+4 -1

nixos/doc/manual/configuration/ipv4-config.xml

··· 12 12 follows: 13 13 14 14 <programlisting> 15 15 - networking.interfaces.eth0.ip4 = [ { address = "192.168.1.2"; prefixLength = 24; } ]; 15 15 + networking.interfaces.eth0 = { ipAddress = "192.168.1.2"; prefixLength = 24; }; 16 16 </programlisting> 17 17 18 18 + (The network prefix can also be specified using the option 19 19 + <literal>subnetMask</literal>, 20 20 + e.g. <literal>"255.255.255.0"</literal>, but this is deprecated.) 18 21 Typically you’ll also want to set a default gateway and set of name 19 22 servers: 20 23

+5 -6

nixos/lib/build-vms.nix

··· 48 48 let 49 49 interfacesNumbered = zipTwoLists config.virtualisation.vlans (range 1 255); 50 50 interfaces = flip map interfacesNumbered ({ first, second }: 51 51 - nameValuePair "eth${toString second}" { ip4 = 52 52 - [ { address = "192.168.${toString first}.${toString m.second}"; 53 53 - prefixLength = 24; 54 54 - } ]; 55 55 - } 51 51 + nameValuePair "eth${toString second}" 52 52 + { ipAddress = "192.168.${toString first}.${toString m.second}"; 53 53 + subnetMask = "255.255.255.0"; 54 54 + }); 56 55 in 57 56 { key = "ip-address"; 58 57 config = ··· 61 60 networking.interfaces = listToAttrs interfaces; 62 61 63 62 networking.primaryIPAddress = 64 64 - optionalString (interfaces != []) (head (head interfaces).value.ip4).address; 63 63 + optionalString (interfaces != []) (head interfaces).value.ipAddress; 65 64 66 65 # Put the IP addresses of all VMs in this machine's 67 66 # /etc/hosts file. If a machine has multiple

+1 -1

nixos/modules/programs/virtualbox.nix

··· 44 44 ''; 45 45 }; 46 46 47 47 - networking.interfaces.vboxnet0.ip4 = [ { address = "192.168.56.1"; prefixLength = 24; } ]; 47 47 + networking.interfaces.vboxnet0 = { ipAddress = "192.168.56.1"; prefixLength = 24; }; 48 48 }

+1 -1

nixos/modules/services/networking/dhcpcd.nix

··· 11 11 # Don't start dhcpcd on explicitly configured interfaces or on 12 12 # interfaces that are part of a bridge, bond or sit device. 13 13 ignoredInterfaces = 14 14 - map (i: i.name) (filter (i: i.ip4 != [ ] || i.ipAddress != null) (attrValues config.networking.interfaces)) 14 14 + map (i: i.name) (filter (i: i.ipAddress != null) (attrValues config.networking.interfaces)) 15 15 ++ mapAttrsToList (i: _: i) config.networking.sits 16 16 ++ concatLists (attrValues (mapAttrs (n: v: v.interfaces) config.networking.bridges)) 17 17 ++ concatLists (attrValues (mapAttrs (n: v: v.interfaces) config.networking.bonds))

