bonfire - bonfire

bonfire.configDir

Path to Bonfire static configuration files

Type: path

Default: "/nix/store/w75d90x7krzs7p2h8xw7ywjqlav9agb1-w7i47c89j6mpbwzzv10jh9767x4cjww6-source/config"

Declared by:

bonfire.home

Bonfire root directory

Type: path

Default: /nix/store/w7i47c89j6mpbwzzv10jh9767x4cjww6-source

Declared by:

bonfire.secrets

Secrets will be here after evaluation

Type: attribute set

Default: { }

Declared by:

bonfire.withSecrets

Enables the Bonfire secrets

Type: boolean

Default: false

Declared by:

services.papermc.enable

Whether to enable PaperMC service.

Type: boolean

Default: false

Example: true

Declared by:

services.papermc.package

The papermc package to use.

Type: package

Default: pkgs.papermc

Declared by:

services.papermc.dataDir

Directory to store Minecraft database and other state/data files.

Type: path

Default: "/var/lib/papermc"

Declared by:

services.papermc.eula

Whether you agree to Mojangs EULA. This option must be set to true to run Minecraft server.

Type: boolean

Default: false

Declared by:

services.papermc.extraPreStart

Extra shell commands for service pre-start hook.

Type: strings concatenated with “\n”

Default: ""

Declared by:

services.papermc.jvmOpts

JVM options for the Minecraft server.

Type: strings concatenated with " "

Default: "-Xmx2048M -Xms2048M"

Example: "-Xms4092M -Xmx4092M -XX:+UseG1GC -XX:+CMSIncrementalPacing -XX:+CMSClassUnloadingEnabled -XX:ParallelGCThreads=2 -XX:MinHeapFreeRatio=5 -XX:MaxHeapFreeRatio=10"

Declared by:

services.papermc.openFirewall

Whether to open ports in the firewall for the server.

Type: boolean

Default: false

Declared by:

services.papermc.ops

Whitelist with players / operators.

Type: list of (attribute set)

Default: [ ]

Declared by:

services.papermc.rconPasswordFile

Path to file with rcon password.

Type: null or string

Default: null

Example: "/var/lib/secrets/papermc/rconpw"

Declared by:

services.papermc.serverProperties

Minecraft server properties for the server.properties file. See https://minecraft.gamepedia.com/Server.properties#Java_Edition_3 for documentation on these values.

Type: attribute set of (boolean or signed integer or string)

Default:

{
  "rcon.password" = {
    _type = "if";
    condition = false;
    content = "#rconpass#";
  };
}

Example:

{
    server-port = 43000;
    difficulty = 3;
    gamemode = 1;
    max-players = 5;
    motd = "NixOS Minecraft server!";
    white-list = true;
    enable-rcon = true;
    "rcon.password" = "hunter2";
}

Declared by:

services.papermc.whitelist

This is a mapping from Minecraft usernames to UUIDs.

Type: list of (attribute set)

Default: { }

Declared by:

services.qbittorrent-nox.enable

Whether to enable Enables the qbittorrent-nox services…

Type: boolean

Default: false

Example: true

Declared by:

services.qbittorrent-nox.package

The qbittorrent package to use.

Type: package

Default: pkgs.qbittorrent-nox

Declared by:

services.qbittorrent-nox.dataDir

Directory to store qbittorrent-nox data files.

Type: path

Default: "/var/lib/qbittorrent-nox"

Example: "/var/lib/qbittorrent-nox"

Declared by:

services.qbittorrent-nox.group

Group under which qbittorrent-nox runs.

Type: string

Default: "qbittorrent-nox"

Declared by:

services.qbittorrent-nox.openFirewall

Open services.qbittorrent-nox.port.

Type: boolean

Default: false

Declared by:

services.qbittorrent-nox.port

Torrenting port.

Type: signed integer

Default: 6969

Example: 6969

Declared by:

services.qbittorrent-nox.user

User account under which qbittorrent-nox runs.

Type: string

Default: "qbittorrent-nox"

Declared by:

services.qbittorrent-nox.webuiPort

WebUI port.

Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)

Default: 8080

Example: 8080

Declared by:

services.spoofdpi.enable

Whether to enable SpoofDPI service.

Type: boolean

Default: false

Example: true

Declared by:

services.spoofdpi.package

The package to use.

Type: package

Default: bonPkgs.spoofdpi

Declared by:

services.spoofdpi.address

Listen address.

Type: string

Default: "127.0.0.1"

Example: "127.0.0.1"

Declared by:

services.spoofdpi.bypassUrls

Bypass DPI only on this urls.

Type: list of string

Default: [ ]

Declared by:

services.spoofdpi.dns

DNS address.

Type: string

Default: "8.8.8.8"

Example: "8.8.8.8"

Declared by:

services.spoofdpi.dnsPort

DNS port.

Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)

Default: 53

Example: 53

Declared by:

services.spoofdpi.doh

Whether to enable DOH.

Type: boolean

Default: false

Example: true

Declared by:

services.spoofdpi.openFirewall

Open services.spoofdpi.port.

Type: boolean

Default: false

Declared by:

services.spoofdpi.pattern

Bypass DPI only on packets matching this regex pattern.

Type: null or string

Default: null

Declared by:

services.spoofdpi.port

Port.

Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)

Default: 8080

Example: 8080

Declared by:

services.spoofdpi.timeout

Timeout in milliseconds.

Type: signed integer

Default: 2000

Example: 2000

Declared by:

services.spoofdpi.windowSize

Window size for fragmented client hello.

Type: signed integer

Default: 50

Example: 50

Declared by:

services.zapret.enable

Whether to enable DPI bypass multi platform service.

Type: boolean

Default: false

Example: true

Declared by:

services.zapret.package

The package to use.

Type: package

Default: bonPkgs.zapret

Declared by:

services.zapret.disableIPV4

Enable usage of IpV4.

Type: boolean

Default: false

Declared by:

services.zapret.disableIPV6

Enable usage of IpV6.

Type: boolean

Default: true

Declared by:

services.zapret.filterAddresses

List of addresses to filter

Type: null or string

Default: null

Declared by:

services.zapret.firewallType

Which firewall zapret should use.

Type: one of “iptables”, “nftables”

Default: "nftables"

Declared by:

services.zapret.ignoreAddresses

List of addresses to ignore

Type: null or string

Default:

''
  10.0.0.0/8
  169.254.0.0/16
  172.16.0.0/12
  192.168.0.0/16
''

Declared by:

services.zapret.mode

Which mode zapret should use.

Type: one of “tpws”, “tpws-socks”, “nfqws”, “filter”, “custom”

Default: "tpws"

Declared by:

services.zapret.settings

Rules for zapret to work. Run nix-shell -p zapret --command blockcheck to get values to pass here.

Config example can be found here https://github.com/bol-van/zapret/blob/master/config.default

Type: strings concatenated with “\n”

Default: ""

Example:

''
  TPWS_OPT="--hostspell=HOST --split-http-req=method --split-pos=3 --oob"
  NFQWS_OPT_DESYNC="--dpi-desync-ttl=5"
''

Declared by: