Merge branch 'mb'

author: lassulus <lassulus@lassul.us> 2019-04-28 13:46:00 +0200
committer: lassulus <lassulus@lassul.us> 2019-04-28 13:46:00 +0200
commit: 2f8a55268c75142a19a58fe3752d197077a223b4 (patch)
tree: e2df9faec64cfbfdc2d57a653b6e928fb2ee81b4 /mb/2configs/retiolum.nix
parent: c483c69ba183772bfd2e5a2972bfd7cbc550fba3 (diff)
parent: 3dc61a8f2d525f7f6c1260ca97a918f78242cb1c (diff)
1 files changed, 33 insertions, 0 deletions
diff --git a/mb/2configs/retiolum.nix b/mb/2configs/retiolum.nix
new file mode 100644
index 000000000..5a87d52af
--- /dev/null
+++ b/mb/2configs/retiolum.nix
@@ -0,0 +1,33 @@
+{ config, pkgs, ... }:
+
+{
+
+  krebs.iptables = {
+    tables = {
+      filter.INPUT.rules = let
+        tincport = toString config.krebs.build.host.nets.retiolum.tinc.port;
+      in [
+        { predicate = "-p tcp --dport ${tincport}"; target = "ACCEPT"; }
+        { predicate = "-p udp --dport ${tincport}"; target = "ACCEPT"; }
+      ];
+    };
+  };
+
+  krebs.tinc.retiolum = {
+    enableLegacy = true;
+    enable = true;
+    connectTo = [
+      "prism"
+      "gum"
+      "ni"
+    ];
+  };
+
+  nixpkgs.config.packageOverrides = pkgs: {
+    tinc = pkgs.tinc_pre;
+  };
+
+  environment.systemPackages = [
+    pkgs.tinc
+  ];
+}
author	lassulus <lassulus@lassul.us>	2019-04-28 13:46:00 +0200
committer	lassulus <lassulus@lassul.us>	2019-04-28 13:46:00 +0200
commit	2f8a55268c75142a19a58fe3752d197077a223b4 (patch)
tree	e2df9faec64cfbfdc2d57a653b6e928fb2ee81b4 /mb/2configs/retiolum.nix
parent	c483c69ba183772bfd2e5a2972bfd7cbc550fba3 (diff)
parent	3dc61a8f2d525f7f6c1260ca97a918f78242cb1c (diff)