summaryrefslogtreecommitdiff
path: root/os/kay/modules/network/headscale.nix
diff options
context:
space:
mode:
Diffstat (limited to 'os/kay/modules/network/headscale.nix')
-rw-r--r--os/kay/modules/network/headscale.nix15
1 files changed, 12 insertions, 3 deletions
diff --git a/os/kay/modules/network/headscale.nix b/os/kay/modules/network/headscale.nix
index 14fcee3..39007a4 100644
--- a/os/kay/modules/network/headscale.nix
+++ b/os/kay/modules/network/headscale.nix
@@ -54,6 +54,11 @@ let
acls = [
{
action = "accept";
+ src = [ "*" ];
+ dst = [ "tag:namescale:${toString config.services.namescale.settings.port}" ];
+ }
+ {
+ action = "accept";
src = [ "headplane@" ];
dst = [ "*:*" ];
}
@@ -63,17 +68,21 @@ let
src = [ "group:owner" ];
dst = [ "*:*" ];
}
+ {
+ action = "accept";
+ src = [ "nazer@" ];
+ dst = [ "autogroup:internet:*" ];
+ }
{
action = "accept";
src = [ "group:bud" ];
dst = [ "tag:bud_clients:*" ];
}
-
{
action = "accept";
- src = [ "*" ];
- dst = [ "tag:namescale:${toString config.services.namescale.settings.port}" ];
+ src = [ "tag:bud_clients" ];
+ dst = [ "tag:bud_clients:80,443" ];
}
];
};