feat: networking for externally accessable IP set up.
However its currently only accessable on vpn. ext.skynet.ie is a temp domain for testing
This commit is contained in:
parent
12ceb2c137
commit
553d34c9cd
2 changed files with 26 additions and 8 deletions
|
|
@ -25,6 +25,7 @@
|
|||
# the root one is already covered by teh certificate
|
||||
"2016.skynet.ie"
|
||||
"discord.skynet.ie"
|
||||
"ext.skynet.ie"
|
||||
];
|
||||
|
||||
skynet_dns.records = [
|
||||
|
|
@ -49,6 +50,14 @@
|
|||
# skynet.ie/~username
|
||||
enableUserDir = true;
|
||||
};
|
||||
"ext.skynet.ie" = {
|
||||
forceSSL = true;
|
||||
useACMEHost = "skynet";
|
||||
documentRoot = "${inputs.skynet_website.defaultPackage."x86_64-linux"}";
|
||||
# only on skynet.ie
|
||||
# skynet.ie/~username
|
||||
enableUserDir = true;
|
||||
};
|
||||
|
||||
# archive of teh site as it was ~2012 to 2016
|
||||
"2016.skynet.ie" = {
|
||||
|
|
|
|||
|
|
@ -36,9 +36,10 @@ in {
|
|||
# it has two network devices so two
|
||||
skynet_dns.records = [
|
||||
#{record=name; r_type="A"; value=ip_pub; server=true;}
|
||||
{record=name; r_type="A"; value=ip_priv; server=true;}
|
||||
{record="${name}.int"; r_type="A"; value=ip_priv; server=true;}
|
||||
{record=name; r_type="A"; value=ip_priv; server=true; }
|
||||
{record="ext"; r_type="A"; value=ip_pub; server=false;}
|
||||
|
||||
{record="${name}.int"; r_type="A"; value=ip_priv; server=true;}
|
||||
{record=ip_priv; r_type="PTR"; value=hostname_int;}
|
||||
];
|
||||
|
||||
|
|
@ -59,12 +60,20 @@ in {
|
|||
|
||||
proxmoxLXC.manageNetwork = true;
|
||||
networking.hostName = name;
|
||||
networking.interfaces.eth0.ipv4.addresses = [
|
||||
networking.interfaces = {
|
||||
eth0.ipv4.addresses = [
|
||||
{
|
||||
address = ip_priv;
|
||||
prefixLength = 26;
|
||||
}
|
||||
];
|
||||
eth1.ipv4.addresses = [
|
||||
{
|
||||
address = ip_pub;
|
||||
prefixLength = 28;
|
||||
}
|
||||
];
|
||||
};
|
||||
|
||||
services.skynet = {
|
||||
host = {
|
||||
|
|
|
|||
Loading…
Reference in a new issue