all repos — nixfiles @ fb5b86f8a067f69b7db2298ab0fd4848750540e1

System and user configuration, managed by nix and home-manager

servers: set up tailscale

Alan Pearce
commit

fb5b86f8a067f69b7db2298ab0fd4848750540e1

parent

417a1ce6481adfc713d8d0d6ad03e211a3d0eb22

1 file changed, 6 insertions(+), 8 deletions(-)

changed files
M system/nanopi.nixsystem/nanopi.nix
@@ -10,8 +10,6 @@ in
 {
   imports = [
     ./nanopi-hardware.nix
-    <nixos-hardware/friendlyarm/nanopi-r5s>
-    <agenix/modules/age.nix>
   ];
 
   age.secrets = {

@@ -188,7 +186,11 @@ };
   };
   services.resolved.enable = false;
 
-  services.tailscale.enable = true;
+  services.tailscale = {
+    enable = true;
+    extraUpFlags = [ "--advertise-routes=10.0.0.0/20,fd12:d04f:65d:42::/56" ];
+  };
+
 
   programs.command-not-found.enable = false;
 

@@ -206,7 +208,7 @@
   systemd.network = {
     enable = true;
     wait-online = {
-      ignoredInterfaces = [ "wan0" "wlan0" "wwan0" ];
+      extraArgs = [ "--interface" "bridge0" ];
     };
     links = {
       "10-name-lan1" = {

@@ -257,7 +259,6 @@ matchConfig.Name = "lan*";
         bridge = [ "bridge0" ];
         linkConfig = {
           MACAddress = "82:E0:06:9C:8E:7C";
-          RequiredForOnline = "no";
         };
         networkConfig.LinkLocalAddressing = "no";
       };

@@ -290,7 +291,6 @@ };
       };
       "50-wwan0" = {
         matchConfig.Name = "wwan0";
-        linkConfig.RequiredForOnline = false;
         networkConfig = {
           DHCP = "yes";
           IPv6AcceptRA = true;

@@ -323,7 +323,6 @@ };
       };
       "50-wan" = {
         matchConfig.Name = "wan0";
-        linkConfig.RequiredForOnline = "no";
         networkConfig = {
           DHCP = "yes";
           IPv6AcceptRA = true;

@@ -368,7 +367,6 @@ };
       };
       "60-wlan" = {
         matchConfig.MACAddress = "9c:53:22:33:bf:e9";
-        linkConfig.RequiredForOnline = "no";
         networkConfig = {
           DHCP = "yes";
           IPForward = "yes";