nixos-servers/nixos-modules/tailscale.nix

{ lib, config, ... }:
let
  cfg = config.lab.tailscale;
in
{
  options = {
    lab.tailscale.advertiseExitNode = lib.mkOption {
      type = lib.types.bool;
      default = false;
    };
  };

  config = {
    services.tailscale = {
      enable = true;
      authKeyFile = config.sops.secrets."tailscale/authKey".path;
      useRoutingFeatures = "server";
      openFirewall = true;

      extraUpFlags = [
        "--hostname=${config.networking.hostName}"
      ] ++ lib.lists.optional cfg.advertiseExitNode "--advertise-exit-node"
      ++ lib.lists.optional cfg.advertiseExitNode "--advertise-routes=192.168.30.0/24";
    };

    sops.secrets."tailscale/authKey" = { };
  };
}
feat(tailscale): Enable warwick as exit node and subnet router 2024-07-23 20:50:11 +00:00			`{ lib, config, ... }:`
			`let`
			`cfg = config.lab.tailscale;`
			`in`
			`{`
			`options = {`
			`lab.tailscale.advertiseExitNode = lib.mkOption {`
			`type = lib.types.bool;`
			`default = false;`
			`};`
			`};`

feat: Enable tailscale on physical servers fix: Fix Nix flake checks 2024-07-22 20:54:08 +00:00			`config = {`
			`services.tailscale = {`
			`enable = true;`
			`authKeyFile = config.sops.secrets."tailscale/authKey".path;`
feat(tailscale): Enable warwick as exit node and subnet router 2024-07-23 20:50:11 +00:00			`useRoutingFeatures = "server";`
			`openFirewall = true;`
feat: Enable tailscale on physical servers fix: Fix Nix flake checks 2024-07-22 20:54:08 +00:00
			`extraUpFlags = [`
			`"--hostname=${config.networking.hostName}"`
feat(tailscale): Enable warwick as exit node and subnet router 2024-07-23 20:50:11 +00:00			`] ++ lib.lists.optional cfg.advertiseExitNode "--advertise-exit-node"`
			`++ lib.lists.optional cfg.advertiseExitNode "--advertise-routes=192.168.30.0/24";`
feat: Enable tailscale on physical servers fix: Fix Nix flake checks 2024-07-22 20:54:08 +00:00			`};`

			`sops.secrets."tailscale/authKey" = { };`
			`};`
			`}`