mirror of
https://github.com/alyraffauf/nixcfg.git
synced 2024-11-24 18:51:54 -05:00
mauville,slateport: prepare k3s cluster
This commit is contained in:
parent
363b6dfebb
commit
6b021c3247
|
@ -29,7 +29,8 @@
|
|||
};
|
||||
in {
|
||||
networking = {
|
||||
firewall.allowedTCPPorts = [80 443 3000];
|
||||
firewall.allowedTCPPorts = [80 443 2379 2380 3000 6443];
|
||||
firewall.allowedUDPPorts = [8472];
|
||||
};
|
||||
|
||||
services = {
|
||||
|
@ -90,6 +91,13 @@ in {
|
|||
};
|
||||
};
|
||||
|
||||
k3s = {
|
||||
enable = true;
|
||||
role = "server";
|
||||
tokenFile = config.age.secrets.k3s.path;
|
||||
serverAddr = "http://192.168.0.104:6443";
|
||||
};
|
||||
|
||||
navidrome = {
|
||||
enable = true;
|
||||
openFirewall = true;
|
||||
|
|
|
@ -1,6 +1,6 @@
|
|||
{
|
||||
age.secrets = {
|
||||
cloudflare.file = ../../secrets/cloudflare.age;
|
||||
k3s.file = ../../secrets/k3s.age;
|
||||
|
||||
lastfmId = {
|
||||
owner = "navidrome";
|
||||
|
|
|
@ -3,7 +3,8 @@
|
|||
domain = "raffauflabs.com";
|
||||
in {
|
||||
networking = {
|
||||
firewall.allowedTCPPorts = [80 443];
|
||||
firewall.allowedTCPPorts = [80 443 2379 2380 6443];
|
||||
firewall.allowedUDPPorts = [8472];
|
||||
};
|
||||
|
||||
security.acme = {
|
||||
|
|
Loading…
Reference in a new issue