Merge remote-tracking branch 'gum/master'

author: tv <tv@krebsco.de> 2016-08-02 20:58:42 +0200
committer: tv <tv@krebsco.de> 2016-08-02 20:58:42 +0200
commit: e6aef09ad41cd55d716b8ee276ebd774b95d8ecb (patch)
tree: 6d8d5cce976f3843ab196367e82fec56f0798838 /makefu/2configs/tinc/siem.nix
parent: 0928cc03a6191640c66c9122159994855527faef (diff)
parent: b197949ab83ee3ee87b5774e0fc7c8d0123a6708 (diff)
1 files changed, 12 insertions, 0 deletions
diff --git a/makefu/2configs/tinc/siem.nix b/makefu/2configs/tinc/siem.nix
new file mode 100644
index 00000000..8f17f1a0
--- /dev/null
+++ b/makefu/2configs/tinc/siem.nix
@@ -0,0 +1,12 @@
+{lib, config, ... }:
+{
+  # TODO do not know why we need to force it, port is only set via default to 655
+  krebs.build.host.nets.siem.tinc.port = lib.mkForce 1655;
+  krebs.dns.providers.siem = "hosts";
+  networking.firewall.allowedUDPPorts = [ 1665 ];
+  networking.firewall.allowedTCPPorts = [ 1655 ];
+  krebs.tinc.siem = {
+    enable = true;
+    connectTo = [ "shoney" ];
+  };
+}
author	tv <tv@krebsco.de>	2016-08-02 20:58:42 +0200
committer	tv <tv@krebsco.de>	2016-08-02 20:58:42 +0200
commit	e6aef09ad41cd55d716b8ee276ebd774b95d8ecb (patch)
tree	6d8d5cce976f3843ab196367e82fec56f0798838 /makefu/2configs/tinc/siem.nix
parent	0928cc03a6191640c66c9122159994855527faef (diff)
parent	b197949ab83ee3ee87b5774e0fc7c8d0123a6708 (diff)