summaryrefslogtreecommitdiff
path: root/os/kay/modules
diff options
context:
space:
mode:
Diffstat (limited to 'os/kay/modules')
-rw-r--r--os/kay/modules/network/headscale.nix18
1 files changed, 11 insertions, 7 deletions
diff --git a/os/kay/modules/network/headscale.nix b/os/kay/modules/network/headscale.nix
index 3e44108..b354f9b 100644
--- a/os/kay/modules/network/headscale.nix
+++ b/os/kay/modules/network/headscale.nix
@@ -2,6 +2,7 @@
config,
pkgs,
lib,
+ headplane,
...
}:
let
@@ -64,6 +65,11 @@ let
};
in
{
+ imports = [ headplane.nixosModules.headplane ];
+
+ nixpkgs.overlays = [ headplane.overlays.default ];
+ environment.systemPackages = [ config.services.headscale.package ];
+
sops.secrets = {
# server
"headplane/cookie_secret".owner = config.services.headscale.user;
@@ -78,6 +84,11 @@ in
interfaces.ppp0.allowedUDPPorts = [ stunPort ];
trustedInterfaces = [ config.services.tailscale.interfaceName ];
};
+ # for exit node only
+ boot.kernel.sysctl = {
+ "net.ipv4.ip_forward" = true;
+ "net.ipv6.conf.all.forwarding" = true;
+ };
services = {
headscale = {
@@ -142,11 +153,4 @@ in
];
};
};
-
- boot.kernel.sysctl = {
- "net.ipv4.ip_forward" = true;
- "net.ipv6.conf.all.forwarding" = true;
- };
-
- environment.systemPackages = [ config.services.headscale.package ];
}