From dcbba6fe695aabb21c275a2565afceacfe9bbb99 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Motiejus=20Jak=C5=A1tys?= Date: Thu, 15 Jan 2026 20:44:19 +0200 Subject: [PATCH] headscale: rm acls --- modules/services/headscale/acl-policy.json | 37 ---------------------- modules/services/headscale/default.nix | 2 +- 2 files changed, 1 insertion(+), 38 deletions(-) delete mode 100644 modules/services/headscale/acl-policy.json diff --git a/modules/services/headscale/acl-policy.json b/modules/services/headscale/acl-policy.json deleted file mode 100644 index 138ee41..0000000 --- a/modules/services/headscale/acl-policy.json +++ /dev/null @@ -1,37 +0,0 @@ -{ - "groups": { - "group:admin": ["motiejus@", "servers@"] - }, - - "tagOwners": { - "tag:public-server": ["servers@"] - }, - - "acls": [ - { - "action": "accept", - "src": ["group:admin"], - "dst": ["*:*"] - }, - - { - "action": "accept", - "src": ["*"], - "dst": ["tag:public-server:*"] - }, - - { - "action": "accept", - "src": ["*"], - "proto": "tcp", - "dst": ["*:22"] - }, - - { - "action": "accept", - "src": ["*"], - "proto": "icmp", - "dst": ["*:*"] - } - ] -} diff --git a/modules/services/headscale/default.nix b/modules/services/headscale/default.nix index de2e741..e407e58 100644 --- a/modules/services/headscale/default.nix +++ b/modules/services/headscale/default.nix @@ -29,7 +29,7 @@ prefixes.v4 = config.mj.services.headscale.subnetCIDR; #log.level = "debug"; log.level = "info"; - policy.path = ./acl-policy.json; + #policy.path = ./acl-policy.json; dns = { nameservers.global = [ "1.1.1.1"