systems/palatine-hill/docker/torr.nix

{ config, pkgs, ... }:

let
  qbitBase = {
    image = "ghcr.io/linuxserver/qbittorrent:latest";
    pull = "always";
    environment = {
      PUID = "600";
      PGID = "100";
      TZ = "America/New_York";
    };
  };

  vars = import ../vars.nix;
  #docker_path = vars.primary_docker;
  torr_path = vars.primary_torr;
  qbit_path = "${torr_path}/qbit";
  qbitvpn_path = "${torr_path}/qbitvpn";
  qbitperm_path = "${torr_path}/qbitperm";
in
{

  virtualisation.oci-containers.containers = {
    qbit = qbitBase // {
      # webui port is 8082, torr port is 29432
      environment = qbitBase.environment // {
        WEBUI_PORT = "8082";
        TORRENTING_PORT = "29432";
      };
      volumes = [
        "${qbit_path}/config:/config" # move from docker/qbit to qbit_path
        "${torr_path}/data/:/data"
        "/etc/localtime:/etc/localtime:ro"
      ];
      networks = [ "host" ];
      ports = [
        "8082:8082"
        "29432:29432"
        "29432:29432/udp"
      ];
      extraOptions = [
        "--dns=9.9.9.9"
      ];
    };

    # temp instance
    qbitVPN = qbitBase // {
      # webui port is 8081, torr port is 39274
      networks = [
        "container:gluetun-qbit"
      ];
      environment = qbitBase.environment // {
        WEBUI_PORT = "8081";
      };
      dependsOn = [ "gluetun-qbit" ];
      volumes = [
        "${qbitvpn_path}/config:/config"
        "${torr_path}/data:/data"
        "/etc/localtime:/etc/localtime:ro"
      ];
    };
    gluetun-qbit = {
      image = "qmcgaw/gluetun:v3";
      capabilities = {
        NET_ADMIN = true;
      };
      devices = [
        "/dev/net/tun:/dev/net/tun"
      ];
      ports = [
        "8081:8081"
        "8083:8083"
      ];
      environment = {
        TZ = "America/New_York";
        # SOPS prep
      };
      environmentFiles = [
        config.sops.secrets."docker/gluetun".path
        config.sops.secrets."docker/gluetun-qbitvpn".path
      ];
    };

    # permanent instance
    qbitPerm = qbitBase // {
      # webui port is 8083, torr port is 29434
      networks = [
        "container:gluetun-qbit"
      ];
      environment = qbitBase.environment // {
        WEBUI_PORT = "8083";
      };
      dependsOn = [ "gluetun-qbit" ];
      volumes = [
        "${qbitperm_path}/config:/config"
        "${torr_path}/data:/data"
        "/etc/localtime:/etc/localtime:ro"
      ];
    };
    gluetun-qbitperm = {
      image = "qmcgaw/gluetun:v3";
      capabilities = {
        NET_ADMIN = true;
      };
      devices = [
        "/dev/net/tun:/dev/net/tun"
      ];
      ports = [
        "8083:8083"
      ];
      environment = {
        TZ = "America/New_York";
        # SOPS prep
      };
      environmentFiles = [
        config.sops.secrets."docker/gluetun".path
        config.sops.secrets."docker/gluetun-qbitperm".path
      ];
    };
  };

