Klub-RZ/infrastructure
4
0
Fork 0
Code Issues 7 Pull requests Projects Releases Packages Wiki Activity

core01: add MrF key, default gateway, A for acme

Browse source
This commit is contained in:
Raito Bezarius 2022-01-25 00:37:12 +01:00
parent 067ab1d7cc
commit cb92be5d72
3 changed files with 8 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
machines/core-services-01/configuration.nix
View file

@ -74,6 +74,7 @@
users.users.root.openssh.authorizedKeys.keyFiles = [ users.users.root.openssh.authorizedKeys.keyFiles = [
./pubkeys/gdd.keys ./pubkeys/gdd.keys
./pubkeys/raito.keys ./pubkeys/raito.keys
./pubkeys/mrf.keys
]; ];
# Open ports in the firewall. # Open ports in the firewall.

6
machines/core-services-01/my.nix
View file

@ -101,6 +101,12 @@ in
}; };
config = { config = {
# Default IPv4 exit route
networking.defaultGateway = {
address = "";
interface = "ens18";
};
networking.interfaces.ens20 = { networking.interfaces.ens20 = {
ipv4.addresses = map mkAddress cfg.ipv4InternalFull; ipv4.addresses = map mkAddress cfg.ipv4InternalFull;
}; };

1
machines/core-services-01/subZone.nix
View file

@ -48,6 +48,7 @@ dualstack // {
acme = { acme = {
NS = [ "acme.${my.subZone}." ]; NS = [ "acme.${my.subZone}." ];
A = my.ipv4;
AAAA = [ my.ipv6.acme ]; AAAA = [ my.ipv6.acme ];
}; };