Blunkall-Technologies/Olympus
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

test

Browse Source
This commit is contained in:
Nathan
2025-07-20 12:59:35 -05:00
parent 3ec3b51d5d
commit 1928503a95
1 changed files with 288 additions and 45 deletions
Download Patch File Download Diff File Expand all files Collapse all files

331
system-config/services/containers/netbird/default.nix
View File

@@ -29,13 +29,15 @@
allowedUDPPortRanges = [{ from = 49152; to = 65535; }]; allowedUDPPortRanges = [{ from = 49152; to = 65535; }];
}; };
containers.netbird = lib.mkIf config.sysconfig.opts.virtualization.netbird.enable { containers = lib.mkIf config.sysconfig.opts.virtualization.netbird.enable {
autoStart = true; #netbird-management = {
privateNetwork = true; netbird = {
hostAddress = "192.168.100.10"; autoStart = true;
localAddress = "192.168.100.21"; privateNetwork = true;
forwardPorts = [ hostAddress = "192.168.100.10";
localAddress = "192.168.100.21";
forwardPorts = [
{ {
containerPort = 33073; containerPort = 33073;
hostPort = 33073; hostPort = 33073;
@@ -56,58 +58,299 @@
hostPort = 3478; hostPort = 3478;
protocol = "udp"; protocol = "udp";
} }
] ++ map (x : { ] ++ map (x : {
containerPort = x; containerPort = x;
hostPort = x; hostPort = x;
protocol = "udp"; protocol = "udp";
}) (builtins.genList (y: y + 49152) (65535 - 49152)); }) (builtins.genList (y: y + 49152) (65535 - 49152));
bindMounts = {}; bindMounts = {};
config = { config = {
networking.firewall = { networking.firewall = {
allowedTCPPorts = [ 80 443 33073 33080 10000 ]; allowedTCPPorts = [ 80 443 33073 33080 10000 ];
allowedUDPPorts = [ 3478 ]; allowedUDPPorts = [ 3478 ];
allowedUDPPortRanges = [{ from = 49152; to = 65535; }]; allowedUDPPortRanges = [{ from = 49152; to = 65535; }];
}; };
services.netbird = { services.netbird = {
enable = true;
server = {
enable = true; enable = true;
domain = "vpn.blunkall.us";
/* server = {
management = {
enable = true; enable = true;
dnsDomain = ".vpn"; domain = "vpn.blunkall.us";
turnDomain = "localhost"; management = {
enable = true;
dnsDomain = ".vpn";
turnDomain = "localhost";
disableAnonymousMetrics = true;
};
dashboard = {
enable = true;
managementServer = "localhost";
settings = {
AUTH_AUTHORITY = "";
NETBIRD_USE_AUTH0 = false;
NETBIRD_AUTH_DEVICE_AUTH_PROVIDER = "none";
};
};
coturn = {
domain = "turn.blunkall.us";
enable = true;
};
signal = {
enable = true;
};
disableAnonymousMetrics = true;
}; };
dashboard = {
enable = true;
managementServer = "localhost";
};
coturn = {
domain = "turn.blunkall.us";
enable = true;
};
signal = {
enable = true;
};
*/
}; };
}; };
}; };
/*
netbird-dashboard = {
autoStart = true;
privateNetwork = true;
hostAddress = "192.168.100.10";
localAddress = "192.168.100.21";
forwardPorts = [
{
containerPort = 33073;
hostPort = 33073;
protocol = "tcp";
}
{
containerPort = 33080;
hostPort = 33080;
protocol = "tcp";
}
{
containerPort = 10000;
hostPort = 10000;
protocol = "tcp";
}
{
containerPort = 3478;
hostPort = 3478;
protocol = "udp";
}
] ++ map (x : {
containerPort = x;
hostPort = x;
protocol = "udp";
}) (builtins.genList (y: y + 49152) (65535 - 49152));
bindMounts = {};
config = {
networking.firewall = {
allowedTCPPorts = [ 80 443 33073 33080 10000 ];
allowedUDPPorts = [ 3478 ];
allowedUDPPortRanges = [{ from = 49152; to = 65535; }];
};
services.netbird = {
enable = true;
server = {
enable = true;
domain = "vpn.blunkall.us";
management = {
enable = true;
dnsDomain = ".vpn";
turnDomain = "localhost";
disableAnonymousMetrics = true;
};
dashboard = {
enable = true;
managementServer = "localhost";
};
coturn = {
domain = "turn.blunkall.us";
enable = true;
};
signal = {
enable = true;
};
};
};
};
};
netbird-coturn = {
autoStart = true;
privateNetwork = true;
hostAddress = "192.168.100.10";
localAddress = "192.168.100.21";
forwardPorts = [
{
containerPort = 33073;
hostPort = 33073;
protocol = "tcp";
}
{
containerPort = 33080;
hostPort = 33080;
protocol = "tcp";
}
{
containerPort = 10000;
hostPort = 10000;
protocol = "tcp";
}
{
containerPort = 3478;
hostPort = 3478;
protocol = "udp";
}
] ++ map (x : {
containerPort = x;
hostPort = x;
protocol = "udp";
}) (builtins.genList (y: y + 49152) (65535 - 49152));
bindMounts = {};
config = {
networking.firewall = {
allowedTCPPorts = [ 80 443 33073 33080 10000 ];
allowedUDPPorts = [ 3478 ];
allowedUDPPortRanges = [{ from = 49152; to = 65535; }];
};
services.netbird = {
enable = true;
server = {
enable = true;
domain = "vpn.blunkall.us";
management = {
enable = true;
dnsDomain = ".vpn";
turnDomain = "localhost";
disableAnonymousMetrics = true;
};
dashboard = {
enable = true;
managementServer = "localhost";
};
coturn = {
domain = "turn.blunkall.us";
enable = true;
};
signal = {
enable = true;
};
};
};
};
};
netbird-signal = {
autoStart = true;
privateNetwork = true;
hostAddress = "192.168.100.10";
localAddress = "192.168.100.21";
forwardPorts = [
{
containerPort = 33073;
hostPort = 33073;
protocol = "tcp";
}
{
containerPort = 33080;
hostPort = 33080;
protocol = "tcp";
}
{
containerPort = 10000;
hostPort = 10000;
protocol = "tcp";
}
{
containerPort = 3478;
hostPort = 3478;
protocol = "udp";
}
] ++ map (x : {
containerPort = x;
hostPort = x;
protocol = "udp";
}) (builtins.genList (y: y + 49152) (65535 - 49152));
bindMounts = {};
config = {
networking.firewall = {
allowedTCPPorts = [ 80 443 33073 33080 10000 ];
allowedUDPPorts = [ 3478 ];
allowedUDPPortRanges = [{ from = 49152; to = 65535; }];
};
services.netbird = {
enable = true;
server = {
enable = true;
domain = "vpn.blunkall.us";
management = {
enable = true;
dnsDomain = ".vpn";
turnDomain = "localhost";
disableAnonymousMetrics = true;
};
dashboard = {
enable = true;
managementServer = "localhost";
};
coturn = {
domain = "turn.blunkall.us";
enable = true;
};
signal = {
enable = true;
};
};
};
};
};
*/
}; };
}; };
} }