move default routes to gateway profile

2024-03-20 18:13:33 +00:00 · 2024-03-20 18:13:33 +00:00 · 95ebddb661
parent a66510c9e6
commit 95ebddb661
2 changed files with 13 additions and 12 deletions
--- a/examples/rotuer.nix
+++ b/examples/rotuer.nix
@ -97,18 +97,6 @@ in rec {

  users.root = secrets.root;

-  services.defaultroute4 = svc.network.route.build {
-    via = "$(output ${config.services.wan} address)";
-    target = "default";
-    dependencies = [ config.services.wan ];
-  };
-
-  services.defaultroute6 = svc.network.route.build {
-    via = "$(output ${config.services.wan} ipv6-peer-address)";
-    target = "default";
-    interface = config.services.wan;
-  };
-
  services.firewall = svc.firewall.build {
    ruleset =
      let defaults = import ./demo-firewall.nix;
--- a/modules/profiles/gateway.nix
+++ b/modules/profiles/gateway.nix
@ -131,6 +131,19 @@ in {
        domain = dcfg.localDomain;
      };

+    services.defaultroute4 = svc.network.route.build {
+      via = "$(output ${config.services.wan} address)";
+      target = "default";
+      dependencies = [ config.services.wan ];
+    };
+
+    services.defaultroute6 = svc.network.route.build {
+      via = "$(output ${config.services.wan} ipv6-peer-address)";
+      target = "default";
+      interface = config.services.wan;
+    };
+
+
    services.resolvconf = oneshot rec {
      dependencies = [ config.services.wan ];
      name = "resolvconf";