stockholm/lass/2configs/iodined.nix

{ pkgs, config, ... }:

let
  # TODO: make this a parameter
  domain = "io.lassul.us";
  pw = import <secrets/iodinepw.nix>;
in {

  services.iodined = {
    enable = true;
    domain = domain;
    ip = "172.16.10.1/24";
    extraConfig = "-P ${pw} -l ${config.krebs.build.host.nets.internet.ip4.addr}";
  };

  krebs.iptables.tables.filter.INPUT.rules = [
    { predicate = "-p udp --dport 54"; target = "ACCEPT";}
  ];

}
l 2: add iodined.nix & import in prism 2016-09-12 22:04:48 +00:00			`{ pkgs, config, ... }:`

			`let`
			`# TODO: make this a parameter`
			`domain = "io.lassul.us";`
			`pw = import <secrets/iodinepw.nix>;`
			`in {`

			`services.iodined = {`
			`enable = true;`
			`domain = domain;`
			`ip = "172.16.10.1/24";`
			`extraConfig = "-P ${pw} -l ${config.krebs.build.host.nets.internet.ip4.addr}";`
			`};`

			`krebs.iptables.tables.filter.INPUT.rules = [`
			`{ predicate = "-p udp --dport 54"; target = "ACCEPT";}`
			`];`

			`}`