JuliusFreudenberger/nix-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Enable netbird-docker on srv03

Browse source
This commit is contained in:
JuliusFreudenberger 2026-04-25 23:58:47 +02:00
parent d1cfaf7acf
commit f7c4620378
2 changed files with 21 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

19
hosts/srv03/default.nix
View file

@ -16,6 +16,7 @@
../../modules/docker.nix ../../modules/docker.nix
../../modules/traefik.nix ../../modules/traefik.nix
../../modules/pocket-id.nix ../../modules/pocket-id.nix
../../modules/netbird-docker.nix
../../modules/auto-upgrade.nix ../../modules/auto-upgrade.nix
"${inputs.secrets}/modules/opkssh.nix" "${inputs.secrets}/modules/opkssh.nix"
# Include the results of the hardware scan. # Include the results of the hardware scan.
@ -42,6 +43,24 @@
}; };
environmentFile = config.age.secrets.pocket-id.path; environmentFile = config.age.secrets.pocket-id.path;
}; };
netbird-docker = {
enable = true;
secrets = config.age.secrets.netbird-server;
proxy = {
domain = "netbird.jfreudenberger.de";
token-secret = config.age.secrets.netbird-proxy;
};
};
netbird.server = let
domain = "netbird.jfreudenberger.de";
in {
domain = domain;
management.domain = domain;
dashboard.domain = domain;
signal.domain = domain;
management.oidcConfigEndpoint = "https://login.jfreudenberger.de/.well-known/openid-configuration";
};
}; };
systemd.network = { systemd.network = {

2
hosts/srv03/secrets.nix
View file

@ -3,5 +3,7 @@
age.secrets = { age.secrets = {
inwx.file = "${inputs.secrets}/secrets/dns-management/inwx"; inwx.file = "${inputs.secrets}/secrets/dns-management/inwx";
pocket-id.file = "${inputs.secrets}/secrets/srv03/pocket-id"; pocket-id.file = "${inputs.secrets}/secrets/srv03/pocket-id";
netbird-server.file = "${inputs.secrets}/secrets/srv03/netbird-server";
netbird-proxy.file = "${inputs.secrets}/secrets/srv03/netbird-proxy";
}; };
} }