🔧 made arr available via zerotier

2025-04-23 15:04:09 +02:00 · 2025-04-23 15:04:09 +02:00 · 0e312a7b86
commit 0e312a7b86
parent 706f0a52c1
1 changed files with 8 additions and 0 deletions
--- a/machines/orbi/media-arr.nix
+++ b/machines/orbi/media-arr.nix
@ -2,6 +2,7 @@
  config,
  lib,
  pkgs,
+  zerotierInterface,
  ...
 }:
 {
@ -10,6 +11,11 @@
    8989
    8686
  ];
+  networking.firewall.interfaces.${zerotierInterface}.allowedTCPPorts = [
+    7878
+    8989
+    8686
+  ];

  healthchecks.closed.public.ports.arr = [
    7878
@ -73,6 +79,7 @@
      extraConfig = ''
        allow ${config.tinc.private.subnet};
        allow ${config.wireguard.wg0.subnet};
+        allow ${config.clan.core.networking.zerotier.subnet};
        deny all;
      '';
      locations."/" = {
@ -85,6 +92,7 @@
      extraConfig = ''
        allow ${config.tinc.private.subnet};
        allow ${config.wireguard.wg0.subnet};
+        allow ${config.clan.core.networking.zerotier.subnet};
        deny all;
      '';
      locations."/" = {