raboof/liminix
1
0
Fork 0
forked from dan/liminix
Code Pull Requests Activity

border-vm: add tang service

Browse Source
This commit is contained in:
Daniel Barlow 2024-10-06 12:38:06 +01:00
parent 493c5f69d7
commit ba03ddeb38
1 changed files with 13 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
bordervm-configuration.nix
View File

@ -102,6 +102,12 @@ in {
systemd.services.sshd.wantedBy = pkgs.lib.mkForce [ "multi-user.target" ]; systemd.services.sshd.wantedBy = pkgs.lib.mkForce [ "multi-user.target" ];
virtualisation = { virtualisation = {
forwardPorts = [ {
from = "host";
host.port = 7654;
# guest.address = "10.0.2.15";
guest.port =7654;
} ];
qemu = { qemu = {
networkingOptions = [ ]; networkingOptions = [ ];
options = options =
@ -124,6 +130,12 @@ in {
}; };
}; };
}; };
services.tang = {
enable = true;
ipAddressAllow = [ "10.0.0.0/24" "0.0.0.0/0" ];
};
environment.systemPackages = environment.systemPackages =
let wireshark-nogui = pkgs.wireshark.override { withQt = false ; }; let wireshark-nogui = pkgs.wireshark.override { withQt = false ; };
in with pkgs; [ in with pkgs; [
@ -134,6 +146,7 @@ in {
iptables iptables
usbutils usbutils
busybox busybox
clevis
]; ];
security.sudo.wheelNeedsPassword = false; security.sudo.wheelNeedsPassword = false;
networking = { networking = {