+42 -105

nixos/modules/tasks/network-interfaces.nix

··· 10 10 hasSits = cfg.sits != { }; 11 11 hasBonds = cfg.bonds != { }; 12 12 13 13 - addrOpts = v: 14 14 - assert v == 4 || v == 6; 15 15 - { 16 16 - address = mkOption { 17 17 - type = types.str; 18 18 - description = '' 19 19 - IPv${toString v} address of the interface. Leave empty to configure the 20 20 - interface using DHCP. 21 21 - ''; 22 22 - }; 23 23 - 24 24 - prefixLength = mkOption { 25 25 - type = types.addCheck types.int (n: n >= 0 && n <= (if v == 4 then 32 else 128)); 26 26 - description = '' 27 27 - Subnet mask of the interface, specified as the number of 28 28 - bits in the prefix (<literal>${if v == 4 then "24" else "64"}</literal>). 29 29 - ''; 30 30 - }; 31 31 - }; 32 32 - 33 13 interfaceOpts = { name, ... }: { 34 14 35 15 options = { ··· 40 20 description = "Name of the interface."; 41 21 }; 42 22 43 43 - ip4 = mkOption { 44 44 - default = [ ]; 45 45 - example = [ 46 46 - { address = "10.0.0.1"; prefixLength = 16; } 47 47 - { address = "192.168.1.1"; prefixLength = 24; } 48 48 - ]; 49 49 - type = types.listOf types.optionSet; 50 50 - options = addrOpts 4; 51 51 - description = '' 52 52 - List of IPv4 addresses that will be statically assigned to the interface. 53 53 - ''; 54 54 - }; 55 55 - 56 56 - ip6 = mkOption { 57 57 - default = [ ]; 58 58 - example = [ 59 59 - { address = "fdfd:b3f0:482::1"; prefixLength = 48; } 60 60 - { address = "2001:1470:fffd:2098::e006"; prefixLength = 64; } 61 61 - ]; 62 62 - type = types.listOf types.optionSet; 63 63 - options = addrOpts 6; 64 64 - description = '' 65 65 - List of IPv6 addresses that will be statically assigned to the interface. 66 66 - ''; 67 67 - }; 68 68 - 69 23 ipAddress = mkOption { 70 24 default = null; 71 25 example = "10.0.0.1"; 72 72 - type = types.nullOr types.str; 26 26 + type = types.nullOr (types.str); 73 27 description = '' 74 28 IP address of the interface. Leave empty to configure the 75 29 interface using DHCP. ··· 87 41 }; 88 42 89 43 subnetMask = mkOption { 90 90 - default = null; 44 44 + default = ""; 45 45 + example = "255.255.255.0"; 46 46 + type = types.str; 91 47 description = '' 92 92 - Defunct, supply the prefix length instead. 48 48 + Subnet mask of the interface, specified as a bitmask. 49 49 + This is deprecated; use <option>prefixLength</option> 50 50 + instead. 93 51 ''; 94 52 }; 95 53 96 54 ipv6Address = mkOption { 97 55 default = null; 98 56 example = "2001:1470:fffd:2098::e006"; 99 99 - type = types.nullOr types.str; 57 57 + type = types.nullOr types.string; 100 58 description = '' 101 59 IPv6 address of the interface. Leave empty to configure the 102 60 interface using NDP. ··· 266 224 networking.interfaces = mkOption { 267 225 default = {}; 268 226 example = 269 269 - { eth0.ip4 = [ { 270 270 - address = "131.211.84.78"; 271 271 - prefixLength = 25; 272 272 - } ]; 227 227 + { eth0 = { 228 228 + ipAddress = "131.211.84.78"; 229 229 + subnetMask = "255.255.255.128"; 230 230 + }; 273 231 }; 274 232 description = '' 275 233 The configuration for each network interface. If ··· 480 438 481 439 config = { 482 440 483 483 - assertions = 484 484 - flip map interfaces (i: { 485 485 - assertion = i.subnetMask == null; 486 486 - message = "The networking.interfaces.${i.name}.subnetMask option is defunct. Use prefixLength instead."; 487 487 - }); 488 488 - 489 441 boot.kernelModules = [ ] 490 442 ++ optional cfg.enableIPv6 "ipv6" 491 443 ++ optional hasVirtuals "tun" ··· 582 534 # network device, so it only gets started after the interface 583 535 # has appeared, and it's stopped when the interface 584 536 # disappears. 585 585 - configureInterface = i: 586 586 - let 587 587 - ips = i.ip4 ++ optionals cfg.enableIPv6 i.ip6 588 588 - ++ optional (i.ipAddress != null) { 589 589 - ipAddress = i.ipAddress; 590 590 - prefixLength = i.prefixLength; 591 591 - } ++ optional (cfg.enableIPv6 && i.ipv6Address != null) { 592 592 - ipAddress = i.ipv6Address; 593 593 - prefixLength = i.ipv6PrefixLength; 594 594 - }; 537 537 + configureInterface = i: nameValuePair "${i.name}-cfg" 538 538 + (let mask = 539 539 + if i.prefixLength != null then toString i.prefixLength else 540 540 + if i.subnetMask != "" then i.subnetMask else "32"; 541 541 + staticIPv6 = cfg.enableIPv6 && i.ipv6Address != null; 595 542 in 596 596 - nameValuePair "${i.name}-cfg" 597 543 { description = "Configuration of ${i.name}"; 598 544 wantedBy = [ "network-interfaces.target" ]; 599 545 bindsTo = [ "sys-subsystem-net-devices-${i.name}.device" ]; ··· 616 562 echo "setting MTU to ${toString i.mtu}..." 617 563 ip link set "${i.name}" mtu "${toString i.mtu}" 618 564 '' 619 619 - 620 620 - # Ip Setup 621 621 - + 565 565 + + optionalString (i.ipAddress != null) 622 566 '' 623 623 - curIps=$(ip -o a show dev "${i.name}" | awk '{print $4}') 624 624 - # Only do an add if it's necessary. This is 567 567 + cur=$(ip -4 -o a show dev "${i.name}" | awk '{print $4}') 568 568 + # Only do a flush/add if it's necessary. This is 625 569 # useful when the Nix store is accessed via this 626 570 # interface (e.g. in a QEMU VM test). 571 571 + if [ "$cur" != "${i.ipAddress}/${mask}" ]; then 572 572 + echo "configuring interface..." 573 573 + ip -4 addr flush dev "${i.name}" 574 574 + ip -4 addr add "${i.ipAddress}/${mask}" dev "${i.name}" 575 575 + restart_network_setup=true 576 576 + else 577 577 + echo "skipping configuring interface" 578 578 + fi 627 579 '' 628 628 - + flip concatMapStrings (ips) (ip: 629 629 - let 630 630 - address = "${ip.address}/${toString ip.prefixLength}"; 631 631 - in 580 580 + + optionalString (staticIPv6) 632 581 '' 633 633 - echo "checking ip ${address}..." 634 634 - if ! echo "$curIps" | grep "${address}" >/dev/null 2>&1; then 635 635 - if out=$(ip addr add "${address}" dev "${i.name}" 2>&1); then 636 636 - echo "added ip ${address}..." 637 637 - restart_network_setup=true 638 638 - elif ! echo "$out" | grep "File exists" >/dev/null 2>&1; then 639 639 - echo "failed to add ${address}" 640 640 - exit 1 641 641 - fi 582 582 + # Only do a flush/add if it's necessary. This is 583 583 + # useful when the Nix store is accessed via this 584 584 + # interface (e.g. in a QEMU VM test). 585 585 + if ! ip -6 -o a show dev "${i.name}" | grep "${i.ipv6Address}/${toString i.ipv6prefixLength}"; then 586 586 + echo "configuring interface..." 587 587 + ip -6 addr flush dev "${i.name}" 588 588 + ip -6 addr add "${i.ipv6Address}/${toString i.ipv6prefixLength}" dev "${i.name}" 589 589 + restart_network_setup=true 590 590 + else 591 591 + echo "skipping configuring interface" 642 592 fi 643 643 - '') 644 644 - + optionalString (ips != [ ]) 593 593 + '' 594 594 + + optionalString (i.ipAddress != null || staticIPv6) 645 595 '' 646 596 if [ restart_network_setup = true ]; then 647 597 # Ensure that the default gateway remains set. ··· 658 608 '' 659 609 echo 1 > /proc/sys/net/ipv6/conf/${i.name}/proxy_ndp 660 610 ''; 661 661 - preStop = 662 662 - '' 663 663 - echo "releasing configured ip's..." 664 664 - '' 665 665 - + flip concatMapStrings (ips) (ip: 666 666 - let 667 667 - address = "${ip.address}/${toString ip.prefixLength}"; 668 668 - in 669 669 - '' 670 670 - echo -n "Deleting ${address}..." 671 671 - ip addr del "${address}" dev "${i.name}" >/dev/null 2>&1 || echo -n " Failed" 672 672 - echo "" 673 673 - ''); 674 674 - }; 611 611 + }); 675 612 676 613 createTunDevice = i: nameValuePair "${i.name}" 677 614 { description = "Virtual Network Interface ${i.name}";

