yadunut/clan-core
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Merge pull request 'syncthing: restrict access of peers to vpn' (#626) from a-kenji-restrict-introducer into main

Browse Source
This commit is contained in:
clan-bot
2023-12-08 12:56:35 +00:00
parent 90db791ff0 528068b5c4
commit 4eb0e4354a
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
clanModules/syncthing.nix
View File

@@ -45,7 +45,6 @@
8384 8384
22000 22000
]; ];
# local ui TODO: mkDefault ?
networking.firewall.allowedTCPPorts = [ 8384 ]; networking.firewall.allowedTCPPorts = [ 8384 ];
networking.firewall.interfaces."zt+".allowedUDPPorts = [ networking.firewall.interfaces."zt+".allowedUDPPorts = [
22000 22000
@@ -72,6 +71,8 @@
dataDir = lib.mkDefault "/home/user/"; dataDir = lib.mkDefault "/home/user/";
group = "syncthing";
key = key =
lib.mkDefault lib.mkDefault
config.clanCore.secrets.syncthing.secrets."syncthing.key".path or null; config.clanCore.secrets.syncthing.secrets."syncthing.key".path or null;
@@ -82,8 +83,7 @@
settings = { settings = {
options = { options = {
urAccepted = -1; urAccepted = -1;
# TODO: allowedNetworks = [ config.clan.networking.zerotier.subnet ];
# allowedNetworks = [];
}; };
devices = devices =
{ } { }