- Create a new privileged container with nesting enabled.
- In proxmox edit file
/etc/pve/lxc/<lxc-id>.confand add following lines for Tailscale :
lxc.cgroup2.devices.allow: c 10:200 rwm
lxc.mount.entry: /dev/net/tun dev/net/tun none bind,create=file
- Optionally, add following lines for GPU passthrough :
lxc.mount.entry: /dev/dri dev/dri none bind,optional,create=dir
lxc.mount.entry: /dev/dri/renderD128 dev/renderD128 none bind,optional,create=file
mkdir -p ~/.config/nix
echo "experimental-features = nix-command flakes" > ~/.config/nix/nix.conf
nix-channel --update
nix-env -f '<nixpkgs>' -iA git
nix-env -f '<nixpkgs>' -iA git-crypt
cd /etc
mv nixos nixos.bak
git clone https://github.com/Zareix/nixos
cd nixos
read -r -p "Enter secret-key in base64: " secret_key
echo "$secret_key" | base64 -d >./.secret-key
git-crypt unlock ./.secret-key
git config --global --add safe.directory /etc/nixosVerify config, copy old hardware-configuration.nix from nixos.bak if exists, then run
nixos-rebuild switch --flake .On the first machine :
cd /etc/nixos
git pull
nix flake update
nh os switch . --ask
git add .
git commit -m "chore: update"
git pushOn other machines :
cd /etc/nixos
git pull
nh os switch .