mdebray/tvl-depot
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(ops/nixos/camden): Join camden.tazj.in into Tailscale mesh

Browse source
This commit is contained in:
Vincent Ambo 2020-02-11 16:27:34 +00:00
parent aaa0119a37
commit 44b57d095b
1 changed files with 21 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

24
ops/nixos/camden/default.nix
View file

@ -7,6 +7,8 @@ config: let
config.allowUnfree = true; config.allowUnfree = true;
}; };
in pkgs.lib.fix(self: { in pkgs.lib.fix(self: {
imports = [ ../modules/tailscale.nix ];
# camden is intended to boot unattended, despite having an encrypted # camden is intended to boot unattended, despite having an encrypted
# root partition. # root partition.
# #
@ -72,9 +74,17 @@ in pkgs.lib.fix(self: {
# System-wide application setup # System-wide application setup
programs.fish.enable = true; programs.fish.enable = true;
environment.systemPackages = with nixpkgs; [ environment.systemPackages =
curl emacs26-nox git gnupg pass pciutils # programs from the depot
]; (with pkgs; [
third_party.git
third_party.tailscale
]) ++
# programs from nixpkgs
(with nixpkgs; [
curl emacs26-nox gnupg pass pciutils direnv
]);
# Services setup # Services setup
services.openssh.enable = true; services.openssh.enable = true;
@ -86,5 +96,13 @@ in pkgs.lib.fix(self: {
shell = nixpkgs.fish; shell = nixpkgs.fish;
}; };
# Join Tailscale into home network
services.tailscale = {
enable = true;
relayConf = "/etc/tailscale.conf";
aclFile = null; # allow all traffic for testing
package = pkgs.third_party.tailscale;
};
system.stateVersion = "19.09"; system.stateVersion = "19.09";
}) })