feat: add zerotier

2024-10-22 16:56:21 -04:00
parent a9b68668c4
commit 31cb308044
9 changed files with 134 additions and 29 deletions
--- a/nixos/common/zerotier.nix
+++ b/nixos/common/zerotier.nix
@@ -0,0 +1,25 @@
+{config}: {
+  age.secrets.zerotier.file = ../../secrets/zerotier.age;
+
+  services.zerotierone = {
+    enable = true;
+    joinNetworks = [builtins.readFile config.age.secrets.zerotier.path]; # Is an antipattern, but idc if this is readable on the servers
+  };
+
+  networking = {
+    firewall = {
+      interfaces."zts23oi5io".allowedTCPPortRanges = [
+        {
+          from = 0;
+          to = 65535;
+        }
+      ];
+      interfaces."zts23oi5io".allowedUDPPortRanges = [
+        {
+          from = 0;
+          to = 65535;
+        }
+      ];
+    };
+  };
+}