There are 3 options imo:

1. Dont use dhcp
2. Use static leases
3. Build a overlay network

Anything else will be finicky

then machine onboarding is still clunky since you'd have to manually assign an ip adress either:

• on the routers side using the MAC (pretty clean) and then still use DHCP with that static DHCP allocation (but not all routers support this and you'd need to log in to your router each time)
• or on the machine during the installation and enable an option in the NixOS config to make that same IP adress also it's IP after installation

Hey folks, I wrote a nix flake for https://crowci.dev/ (a woodpeckerCI fork). My flake uses podman quadlets using quadlet-nix. I'm coming across an issue when building that I'm hoping someone might be able to shed light on: when an agent (runner) container runs nix build, it seems to be able to surpass resource restrictions set in the quadlet configuration (using PodmanArgs). The result is that long builds get OOM killed. What I really want is for the container to be constrained to its resource requirements. My /etc/containers/systemd container configuration (generated by quadlet-nix) looks like this: https://gist.github.com/johnhamelink/80995130d2afc1cedee31b501cb3e689

My nix flake is here in case you are interested https://codefloe.com/crowci/crowci-flake