nebula: Set listen address on hosts with fixed addresses

modules/system/services/nebula/default.nix

@@ -9,6 +9,11 @@ let
   netCfg = config.custom.networking;
 
   publicPort = 47141;
+
+  lighthouses =
+    netCfg.peers
+    |> lib.filter (peer: peer.overlay.isLighthouse)
+    |> lib.map (lighthouse: lighthouse.overlay.address);
 in
 {
   options.custom.services.nebula = {
@@ -71,14 +76,16 @@ in
       key = config.sops.secrets."nebula/host-key".path;
 
       tun.device = netCfg.overlay.interface;
-      listen.port = lib.mkIf netCfg.underlay.isPublic publicPort;
+      listen = {
+        host = lib.mkIf (netCfg.underlay.address != null) netCfg.underlay.address;
+        port = lib.mkIf netCfg.underlay.isPublic publicPort;
+      };
 
       inherit (netCfg.overlay) isLighthouse;
-      lighthouses = lib.mkIf (!netCfg.overlay.isLighthouse) (
+      lighthouses = lib.mkIf (!netCfg.overlay.isLighthouse) lighthouses;
-        netCfg.peers
+
-        |> lib.filter (peer: peer.overlay.isLighthouse)
+      isRelay = netCfg.overlay.isLighthouse;
-        |> lib.map (lighthouse: lighthouse.overlay.address)
+      relays = lib.mkIf (!netCfg.overlay.isLighthouse) lighthouses;
-      );
 
       staticHostMap =
         netCfg.peers