summaryrefslogtreecommitdiffstats
path: root/makefu/2configs/tinc/retiolum.nix
diff options
context:
space:
mode:
authorlassulus <lassulus@lassul.us>2022-01-28 23:50:56 +0100
committerlassulus <lassulus@lassul.us>2022-01-28 23:50:56 +0100
commit6f92ab188ea4da4a39456758dca03463a6449494 (patch)
tree692302b09fbc77f8b493f62d58f023e420691533 /makefu/2configs/tinc/retiolum.nix
parent8c81dde1f3b3ce8edcad2ca42ff973c06c13d788 (diff)
parent31a4946a916ff0bb1901f4325e5de96e7b4aa1c0 (diff)
Merge remote-tracking branch 'gum/master'
Diffstat (limited to 'makefu/2configs/tinc/retiolum.nix')
-rw-r--r--makefu/2configs/tinc/retiolum.nix10
1 files changed, 9 insertions, 1 deletions
diff --git a/makefu/2configs/tinc/retiolum.nix b/makefu/2configs/tinc/retiolum.nix
index 0d2774209..a2b24d35a 100644
--- a/makefu/2configs/tinc/retiolum.nix
+++ b/makefu/2configs/tinc/retiolum.nix
@@ -1,10 +1,18 @@
-{ pkgs, config, ... }:
+{ pkgs, lib, config, ... }:
{
imports = [
../binary-cache/lass.nix
];
krebs.tinc.retiolum.enable = true;
+ krebs.tinc.retiolum.extraConfig = ''
+ StrictSubnets = yes
+ ${lib.optionalString (config.krebs.build.host.nets.retiolum.via != null) ''
+ LocalDiscovery = no
+ ''}
+ '';
+ #krebs.tinc.retiolum.connectTo = [ "gum" ];
environment.systemPackages = [ pkgs.tinc ];
networking.firewall.allowedTCPPorts = [ config.krebs.build.host.nets.retiolum.tinc.port ];
networking.firewall.allowedUDPPorts = [ config.krebs.build.host.nets.retiolum.tinc.port ];
+
}