stockholm/mb/2configs/retiolum.nix

{ config, pkgs, ... }:

{

  krebs.iptables = {
    tables = {
      filter.INPUT.rules = let
        tincport = toString config.krebs.build.host.nets.retiolum.tinc.port;
      in [
        { predicate = "-p tcp --dport ${tincport}"; target = "ACCEPT"; }
        { predicate = "-p udp --dport ${tincport}"; target = "ACCEPT"; }
      ];
    };
  };

  krebs.tinc.retiolum = {
    enableLegacy = true;
    enable = true;
    connectTo = [
      "prism"
      "gum"
      "ni"
    ];
  };

  nixpkgs.config.packageOverrides = pkgs: {
    tinc = pkgs.tinc_pre;
  };

  environment.systemPackages = [
    pkgs.tinc
  ];
}
init mb 2019-04-19 14:14:53 +00:00			`{ config, pkgs, ... }:`

			`{`

			`krebs.iptables = {`
			`tables = {`
			`filter.INPUT.rules = let`
			`tincport = toString config.krebs.build.host.nets.retiolum.tinc.port;`
			`in [`
			`{ predicate = "-p tcp --dport ${tincport}"; target = "ACCEPT"; }`
			`{ predicate = "-p udp --dport ${tincport}"; target = "ACCEPT"; }`
			`];`
			`};`
			`};`

			`krebs.tinc.retiolum = {`
			`enableLegacy = true;`
			`enable = true;`
			`connectTo = [`
			`"prism"`
			`"gum"`
			`"ni"`
			`];`
			`};`

			`nixpkgs.config.packageOverrides = pkgs: {`
			`tinc = pkgs.tinc_pre;`
			`};`

			`environment.systemPackages = [`
			`pkgs.tinc`
			`];`
			`}`