winzlieb/network
winzlieb
/
network
forked from zentralwerk/network
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

nixos-module/container/bird: enable authentication for OSPFv3

This commit is contained in:
Astro 2021-05-27 02:14:26 +02:00
parent c613a081a0
commit 74dc00961b
1 changed files with 6 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
nix/nixos-module/container/bird.nix
View File

@ -220,9 +220,8 @@ in
if config.site.net.${net}.ospf.secret != null
then ''
interface "${net}" {
# TODO: enable when all bird 1.x have shut down
#authentication cryptographic;
#password "${config.site.net.${net}.ospf.secret}";
authentication cryptographic;
password "${config.site.net.${net}.ospf.secret}";
};
''
else builtins.concatStringsSep "\n" (
@ -260,8 +259,8 @@ in
# Become the designated router
priority 10;
#authentication cryptographic;
#password "${config.site.net.${net}.ospf.secret}";
authentication cryptographic;
password "${config.site.net.${net}.ospf.secret}";
};
''
) hostConf.interfaces
@ -291,8 +290,8 @@ in
# Enable OSPF only on interfaces with a secret.
lib.optionalString (config.site.net.${net}.ospf.secret != null) ''
interface "${net}" instance ${toString config.site.hosts.${upstream}.ospf.upstreamInstance} {
#authentication cryptographic;
#password "${config.site.net.${net}.ospf.secret}";
authentication cryptographic;
password "${config.site.net.${net}.ospf.secret}";
};
''
) hostConf.interfaces