m3tam3re/nixos-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

headscale + tailscale

Browse Source
This commit is contained in:
m3tam3re 2025-02-21 14:07:29 +01:00
parent 74d4940e27
commit 39e1187948
4 changed files with 45 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
hosts/m3-atlas/services/default.nix
View File

@ -2,11 +2,13 @@
imports = [ imports = [
./containers ./containers
./gitea.nix ./gitea.nix
./headscale.nix
./minio.nix ./minio.nix
./mysql.nix ./mysql.nix
./n8n.nix ./n8n.nix
./postgres.nix ./postgres.nix
./searx.nix ./searx.nix
./tailscale.nix
./traefik.nix ./traefik.nix
./wastebin.nix ./wastebin.nix
]; ];

33
hosts/m3-atlas/services/headscale.nix Normal file
View File

@ -0,0 +1,33 @@
{
services = {
headscale = {
enable = true;
port = 3009;
settings = {
server_url = "https://va.m3tam3re.com";
dns = {
base_domain = "m3tam3re.loc";
};
logtail.enabled = false;
};
};
};
# Traefik configuration specific to
services.traefik.dynamicConfigOptions.http = {
services.headscale.loadBalancer.servers = [
{
url = "http://localhost:3009/";
}
];
routers.headscale = {
rule = "Host(`va.m3tam3re.com`)";
tls = {
certResolver = "godaddy";
};
service = "headscale";
entrypoints = "websecure";
};
};
}

9
hosts/m3-atlas/services/tailscale.nix Normal file
View File

@ -0,0 +1,9 @@
{
services.tailscale = {
enable = true;
useRoutingFeatures = "both";
};
networking.firewall = {
trustedInterfaces = ["tailscale0"];
};
}

1
hosts/m3-kratos/services/default.nix
View File

@ -11,6 +11,7 @@
hypridle.enable = true; hypridle.enable = true;
printing.enable = true; printing.enable = true;
gvfs.enable = true; gvfs.enable = true;
tailscale.enable = true;
trezord.enable = true; trezord.enable = true;
gnome.gnome-keyring.enable = true; gnome.gnome-keyring.enable = true;
qdrant.enable = true; qdrant.enable = true;