From a8572caa7fbfb497f948b968c4c4201ad6b2a817 Mon Sep 17 00:00:00 2001 From: ahuston-0 Date: Tue, 23 Dec 2025 22:39:48 -0500 Subject: [PATCH 1/2] apply host gateway --- systems/palatine-hill/docker/arr.nix | 23 +++++++++++++++++++---- 1 file changed, 19 insertions(+), 4 deletions(-) diff --git a/systems/palatine-hill/docker/arr.nix b/systems/palatine-hill/docker/arr.nix index dee074c..ab31ab8 100644 --- a/systems/palatine-hill/docker/arr.nix +++ b/systems/palatine-hill/docker/arr.nix @@ -88,7 +88,11 @@ in environmentFiles = [ config.sops.secrets."docker/prowlarr".path ]; - extraOptions = [ "--network=arrnet" ]; + extraOptions = [ + "--network=arrnet" + + "--add-host=host.docker.internal:host-gateway" + ]; volumes = [ "${vars.primary_docker}/prowlarr:/config" ]; autoStart = true; }; @@ -110,7 +114,10 @@ in "${vars.primary_docker}/radarr:/config" "${vars.primary_plex_storage}/data:/data" ]; - extraOptions = [ "--network=arrnet" ]; + extraOptions = [ + "--network=arrnet" + "--add-host=host.docker.internal:host-gateway" + ]; autoStart = true; }; sonarr = { @@ -131,7 +138,10 @@ in "${vars.primary_docker}/sonarr:/config" "${vars.primary_plex_storage}/data:/data" ]; - extraOptions = [ "--network=arrnet" ]; + extraOptions = [ + "--network=arrnet" + "--add-host=host.docker.internal:host-gateway" + ]; autoStart = true; }; lidarr = { @@ -152,7 +162,11 @@ in "${vars.primary_docker}/lidarr:/config" "${vars.primary_plex_storage}/data:/data" ]; - extraOptions = [ "--network=arrnet" ]; + extraOptions = [ + "--network=arrnet" + "--add-host=host.docker.internal:host-gateway" + + ]; autoStart = true; }; unpackerr = { @@ -209,6 +223,7 @@ in extraOptions = [ "--network=arrnet" "--network=haproxy-net" + "--add-host=host.docker.internal:host-gateway" # "--health-cmd \"wget --no-verbose --tries 1 --spider http://localhost:5055/api/v1/status || exit 1\"" # "--health-start-period 20s" # "--health-timeout 3s" From 424003027efa11ce2aaee21eaf80fff5f80d482f Mon Sep 17 00:00:00 2001 From: ahuston-0 Date: Tue, 23 Dec 2025 22:57:07 -0500 Subject: [PATCH 2/2] get rid of default creds --- systems/palatine-hill/docker/arr.nix | 6 ------ systems/palatine-hill/firewall.nix | 3 +++ 2 files changed, 3 insertions(+), 6 deletions(-) diff --git a/systems/palatine-hill/docker/arr.nix b/systems/palatine-hill/docker/arr.nix index ab31ab8..2afe63f 100644 --- a/systems/palatine-hill/docker/arr.nix +++ b/systems/palatine-hill/docker/arr.nix @@ -12,8 +12,6 @@ let in { "${ctype}__POSTGRES__HOST" = "host.docker.internal"; - "${ctype}__POSTGRES__USER" = "SOPS_ONLY"; - "${ctype}__POSTGRES__PASSWORD" = "SOPS_ONLY"; "${ctype}__POSTGRES__PORT" = toString config.services.postgresql.settings.port; }; in @@ -57,8 +55,6 @@ in PGID = "100"; TZ = "America/New_York"; POSTGRES_HOST = "host.docker.internal"; - POSTGRES_USER = "SOPS_ONLY"; - POSTGRES_PASSWORD = "SOPS_ONLY"; POSTGRES_PORT = toString config.services.postgresql.settings.port; }; environmentFiles = [ @@ -212,8 +208,6 @@ in DB_TYPE = "postgres"; DB_HOST = "host.docker.internal"; DB_PORT = toString config.services.postgresql.settings.port; - DB_USER = "SOPS_ONLY"; - DB_PASS = "SOPS_ONLY"; }; environmentFiles = [ config.sops.secrets."docker/jellyseerr".path diff --git a/systems/palatine-hill/firewall.nix b/systems/palatine-hill/firewall.nix index 33ffd45..366673f 100644 --- a/systems/palatine-hill/firewall.nix +++ b/systems/palatine-hill/firewall.nix @@ -33,6 +33,9 @@ 8686 8787 5055 + + # temp postgres + 5432 ]; }