infrastructure/hosts/olympus/bastion/containers/default.nix

{ config, lib, inputs, ... }:
let
  hostAddress = "10.42.99.1";
  hostAddress6 = "fc00::1";
in {
  # TODO: Loop over subdirs, create nixos container for each
  networking.nat = {
    enable = true;
    internalInterfaces = [ "ve-+" ];
    externalInterface = "ens18";
    # Lazy IPv6 connectivity for the container
    enableIPv6 = true;

    forwardPorts = [

    ];
  };

  # Containers network is
  # * 10.42.99.0/24
  # * fc00:x

  containers = {
    dns = {
      autoStart = true;
      inherit hostAddress hostAddress6;
      localAddress = "10.42.99.1";
      localAddress6 = "fc00::2";

      specialArgs = { inherit inputs; };

      config = {pkgs, ...}: {
        imports = [
          ./common.nix
          inputs.home-manager.nixosModules.home-manager
          inputs.gnome-autounlock-keyring.nixosModules.default
          inputs.catppuccin.nixosModules.catppuccin
        ];

        services.v.dns = {
          enable = true;
          openFirewall = true;
          mode = "server";
        };
      };
    };
  };
}