Format
This commit is contained in:
parent
90fc1389e8
commit
f8bccd8508
|
@ -17,7 +17,8 @@ let
|
|||
) null [ "cluster" "serv" ];
|
||||
in {
|
||||
# Open firewall between cluster members
|
||||
networking.firewall.extraCommands = lib.concatMapStrings (server:
|
||||
networking.firewall.extraCommands = lib.concatMapStrings
|
||||
(server:
|
||||
let
|
||||
netConfig = zentralwerk.lib.config.site.net.${serverNet server};
|
||||
in
|
||||
|
@ -26,7 +27,9 @@ in {
|
|||
${lib.concatMapStrings (hosts6: ''
|
||||
ip6tables -A nixos-fw --source ${hosts6.${server}} -j ACCEPT
|
||||
'') (builtins.attrValues netConfig.hosts6)}
|
||||
'') servers;
|
||||
''
|
||||
)
|
||||
servers;
|
||||
|
||||
# Cluster configuration
|
||||
skyflake = {
|
||||
|
@ -42,23 +45,25 @@ in {
|
|||
inherit servers;
|
||||
# run tasks only on these:
|
||||
client.enable = builtins.elem hostName microvmServers;
|
||||
client.meta =
|
||||
lib.optionalAttrs (builtins.elem hostName storageServers) {
|
||||
client.meta = lib.optionalAttrs (builtins.elem hostName storageServers) {
|
||||
"c3d2.storage" = "big";
|
||||
};
|
||||
};
|
||||
microvmUid = 997;
|
||||
|
||||
users.c3d2 = {
|
||||
users = {
|
||||
c3d2 = {
|
||||
uid = 1001;
|
||||
sshKeys = config.users.users.root.openssh.authorizedKeys.keys;
|
||||
};
|
||||
users.leon = {
|
||||
leon = {
|
||||
uid = 1002;
|
||||
sshKeys = with (import ../../ssh-public-keys.nix).users;
|
||||
leon ++
|
||||
astro;
|
||||
};
|
||||
};
|
||||
|
||||
deploy.customizationModule = ./deployment.nix;
|
||||
|
||||
storage.glusterfs = {
|
||||
|
|
Loading…
Reference in New Issue
Block a user