diff options
author | tv <tv@krebsco.de> | 2024-01-06 12:38:08 +0100 |
---|---|---|
committer | tv <tv@krebsco.de> | 2024-01-06 12:38:08 +0100 |
commit | 1e1e751fa4ed5380b2458263ed24b01a08847291 (patch) | |
tree | 7ba8a0125fe1824c70a5df6a78fdb713818ebc4b /krebs/2configs/default.nix | |
parent | 191ee037480e0837091c0dbc7bf8ec42dd7f93b4 (diff) | |
parent | 04f538164ce11ce977a851b6de2a9d2c5f7a9adb (diff) |
Merge remote-tracking branch 'orange/master'
Diffstat (limited to 'krebs/2configs/default.nix')
-rw-r--r-- | krebs/2configs/default.nix | 13 |
1 files changed, 12 insertions, 1 deletions
diff --git a/krebs/2configs/default.nix b/krebs/2configs/default.nix index 905eaaef..5d64555c 100644 --- a/krebs/2configs/default.nix +++ b/krebs/2configs/default.nix @@ -8,7 +8,17 @@ with import ../../lib/pure.nix { inherit lib; }; ]; krebs.announce-activation.enable = true; krebs.enable = true; - krebs.tinc.retiolum.enable = mkDefault true; + + # retiolum + krebs.tinc.retiolum = { + enable = mkDefault true; + extraConfig = '' + AutoConnect = yes + LocalDiscovery = yes + ''; + }; + networking.firewall.allowedTCPPorts = [ 655 ]; + networking.firewall.allowedUDPPorts = [ 655 ]; # trust krebs ACME CA krebs.ssl.trustIntermediate = true; @@ -52,6 +62,7 @@ with import ../../lib/pure.nix { inherit lib; }; config.krebs.users.makefu.pubkey config.krebs.users.tv.pubkey config.krebs.users.kmein.pubkey + config.krebs.users.mic92.pubkey ]; # The NixOS release to be compatible with for stateful data such as databases. |