gribse/nix-cluster
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Added D53 and Diplonat

Browse source
This commit is contained in:
Zuma 2026-01-09 16:45:28 +01:00
parent b99659f23e
commit 9ad682ae87
6 changed files with 119 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

9
configuration.nix
View file

@ -194,6 +194,7 @@ with pkgs.lib;
extraConfig = {
node_meta = {
site = clusterNodeCfg.siteName;
cname_target = clusterNodeCfg.cnameTarget;
};
server = true;
bootstrap = false;
@ -295,11 +296,19 @@ with pkgs.lib;
];
extraCommands = ''
# Allow UDP packets comming from port 1900 from a local address,
# these are necessary for UPnP/IGD
iptables -A INPUT -s 192.168.0.0/16 -p udp --sport 1900 -j ACCEPT
# Allow docker containers to access all ports
iptables -A INPUT -s 172.17.0.0/16 -j ACCEPT
# Allow other nodes on VPN to access all ports
iptables -A INPUT -s ${cfg.clusterPrefix} -j ACCEPT
'';
extraStopCommands = ''
iptables -D INPUT -s 192.168.0.0/16 -p udp --sport 1900 -j ACCEPT
iptables -D INPUT -s 172.17.0.0/16 -j ACCEPT
iptables -D INPUT -s ${cfg.clusterPrefix} -j ACCEPT
'';
};