  sops.secrets = {
    "docker/gluetun" = {
      owner = "docker-service";
      restartUnits = [
        "docker-gluetun-qbit.service"
        "docker-gluetun-qbitperm.service"
      ];
    };
    "docker/gluetun-qbitvpn" = {
      owner = "docker-service";
      restartUnits = [
        "docker-gluetun-qbit.service"
      ];
    };
    "docker/gluetun-qbitperm" = {
      owner = "docker-service";
      restartUnits = [
        "docker-gluetun-qbitperm.service"
      ];
    };
  };
}
switch deluge to openvpn 2025-06-01 15:04:11 -04:00			`{ config, pkgs, ... }:`
add deluge Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-08-16 12:15:42 -04:00
			`let`
add qbit config 2026-01-07 22:16:01 -05:00			`qbitBase = {`
			`image = "ghcr.io/linuxserver/qbittorrent:latest";`
newer -> always Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2025-06-01 18:35:15 -04:00			`pull = "always";`
add deluge Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-08-16 12:15:42 -04:00			`environment = {`
			`PUID = "600";`
			`PGID = "100";`
			`TZ = "America/New_York";`
			`};`
			`};`
add ffdl, foundry, haproxy, glances, and zfs vars Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-08-17 21:49:31 -04:00
			`vars = import ../vars.nix;`
more archiveteam and qbit changes Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-11-28 13:15:39 -05:00			`#docker_path = vars.primary_docker;`
add ffdl, foundry, haproxy, glances, and zfs vars Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-08-17 21:49:31 -04:00			`torr_path = vars.primary_torr;`
add qbit config 2026-01-07 22:16:01 -05:00			`qbit_path = "${torr_path}/qbit";`
			`qbitvpn_path = "${torr_path}/qbitvpn";`
			`qbitperm_path = "${torr_path}/qbitperm";`
add deluge Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-08-16 12:15:42 -04:00			`in`
			`{`
add startup script 2025-06-01 15:51:40 -04:00
add deluge Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-08-16 12:15:42 -04:00			`virtualisation.oci-containers.containers = {`
add qbit config 2026-01-07 22:16:01 -05:00			`qbit = qbitBase // {`
fix ports 2026-01-07 23:03:17 -05:00			`# webui port is 8082, torr port is 29432`
add qbit config 2026-01-07 22:16:01 -05:00			`environment = qbitBase.environment // {`
			`WEBUI_PORT = "8082";`
fix ports 2026-01-07 23:20:51 -05:00			`TORRENTING_PORT = "29432";`
add qbit config 2026-01-07 22:16:01 -05:00			`};`
add deluge Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-08-16 12:15:42 -04:00			`volumes = [`
add qbit config 2026-01-07 22:16:01 -05:00			`"${qbit_path}/config:/config" # move from docker/qbit to qbit_path`
remove data path for trash 2026-01-08 16:28:54 -05:00			`"${torr_path}/data/:/data"`
add deluge Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-08-16 12:15:42 -04:00			`"/etc/localtime:/etc/localtime:ro"`
			`];`
qbit is host networked 2026-01-08 11:45:15 -05:00			`networks = [ "host" ];`
add deluge Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-08-16 12:15:42 -04:00			`ports = [`
fix ports 2026-01-07 23:18:10 -05:00			`"8082:8082"`
add qbit config 2026-01-07 22:16:01 -05:00			`"29432:29432"`
fix ports 2026-01-07 23:20:51 -05:00			`"29432:29432/udp"`
add deluge Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-08-16 12:15:42 -04:00			`];`
remove data path for trash 2026-01-08 16:28:54 -05:00			`extraOptions = [`
			`"--dns=9.9.9.9"`
			`];`
add deluge Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-08-16 12:15:42 -04:00			`};`
split gluetun instances 2026-01-10 01:07:18 -05:00
			`# temp instance`
add qbit config 2026-01-07 22:16:01 -05:00			`qbitVPN = qbitBase // {`
fix ports 2026-01-07 23:03:17 -05:00			`# webui port is 8081, torr port is 39274`
add qbit config 2026-01-07 22:16:01 -05:00			`networks = [`
			`"container:gluetun-qbit"`
			`];`
fix ports 2026-01-07 23:20:51 -05:00			`environment = qbitBase.environment // {`
			`WEBUI_PORT = "8081";`
			`};`
add qbit config 2026-01-07 22:16:01 -05:00			`dependsOn = [ "gluetun-qbit" ];`
add deluge Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-08-16 12:15:42 -04:00			`volumes = [`
add qbit config 2026-01-07 22:16:01 -05:00			`"${qbitvpn_path}/config:/config"`
remove data path for trash 2026-01-08 16:28:54 -05:00			`"${torr_path}/data:/data"`
add deluge Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-08-16 12:15:42 -04:00			`"/etc/localtime:/etc/localtime:ro"`
			`];`
add qbit config 2026-01-07 22:16:01 -05:00			`};`
split gluetun instances 2026-01-10 01:07:18 -05:00			`gluetun-qbit = {`
			`image = "qmcgaw/gluetun:v3";`
			`capabilities = {`
			`NET_ADMIN = true;`
			`};`
			`devices = [`
			`"/dev/net/tun:/dev/net/tun"`
			`];`
			`ports = [`
			`"8081:8081"`
			`"8083:8083"`
			`];`
			`environment = {`
			`TZ = "America/New_York";`
			`# SOPS prep`
			`};`
			`environmentFiles = [`
			`config.sops.secrets."docker/gluetun".path`
			`config.sops.secrets."docker/gluetun-qbitvpn".path`
			`];`
			`};`

