forked from c3d2/nix-config
jabber: microvmify
This commit is contained in:
parent
2556173bd0
commit
cb12be2f0f
|
@ -605,7 +605,7 @@
|
|||
jabber = nixosSystem' {
|
||||
modules = [
|
||||
{ nixpkgs.overlays = with secrets.overlays; [ jabber ]; }
|
||||
./config/lxc-container.nix
|
||||
self.nixosModules.microvm
|
||||
./hosts/containers/jabber
|
||||
];
|
||||
};
|
||||
|
|
|
@ -18,14 +18,10 @@ let
|
|||
'';
|
||||
in
|
||||
{
|
||||
microvm.mem = 2048;
|
||||
|
||||
networking = {
|
||||
hostName = "jabber";
|
||||
useNetworkd = true;
|
||||
interfaces.eth0.ipv4.addresses = [{
|
||||
address = config.c3d2.hosts."${config.networking.hostName}".ip4;
|
||||
prefixLength = zentralwerk.lib.config.site.net.serv.subnet4Len;
|
||||
}];
|
||||
defaultGateway = "172.20.73.1";
|
||||
firewall.allowedTCPPorts = [
|
||||
# Prosody
|
||||
5222 5223 5269
|
||||
|
@ -43,6 +39,10 @@ in
|
|||
c3d2 = {
|
||||
isInHq = false;
|
||||
hq.statistics.enable = true;
|
||||
deployment = {
|
||||
server = "server10";
|
||||
mounts = [ "etc" "home" "var"];
|
||||
};
|
||||
};
|
||||
services.collectd.plugins.exec = ''
|
||||
Exec "${config.services.collectd.user}" "${pkgs.ruby}/bin/ruby" "${./prosody-stats.rb}"
|
||||
|
@ -207,7 +207,7 @@ in
|
|||
realm = "turn.${domain}";
|
||||
lt-cred-mech = true;
|
||||
extraConfig = ''
|
||||
external-ip=${publicIPv4}/${(builtins.head config.networking.interfaces.eth0.ipv4.addresses).address}
|
||||
external-ip=${publicIPv4}/${zentralwerk.lib.config.site.net.serv.hosts4.jabber}
|
||||
|
||||
user=${coturnUser}:${coturnPassword}
|
||||
'';
|
||||
|
|
Loading…
Reference in New Issue