Mic92/stockholm
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

ma tinc/retiolum: disable LocalDiscovery for supernodes

Browse Source
This commit is contained in:
makefu 2022-01-27 20:51:53 +01:00
parent 377ee283e3
commit bdbb5cea1e
No known key found for this signature in database
GPG Key ID: 36F7711F3FC0F225
1 changed files with 9 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
makefu/2configs/tinc/retiolum.nix
View File

@ -1,10 +1,18 @@
{ pkgs, config, ... }:
{ pkgs, lib, config, ... }:
{
imports = [
../binary-cache/lass.nix
];
krebs.tinc.retiolum.enable = true;
krebs.tinc.retiolum.extraConfig = ''
StrictSubnets = yes
${lib.optionalString (config.krebs.build.host.nets.retiolum.via != null) ''
LocalDiscovery = no
''}
'';
#krebs.tinc.retiolum.connectTo = [ "gum" ];
environment.systemPackages = [ pkgs.tinc ];
networking.firewall.allowedTCPPorts = [ config.krebs.build.host.nets.retiolum.tinc.port ];
networking.firewall.allowedUDPPorts = [ config.krebs.build.host.nets.retiolum.tinc.port ];
}