mqtt2influxdb.mqtt.port | MQTT server port.
|
| options/nixos/services.mtprotoproxy.users | Allowed users and their secrets
|
| options/nixos/services.prosody.s2sRequireEncryption | Force servers to use encrypted connections? This option will
prevent servers from authenticating unless they are using encryption
|
| options/nixos/services.pipewire.extraLv2Packages | List of packages that provide LV2 plugins in lib/lv2 that should
be made available to PipeWire for [filter chains][wiki-filter-chain]
|
| options/nixos/services.prometheus.scrapeConfigs.*.kubernetes_sd_configs.*.authorization.credentials_file | Sets the credentials to the credentials read from the configured file
|
| options/nixos/services.spamassassin.debug | Whether to run the SpamAssassin daemon in debug mode
|
| options/nixos/services.pdfding.database.port | PostgreSQL port
|
| options/nixos/services.prometheus.exporters.graphite.listenAddress | Address to listen on.
|
| options/nixos/services.tailscaleAuth.enable | Whether to enable tailscale.nginx-auth, to authenticate users via tailscale.
|
| options/nixos/services.prometheus.exporters.rasdaemon.user | User name under which the rasdaemon exporter shall be run.
|
| options/nixos/services.part-db.poolConfig | Options for the PartDB PHP pool
|
| options/nixos/services.mtr-exporter.jobs | List of MTR jobs
|
| options/nixos/services.prometheus.remoteWrite.*.sigv4.secret_key | The Secret Access Key.
|
| options/nixos/services.matrix-appservice-discord.settings | config.yaml configuration as a Nix attribute set
|
| options/nixos/services.tarsnap.archives.<name>.printStats | Print global archive statistics upon completion
|
| options/nixos/services.prometheus.scrapeConfigs.*.marathon_sd_configs.*.basic_auth.password_file | HTTP password file
|
| options/nixos/services.monica.nginx.listen.*.ssl | Enable SSL.
|
| options/nixos/services.thanos.receive.stateDir | Data directory relative to /var/lib of TSDB.
|
| options/nixos/services.prometheus.scrapeConfigs.*.triton_sd_configs.*.version | The Triton discovery API version
|
| options/nixos/services.logstash.plugins | The paths to find other logstash plugins in.
|
| options/nixos/services.picom.inactiveOpacity | Opacity of inactive windows.
|
| options/nixos/services.suricata.settings.vars | Variables to be used within the suricata rules.
|
| options/nixos/services.opensearch.group | The group OpenSearch runs as
|
| options/nixos/services.oauth2-proxy.nginx.virtualHosts.<name>.allowed_emails | List of emails to allow access to this vhost, or null to allow all.
|
| options/nixos/services.mysql.replication.serverId | Id of the MySQL server instance
|
| options/nixos/services.routinator.settings.expire | An integer value specifying the number of seconds an RTR client is requested to use a data set if it cannot get an update before throwing it away and continuing with no data at all.
|
| options/nixos/services.prometheus.scrapeConfigs.*.kubernetes_sd_configs.*.selectors.*.label | Selector label
|
| options/nixos/services.prometheus.exporters.artifactory.listenAddress | Address to listen on.
|
| options/nixos/services.prometheus.scrapeConfigs.*.lightsail_sd_configs.*.access_key | The AWS API keys
|
| options/nixos/services.szurubooru.server.settings.smtp.user | User to connect to the SMTP server.
|
| options/nixos/services.shorewall6.configs | This option defines the Shorewall configs
|
| options/nixos/services.limesurvey.database.dbEngine | Database storage engine to use.
|
| options/nixos/services.parsedmarc.settings.smtp.password | The SMTP server password
|
| options/nixos/services.prometheus.exporters.frr.firewallRules | Specify rules for nftables to add to the input chain
when services.prometheus.exporters.frr.openFirewall is true.
|
| options/nixos/services.misskey.reverseProxy.webserver.nginx.basicAuthFile | Basic Auth password file for a vhost
|
| options/nixos/services.mosquitto.listeners.*.users.<name>.hashedPasswordFile | Specifies the path to a file containing the
hashed password for the MQTT user
|
| options/nixos/services.prometheus.exporters.buildkite-agent.group | Group under which the buildkite-agent exporter shall be run.
|
| options/nixos/services.tor.settings.ExitPolicyRejectLocalInterfaces | See torrc manual.
|
| options/nixos/services.rimgo.settings.ADDRESS | The address to listen on.
|
| options/nixos/services.prometheus.scrapeConfigs.*.marathon_sd_configs.*.oauth2.endpoint_params | Optional parameters to append to the token URL.
|
| options/nixos/services.mailcatcher.smtp.ip | The ip address of the smtp server.
|
| options/nixos/services.maubot.settings.server.ui_base_path | The base path for the UI.
