Compare commits
No commits in common. "20b5d96686a2c29a40b8890b1c38b64894c4f8d3" and "f1defd435aa85e77a985348c9e50afe36038df63" have entirely different histories.
20b5d96686
...
f1defd435a
5 changed files with 3 additions and 32 deletions
|
|
@ -1,30 +1,16 @@
|
||||||
{ ... }: {
|
{ ... }: {
|
||||||
system.stateVersion = "25.11";
|
system.stateVersion = "25.11";
|
||||||
systemd.tmpfiles.rules = [
|
systemd.tmpfiles.rules = [
|
||||||
"d /persist/slskd/downloads 755 slskd slskd"
|
"d /persist/slskd/Downloads 755 slskd slskd"
|
||||||
];
|
];
|
||||||
fileSystems."/var/lib/slskd" = {
|
fileSystems."/var/lib/slskd" = {
|
||||||
device = "/persist/slskd";
|
device = "/persist/slskd";
|
||||||
fsType = "none";
|
fsType = "none";
|
||||||
options = [ "bind" ];
|
options = [ "bind" ];
|
||||||
};
|
};
|
||||||
fileSystems."/var/lib/tailscale" = {
|
|
||||||
device = "/persist/tailscale";
|
|
||||||
fsType = "none";
|
|
||||||
options = [ "bind" ];
|
|
||||||
};
|
|
||||||
networking.firewall.allowedTCPPorts = [ 5030 50300 ];
|
networking.firewall.allowedTCPPorts = [ 5030 50300 ];
|
||||||
networking.firewall.allowedUDPPorts = [ 5030 50300 ];
|
networking.firewall.allowedUDPPorts = [ 5030 50300 ];
|
||||||
|
|
||||||
services.tailscale = {
|
|
||||||
enable = true;
|
|
||||||
authKeyFile = "/binds/tailscale_auth";
|
|
||||||
openFirewall = true;
|
|
||||||
interfaceName = "userspace-networking";
|
|
||||||
extraDaemonFlags = [ "--socks5-server=localhost:1055" ];
|
|
||||||
extraUpFlags = [ "--exit-node=dandelion" ];
|
|
||||||
};
|
|
||||||
|
|
||||||
services.slskd = {
|
services.slskd = {
|
||||||
enable = true;
|
enable = true;
|
||||||
domain = null;
|
domain = null;
|
||||||
|
|
|
||||||
|
|
@ -20,7 +20,7 @@
|
||||||
./configuration.nix
|
./configuration.nix
|
||||||
{
|
{
|
||||||
networking.useHostResolvConf = false;
|
networking.useHostResolvConf = false;
|
||||||
networking.nameservers = [ 8.8.8.8 ];
|
networking.nameservers = [ host ];
|
||||||
}
|
}
|
||||||
];
|
];
|
||||||
in {
|
in {
|
||||||
|
|
@ -97,11 +97,6 @@
|
||||||
mountPoint = "/binds/slskd_env";
|
mountPoint = "/binds/slskd_env";
|
||||||
isReadOnly = true;
|
isReadOnly = true;
|
||||||
};
|
};
|
||||||
bindMounts."tailscale_auth" = {
|
|
||||||
hostPath = config.age.secrets.tailscale_auth.path;
|
|
||||||
mountPoint = "/binds/tailscale_auth";
|
|
||||||
isReadOnly = true;
|
|
||||||
};
|
|
||||||
# flake = "path:" + ./.;
|
# flake = "path:" + ./.;
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
|
||||||
|
|
@ -32,6 +32,7 @@
|
||||||
inputs.c-citrine.nixosModule
|
inputs.c-citrine.nixosModule
|
||||||
inputs.c-diamond.nixosModule
|
inputs.c-diamond.nixosModule
|
||||||
inputs.c-emerald.nixosModule
|
inputs.c-emerald.nixosModule
|
||||||
|
inputs.c-fluorite.nixosModule
|
||||||
|
|
||||||
./filesystem.nix
|
./filesystem.nix
|
||||||
./kernel.nix
|
./kernel.nix
|
||||||
|
|
|
||||||
|
|
@ -4,17 +4,6 @@
|
||||||
networking.firewall.trustedInterfaces = [ "tailscale0" ];
|
networking.firewall.trustedInterfaces = [ "tailscale0" ];
|
||||||
networking.firewall.allowedUDPPorts = lib.mkIf (config.me.environment == "headless") [ 123 ];
|
networking.firewall.allowedUDPPorts = lib.mkIf (config.me.environment == "headless") [ 123 ];
|
||||||
|
|
||||||
networking.nat = {
|
|
||||||
enable = true;
|
|
||||||
internalInterfaces = [ "tailscaled0" ];
|
|
||||||
forwardPorts = [
|
|
||||||
{
|
|
||||||
sourcePort = 50300;
|
|
||||||
proto = "tcp";
|
|
||||||
destination = "100.67.2.101:50300";
|
|
||||||
}
|
|
||||||
];
|
|
||||||
};
|
|
||||||
services.tailscale = {
|
services.tailscale = {
|
||||||
enable = true;
|
enable = true;
|
||||||
authKeyFile = config.age.secrets.tailscale_auth.path;
|
authKeyFile = config.age.secrets.tailscale_auth.path;
|
||||||
|
|
|
||||||
Binary file not shown.
Loading…
Add table
Add a link
Reference in a new issue