TheWanderingCrow/CrOS
1
0
Fork 0
mirror of https://github.com/TheWanderingCrow/CrOS.git synced 2026-01-11 09:44:08 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

nebula

Browse source
This commit is contained in:
TheWanderingCrow 2025-08-07 11:34:11 -04:00
parent 700f5de2d0
commit 71518094fe
1 changed files with 11 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

12
hosts/common/core/nebula.nix
View file

@ -14,8 +14,18 @@ in {
sops.secrets."keys/nebula" = lib.mkIf (builtins.hasAttr "${config.hostSpec.hostName}" s.hosts) {}; sops.secrets."keys/nebula" = lib.mkIf (builtins.hasAttr "${config.hostSpec.hostName}" s.hosts) {};
services.nebula.networks.wce = lib.mkIf (builtins.hasAttr "${config.hostSpec.hostName}" s.hosts) { services.nebula.networks.wce = lib.mkIf (builtins.hasAttr "${config.hostSpec.hostName}" s.hosts) {
inherit (s) ca lighthouses staticHostMap; inherit (s) ca lighthouses staticHostMap;
inherit (s.hosts.${config.hostSpec.hostName}) cert isLighthouse firewall; inherit (s.hosts.${config.hostSpec.hostName}) cert isLighthouse;
key = config.sops.secrets."keys/nebula".path; key = config.sops.secrets."keys/nebula".path;
enable = true; enable = true;
firewall.outbound = {
host = lib.mkDefault "any";
port = lib.mkDefault "any";
proto = lib.mkDefault "any";
};
firewall.inbound = {
host = lib.mkDefault "any";
port = lib.mkDefault "any";
proto = lib.mkDefault "any";
};
}; };
} }