TheWanderingCrow/CrOS
1
0
Fork 0
mirror of https://github.com/TheWanderingCrow/CrOS.git synced 2026-01-10 01:24:05 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

we dont use nebula anymore

Browse source
This commit is contained in:
TheWanderingCrow 2025-12-17 09:24:45 -05:00
parent 4d7ff58c0d
commit bdc3dde680
1 changed files with 0 additions and 40 deletions
Download patch file Download diff file Expand all files Collapse all files

40
hosts/common/core/nebula.nix
View file

@ -1,40 +0,0 @@
{
config,
lib,
inputs,
...
}: let
s = inputs.nix-secrets.network.mesh;
in {
warnings =
if !builtins.hasAttr "${config.hostSpec.hostName}" s.hosts
then [''Hey you don't have a nebula config for this host, you should fix this ASAP so you can be connected to the mesh. If you don't know how to do this then contact your admin'']
else [];
sops.secrets."keys/nebula" = lib.mkIf (builtins.hasAttr "${config.hostSpec.hostName}" s.hosts) {
owner = "nebula-wce";
inherit (config.users.users.${config.hostSpec.username}) group;
};
services.nebula.networks.wce = lib.mkIf (builtins.hasAttr "${config.hostSpec.hostName}" s.hosts) {
inherit (s) ca lighthouses staticHostMap;
inherit (s.hosts.${config.hostSpec.hostName}) cert isLighthouse;
key = config.sops.secrets."keys/nebula".path;
enable = true;
firewall = lib.mkIf (!config.services.nebula.networks.wce.isLighthouse) {
inbound = [
{
host = "any";
port = "any";
proto = "any";
}
];
outbound = [
{
host = "any";
port = "any";
proto = "any";
}
];
};
};
}