{ ... }:
{
  flake.modules.nixos.podman = 
  { ... }:
  {
    virtualisation.podman = {
      enable = true;
      autoPrune.enable = true;
      dockerCompat = true;
      networkSocket.openFirewall = true;
    };

    networking.firewall = {
    	allowedUDPPorts = [ 53 ];
    	checkReversePath = "loose";
    };

    virtualisation.oci-containers.backend = "podman";
  };
}