SebastianStork/nixos-config
1
0
Fork 0
mirror of https://github.com/SebastianStork/nixos-config.git synced 2026-01-21 12:51:34 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

nebula: Fix constant restarts by using fixed paths

Browse source
This commit is contained in:
SebastianStork 2026-01-16 10:53:41 +01:00
parent 10bd5fcf24
commit 07c46beefb
Signed by: SebastianStork
SSH key fingerprint: SHA256:iEM011ogNMG1q8+U500adGu/9rpPuZ2KnFtbdLeqTiI
1 changed files with 15 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

17
modules/system/services/nebula/default.nix
View file

@ -45,11 +45,24 @@ in
restartUnits = [ "nebula@mesh.service" ]; restartUnits = [ "nebula@mesh.service" ];
}; };
environment.etc = {
"nebula/ca.crt" = {
source = ./ca.crt;
mode = "0440";
user = config.systemd.services."nebula@mesh".serviceConfig.User;
};
"nebula/host.crt" = {
source = cfg.certificatePath;
mode = "0440";
user = config.systemd.services."nebula@mesh".serviceConfig.User;
};
};
services.nebula.networks.mesh = { services.nebula.networks.mesh = {
enable = true; enable = true;
ca = ./ca.crt; ca = "/etc/nebula/ca.crt";
cert = cfg.certificatePath; cert = "/etc/nebula/host.crt";
key = config.sops.secrets."nebula/host-key".path; key = config.sops.secrets."nebula/host-key".path;
tun.device = netCfg.overlay.interface; tun.device = netCfg.overlay.interface;