SebastianStork/nixos-config
1
0
Fork 0
mirror of https://github.com/SebastianStork/nixos-config.git synced 2026-01-21 14:01:34 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

nebula: Fix constant restarts by using fixed paths

Browse source
This commit is contained in:
SebastianStork 2026-01-16 10:53:41 +01:00
parent 10bd5fcf24
commit 07c46beefb
Signed by: SebastianStork
SSH key fingerprint: SHA256:iEM011ogNMG1q8+U500adGu/9rpPuZ2KnFtbdLeqTiI
1 changed files with 15 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

17
modules/system/services/nebula/default.nix
View file

@ -45,11 +45,24 @@ in
restartUnits = [ "nebula@mesh.service" ];
};
environment.etc = {
"nebula/ca.crt" = {
source = ./ca.crt;
mode = "0440";
user = config.systemd.services."nebula@mesh".serviceConfig.User;
};
"nebula/host.crt" = {
source = cfg.certificatePath;
mode = "0440";
user = config.systemd.services."nebula@mesh".serviceConfig.User;
};
};
services.nebula.networks.mesh = {
enable = true;
ca = ./ca.crt;
cert = cfg.certificatePath;
ca = "/etc/nebula/ca.crt";
cert = "/etc/nebula/host.crt";
key = config.sops.secrets."nebula/host-key".path;
tun.device = netCfg.overlay.interface;