			`# permanent instance`
add qbit config 2026-01-07 22:16:01 -05:00			`qbitPerm = qbitBase // {`
			`# webui port is 8083, torr port is 29434`
			`networks = [`
			`"container:gluetun-qbit"`
			`];`
fix ports 2026-01-07 23:20:51 -05:00			`environment = qbitBase.environment // {`
			`WEBUI_PORT = "8083";`
			`};`
add qbit config 2026-01-07 22:16:01 -05:00			`dependsOn = [ "gluetun-qbit" ];`
			`volumes = [`
			`"${qbitperm_path}/config:/config"`
remove data path for trash 2026-01-08 16:28:54 -05:00			`"${torr_path}/data:/data"`
add qbit config 2026-01-07 22:16:01 -05:00			`"/etc/localtime:/etc/localtime:ro"`
add deluge Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-08-16 12:15:42 -04:00			`];`
			`};`
split gluetun instances 2026-01-10 01:07:18 -05:00			`gluetun-qbitperm = {`
add qbit config 2026-01-07 22:16:01 -05:00			`image = "qmcgaw/gluetun:v3";`
			`capabilities = {`
fix capabilties 2026-01-07 22:56:55 -05:00			`NET_ADMIN = true;`
add qbit config 2026-01-07 22:16:01 -05:00			`};`
			`devices = [`
			`"/dev/net/tun:/dev/net/tun"`
			`];`
			`ports = [`
			`"8083:8083"`
			`];`
			`environment = {`
			`TZ = "America/New_York";`
			`# SOPS prep`
			`};`
			`environmentFiles = [`
			`config.sops.secrets."docker/gluetun".path`
split gluetun instances 2026-01-10 01:07:18 -05:00			`config.sops.secrets."docker/gluetun-qbitperm".path`
fix ovpn 2025-06-01 15:22:05 -04:00			`];`
			`};`
			`};`
more archiveteam and qbit changes Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-11-28 13:15:39 -05:00
add qbit config 2026-01-07 22:16:01 -05:00			`sops.secrets = {`
			`"docker/gluetun" = {`
add startup script 2025-06-01 15:51:40 -04:00			`owner = "docker-service";`
split gluetun instances 2026-01-10 01:07:18 -05:00			`restartUnits = [`
			`"docker-gluetun-qbit.service"`
			`"docker-gluetun-qbitperm.service"`
			`];`
			`};`
			`"docker/gluetun-qbitvpn" = {`
			`owner = "docker-service";`
			`restartUnits = [`
			`"docker-gluetun-qbit.service"`
			`];`
			`};`
			`"docker/gluetun-qbitperm" = {`
			`owner = "docker-service";`
			`restartUnits = [`
			`"docker-gluetun-qbitperm.service"`
			`];`
add startup script 2025-06-01 15:51:40 -04:00			`};`
switch deluge to openvpn 2025-06-01 15:04:11 -04:00			`};`
add deluge Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-08-16 12:15:42 -04:00			`}`