puter/classes/headless/tailscale.nix

{
  services.tailscale = {
    enable = true;
    openFirewall = true; #TODO
  };

  networking.firewall = {
    checkReversePath = "loose";
    trustedInterfaces = ["tailscale0"];
    allowedUDPPorts = [config.services.tailscale.port];
  };
}
pluh 🗣 2025-03-09 15:37:21 +00:00			`{`
			`services.tailscale = {`
			`enable = true;`
			`openFirewall = true; #TODO`
			`};`

			`networking.firewall = {`
			`checkReversePath = "loose";`
			`trustedInterfaces = ["tailscale0"];`
			`allowedUDPPorts = [config.services.tailscale.port];`
			`};`
			`}`