+3 -3

nixos/tests/bittorrent.nix

··· 16 16 miniupnpdConf = nodes: pkgs.writeText "miniupnpd.conf" 17 17 '' 18 18 ext_ifname=eth1 19 19 - listening_ip=${(head nodes.router.config.networking.interfaces.eth2.ip4).address}/24 19 19 + listening_ip=${nodes.router.config.networking.interfaces.eth2.ipAddress}/24 20 20 allow 1024-65535 192.168.2.0/24 1024-65535 21 21 ''; 22 22 ··· 53 53 { environment.systemPackages = [ pkgs.transmission ]; 54 54 virtualisation.vlans = [ 2 ]; 55 55 networking.defaultGateway = 56 56 - (head nodes.router.config.networking.interfaces.eth2.ip4).address; 56 56 + nodes.router.config.networking.interfaces.eth2.ipAddress; 57 57 networking.firewall.enable = false; 58 58 }; 59 59 ··· 81 81 # Create the torrent. 82 82 $tracker->succeed("mkdir /tmp/data"); 83 83 $tracker->succeed("cp ${file} /tmp/data/test.tar.bz2"); 84 84 - $tracker->succeed("transmission-create /tmp/data/test.tar.bz2 -t http://${(head nodes.tracker.config.networking.interfaces.eth1.ip4).address}:6969/announce -o /tmp/test.torrent"); 84 84 + $tracker->succeed("transmission-create /tmp/data/test.tar.bz2 -t http://${nodes.tracker.config.networking.interfaces.eth1.ipAddress}:6969/announce -o /tmp/test.torrent"); 85 85 $tracker->succeed("chmod 644 /tmp/test.torrent"); 86 86 87 87 # Start the tracker. !!! use a less crappy tracker

+1 -1

nixos/tests/nat.nix

··· 13 13 { virtualisation.vlans = [ 1 ]; 14 14 networking.firewall.allowPing = true; 15 15 networking.defaultGateway = 16 16 - (head nodes.router.config.networking.interfaces.eth2.ip4).address; 16 16 + nodes.router.config.networking.interfaces.eth2.ipAddress; 17 17 }; 18 18 19 19 router =