add netbird to mesh

2026-02-24 21:22:33 -05:00 · 2026-02-13 15:45:37 -05:00 · 2026-02-13 15:45:37 -05:00 · 284c730809
commit 284c730809
parent 57bc326e76
4 changed files with 60 additions and 35 deletions
--- a/modules/services/mesh/client.nix
+++ b/modules/services/mesh/client.nix
@ -3,15 +3,39 @@
  inputs,
  pkgs,
  ...
-}: let
+}:
+let
  sopsFolder = builtins.toString inputs.nix-secrets + "/sops";
-in {
-  sops.secrets."tailscale-key" = {
-    sopsFile = "${sopsFolder}/shared.yaml";
+in
+{
+  sops.secrets = {
+    "tailscale-key" = {
+      sopsFile = "${sopsFolder}/shared.yaml";
+    };
+    "netbird-key" = {
+      sopsFile = "${sopsFolder}/shared.yaml";
+      owner = "netbird-blackbridge";
+      group = "netbird-blackbridge";
+    };
  };
+
  services.tailscale = {
    enable = true;
    package = pkgs.unstable.tailscale;
    authKeyFile = config.sops.secrets."tailscale-key".path;
  };
+
+  services.netbird = {
+    package = pkgs.unstable.netbird;
+
+    clients.blackbridge = {
+      login = {
+        enable = true;
+        setupKeyFile = config.sops.secrets."netbird-key".path;
+      };
+      port = 51820;
+      openFirewall = true;
+      openInternalFirewall = true;
+    };
+  };
 }