Services: add tailscale, kuma, vw and forgejo to Theia

2025-06-30 08:54:26 -04:00 · 2025-01-26 23:22:46 +02:00 · 2025-01-26 23:22:46 +02:00 · 057582d665
commit 057582d665
parent dcd2d8adab
10 changed files with 168 additions and 5 deletions
--- a/modules/nixos/networking/tailscale.nix
+++ b/modules/nixos/networking/tailscale.nix
@ -0,0 +1,33 @@
+{
+  lib,
+  pkgs,
+  config,
+  ...
+}: let
+  inherit (lib.modules) mkIf mkDefault;
+  inherit (lib.options) mkEnableOption;
+  inherit (config.services) tailscale;
+
+  sys = config.olympus.system.networking;
+  cfg = sys.tailscale;
+in {
+  options.olympus.system.networking.tailscale = {
+    enable = mkEnableOption "Tailscale";
+  };
+
+  config = mkIf cfg.enable {
+    environment.systemPackages = [pkgs.tailscale];
+
+    networking.firewall = {
+      # always allow traffic from your Tailscale network
+      trustedInterfaces = ["${tailscale.interfaceName}"];
+      checkReversePath = "loose";
+    };
+
+    services.tailscale = {
+      enable = true;
+      openFirewall = true;
+      useRoutingFeatures = mkDefault "server";
+    };
+  };
+}