diff options
| author | sinanmohd <sinan@sinanmohd.com> | 2025-10-20 12:42:58 +0530 |
|---|---|---|
| committer | sinanmohd <sinan@sinanmohd.com> | 2025-10-20 12:42:58 +0530 |
| commit | 1beebd485cd0b84d939e36d1969c1dc3b6b65e79 (patch) | |
| tree | 8e3eee7b8dc57699ded187a8d5aa6f591d74d3cc /os | |
| parent | b1231221fdf865cfc6f1b0586785a4a1e9981dd0 (diff) | |
chore(os/kay/headscale): update acl
Diffstat (limited to 'os')
| -rw-r--r-- | os/kay/modules/network/headscale.nix | 10 |
1 files changed, 7 insertions, 3 deletions
diff --git a/os/kay/modules/network/headscale.nix b/os/kay/modules/network/headscale.nix index 14fcee3..cee386c 100644 --- a/os/kay/modules/network/headscale.nix +++ b/os/kay/modules/network/headscale.nix @@ -54,6 +54,11 @@ let acls = [ { action = "accept"; + src = [ "*" ]; + dst = [ "tag:namescale:${toString config.services.namescale.settings.port}" ]; + } + { + action = "accept"; src = [ "headplane@" ]; dst = [ "*:*" ]; } @@ -69,11 +74,10 @@ let src = [ "group:bud" ]; dst = [ "tag:bud_clients:*" ]; } - { action = "accept"; - src = [ "*" ]; - dst = [ "tag:namescale:${toString config.services.namescale.settings.port}" ]; + src = [ "tag:bud_clients" ]; + dst = [ "tag:bud_clients:80,443" ]; } ]; }; |