|
| options/nixos/services.prometheus.exporters.ecoflow.ecoflowEmailFile | Path to the file with your personal ecoflow app login email address
|
| options/nixos/services.prometheus.scrapeConfigs.*.dockerswarm_sd_configs.*.basic_auth.password_file | HTTP password file
|
| options/nixos/services.prometheus.exporters.mail.environmentFile | File containing env-vars to be substituted into the exporter's config.
|
| options/nixos/services.tmate-ssh-server.package | The tmate-ssh-server package to use.
|
| options/nixos/services.oauth2-proxy.skipAuthRegexes | Skip authentication for requests matching any of these regular
expressions.
|
| options/nixos/services.orangefs.server.metadataStorageSpace | Directory for meta data storage.
|
| options/nixos/services.pihole-ftl.useDnsmasqConfig | Import options defined in services.dnsmasq.settings via
misc.dnsmasq_lines in Pi-hole's config.
|
| options/nixos/services.redsocks.redsocks.*.proxy | Proxy through which redsocks should forward incoming traffic
|
| options/nixos/services.postfix.settings.master | The master.cf configuration file as an attribute set of service
defitions
|
| options/nixos/services.radicle.httpd.nginx.acmeRoot | Directory for the ACME challenge, which is public
|
| options/nixos/services.sympa.web.fcgiProcs | Number of FastCGI processes to fork.
|
| options/nixos/services.lifecycled.enable | Whether to enable lifecycled, a daemon for responding to AWS AutoScaling Lifecycle Hooks.
|
| options/nixos/services.prometheus.exporters.py-air-control.firewallRules | Specify rules for nftables to add to the input chain
when services.prometheus.exporters.py-air-control.openFirewall is true.
|
| options/nixos/services.logmein-hamachi.enable | Whether to enable LogMeIn Hamachi, a proprietary
(closed source) commercial VPN software.
|
| options/nixos/services.prometheus.exporters.keylight.enable | Whether to enable the prometheus keylight exporter.
|
| options/nixos/services.taler.exchange.settings.exchangedb-postgres.CONFIG | Database connection URI.
|
| options/nixos/services.thanos.query-frontend.log.level | Log filtering level
|
| options/nixos/services.mlmmj.listDomain | Set the mailing list domain
|
| options/nixos/services.movim.precompressStaticFiles.gzip.compressionLevel | Gzip compression level
|
| options/nixos/services.prometheus.scrapeConfigs.*.kuma_sd_configs.*.tls_config.insecure_skip_verify | Disable validation of the server certificate.
|
| options/nixos/services.prometheus.alertmanagerGotify.enable | Whether to enable alertmagager-gotify.
|
| options/nixos/services.openssh.knownHosts | Alias of programs.ssh.knownHosts.
|
| options/nixos/services.prometheus.scrapeConfigs.*.kuma_sd_configs.*.tls_config | TLS configuration.
|
| options/nixos/services.prometheus.scrapeConfigs.*.consul_sd_configs | List of Consul service discovery configurations.
|
| options/nixos/services.tomcat.port | The TCP port Tomcat should listen on.
|
| options/nixos/services.prometheus.scrapeConfigs.*.puppetdb_sd_configs | List of PuppetDB service discovery configurations.
|
| options/nixos/services.opengfw.settings.replay.realtime | Whether the packets in the PCAP file should be replayed in "real time" (instead of as fast as possible).
|
| options/nixos/services.tor.settings.WarnPlaintextPorts | See torrc manual.
|
| options/nixos/services.lighttpd.collectd.collectionCgi | Path to collection.cgi script from (collectd sources)/contrib/collection.cgi
This option allows to use a customized version
|
| options/nixos/services.sftpgo.settings.webdavd.bindings.*.port | The port for serving WebDAV requests
|
| options/nixos/services.marytts.userDictionaries | Paths to the user dictionary files for MaryTTS.
|
| options/nixos/services.tor.settings.FetchUselessDescriptors | See torrc manual.
|
| options/nixos/services.ollama.user | User account under which to run ollama
|
| options/nixos/services.pgmanage.allowCustomConnections | This tells pgmanage whether or not to allow anyone to use a custom
connection from the login screen.
|
| options/nixos/services.openafsServer.roles.fileserver.enable | Fileserver role, serves files and volumes from its local storage.
|
| options/nixos/services.slskd.nginx.locations | Declarative location config
|
| options/nixos/services.prometheus.exporters.kea.group | Group under which the kea exporter shall be run.
|
| options/nixos/services.prometheus.exporters.exportarr-readarr.user | User name under which the exportarr-readarr exporter shall be run.
|
| options/nixos/services.prometheus.exporters.nginxlog.firewallRules | Specify rules for nftables to add to the input chain
when services.prometheus.exporters.nginxlog.openFirewall is true.
|
| options/nixos/services.strongswan-swanctl.swanctl.connections.<name>.version | IKE major version to use for connection.
- 1 uses IKEv1 aka ISAKMP,
- 2 uses IKEv2.
- A connection using the default of 0 accepts both IKEv1 and IKEv2 as
responder, and initiates the connection actively with IKEv2
|