commit e09fa444c62a3664a234f86cbe46cc9bebcd5d64 (tree) parent 8e6b7b42815b14107601c2711abaefc8ecf7d8f8 Author: Motiejus Jakštys <motiejus@jakstys.lt> Date: Mon, 24 Nov 2025 23:57:12 +0200 fra1-c: start enabling headscale Diffstat:
| M | hosts/fra1-c/configuration.nix | | | 20 | ++++++++++++++++++++ |
1 file changed, 20 insertions(+), 0 deletions(-)
diff --git a/hosts/fra1-c/configuration.nix b/hosts/fra1-c/configuration.nix @@ -85,6 +85,11 @@ in saslPasswdPath = config.age.secrets.sasl-passwd.path; }; + headscale = { + enable = true; + subnetCIDR = myData.subnets.tailscale.cidr; + }; + deployerbot = { follower = { publicKeys = [ myData.hosts."fwminex.jakst.vpn".publicKey ]; @@ -149,6 +154,21 @@ in }; services = { + caddy = { + enable = true; + email = "motiejus+acme@jakstys.lt"; + globalConfig = '' + servers { + metrics { + per_host + } + } + ''; + virtualHosts = { + "vpn.jakstys.lt".extraConfig = ''reverse_proxy 127.0.0.1:${toString myData.ports.headscale}''; + }; + }; + nsd = { enable = true; interfaces = [