diff options
author | lassulus <lassulus@lassul.us> | 2022-01-28 23:50:56 +0100 |
---|---|---|
committer | lassulus <lassulus@lassul.us> | 2022-01-28 23:50:56 +0100 |
commit | 6f92ab188ea4da4a39456758dca03463a6449494 (patch) | |
tree | 692302b09fbc77f8b493f62d58f023e420691533 /makefu/2configs/tinc/retiolum.nix | |
parent | 8c81dde1f3b3ce8edcad2ca42ff973c06c13d788 (diff) | |
parent | 31a4946a916ff0bb1901f4325e5de96e7b4aa1c0 (diff) |
Merge remote-tracking branch 'gum/master'
Diffstat (limited to 'makefu/2configs/tinc/retiolum.nix')
-rw-r--r-- | makefu/2configs/tinc/retiolum.nix | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/makefu/2configs/tinc/retiolum.nix b/makefu/2configs/tinc/retiolum.nix index 0d2774209..a2b24d35a 100644 --- a/makefu/2configs/tinc/retiolum.nix +++ b/makefu/2configs/tinc/retiolum.nix @@ -1,10 +1,18 @@ -{ pkgs, config, ... }: +{ pkgs, lib, config, ... }: { imports = [ ../binary-cache/lass.nix ]; krebs.tinc.retiolum.enable = true; + krebs.tinc.retiolum.extraConfig = '' + StrictSubnets = yes + ${lib.optionalString (config.krebs.build.host.nets.retiolum.via != null) '' + LocalDiscovery = no + ''} + ''; + #krebs.tinc.retiolum.connectTo = [ "gum" ]; environment.systemPackages = [ pkgs.tinc ]; networking.firewall.allowedTCPPorts = [ config.krebs.build.host.nets.retiolum.tinc.port ]; networking.firewall.allowedUDPPorts = [ config.krebs.build.host.nets.retiolum.tinc.port ]; + } |