jordan/dotfiles
Archived
1
0
Fork 0
Code Issues 4 Pull Requests Wiki Activity

Move tailscale to module

Browse Source
This commit is contained in:
Jordan Holt
2023-05-08 21:08:12 +01:00
parent 8448a7aee8
commit 6564ecc3ca
3 changed files with 23 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
hosts/desktop.nix
View File

@ -44,4 +44,5 @@ with lib.my;
]; ];
modules.desktop.gnome.enable = true; modules.desktop.gnome.enable = true;
modules.networking.tailscale.enable = true;
} }

1
modules/default.nix
View File

@ -20,6 +20,7 @@
./dev/zig.nix ./dev/zig.nix
./editors/neovim ./editors/neovim
./editors/vscode.nix ./editors/vscode.nix
./networking/tailscale.nix
./security/gpg.nix ./security/gpg.nix
./security/pass.nix ./security/pass.nix
./shell/git ./shell/git

20
modules/networking/tailscale.nix Normal file
View File

@ -0,0 +1,20 @@
{ config, lib, pkgs, ... }:
with lib;
with lib.my;
let cfg = config.modules.networking.tailscale;
in {
options.modules.networking.tailscale = {
enable = mkBoolOpt false;
};
config = mkIf cfg.enable {
services.tailscale.enable = true;
services.openssh.openFirewall = false;
networking.firewall = {
checkReversePath = "loose";
trustedInterfaces = [ "tailscale0" ];
allowedUDPPorts = [ config.services.tailscale.port ];
};
};
}