Systemd Services

Systemd service configuration across NixOS hosts ensures automatic scaling, restarts, and dependency management.

Monitored & Orchestrated Services

Fail2ban (services.monitoring.fail2ban): Brute-force protection on SSH and other exposed ports.
Prometheus (services.monitoring.prometheus): Metrics collection and system monitoring.
EarlyOOM (services.system.earlyoom): Out-of-memory daemon to maintain system responsiveness under load.
Nginx (services.web.nginx): Web server and reverse proxy, configured for SSL and routing internal services. See Web Services & Databases for detailed configuration.
PostgreSQL (services.dev.postgresql): Database backend for multiple services. See Web Services & Databases for maintenance and upgrade guides.
Jellyfin (services.media.jellyfin): Media streaming configuration for client/server roles.
UDisks2 (services.system.udisks2): Disk management service.
Btrbk (services.system.btrbk): Automated Btrfs snapshotting and backup.

All of these are declared modularly under modules/services/ and integrated via systemd.services.<name> using standard Nix expressions.