commit 1cab1743d5d44e46ed6e988359bda975cef43b4d · ptr.pet/ark

+23

hosts/wolumonde/modules/rathole.nix

···

       1
       1
       +
       {config, ...}:

     

       2
       2
       +
       let

     

       3
       3
       +
         ratholePort = 11111;

     

       4
       4
       +
         mcPort = 25565;

     

       5
       5
       +
       in

     

       6
       6
       +
       {

     

       7
       7
       +
         age.secrets.ratholeCreds.file = ../../../secrets/ratholeCreds.age;

     

       8
       8
       +
         services.rathole = {

     

       9
       9
       +
           enable = true;

     

       10
       10
       +
           role = "server";

     

       11
       11
       +
           settings = {

     

       12
       12
       +
             server = {

     

       13
       13
       +
               bind_addr = "0.0.0.0:${toString ratholePort}";

     

       14
       14
       +
               services.minecraft.bind_addr = "0.0.0.0:${toString mcPort}";

     

       15
       15
       +
             };

     

       16
       16
       +
           };

     

       17
       17
       +
           credentialsFile = config.age.secrets.ratholeCreds.path;

     

       18
       18
       +
         };

     

       19
       19
       +
         networking.firewall = {

     

       20
       20
       +
           allowedTCPPorts = [ratholePort mcPort];

     

       21
       21
       +
           allowedUDPPorts = [ratholePort mcPort];

     

       22
       22
       +
         };

     

       23
       23
       +
       }

+17

secrets/ratholeCreds.age

···

       1
       1
       +
       age-encryption.org/v1

     

       2
       2
       +
       -> ssh-rsa Abmvag

     

       3
       3
       +
       j/fkXBIYFCGzWN2QVhdiOYO6yRFRRntkQXavvd+uHXI/jdyasqQSHuLUaO1jpGYH

     

       4
       4
       +
       lbDo0Uhq3kKDeZMN7N9LJ7OT96yP0E1Kuvw+uiyAOME93j0oBLnqepubm3UKcFOX

     

       5
       5
       +
       I+kyCwNbMd78t8p90N3EePy08UymQWSjl7zZctp//zEuhFy+8C2WHWczc0tscMP2

     

       6
       6
       +
       r0yOzFrB4CMF5cGY6xOCeU8wP679NJ33DWyvMzhp1qVKd2+2zaMNIKP16qMdTk2H

     

       7
       7
       +
       BqpkBlAbMZnLnlKJxC1V7XIGkyeFP1EHTDasmAXyRgIIZCpQrwz+OiqqlnNGGB0X

     

       8
       8
       +
       7tAJnRC+5eA3C/Hx881bIjuiI5Q+oFqE2xIOplgMILibdhmOcO0l097qIyFfE6an

     

       9
       9
       +
       QwiQlcA5Q/ztAkB+twsGnOVf667FSniyHV7C9x26RwzKlKL3tYi63HAtmzCD8MNo

     

       10
       10
       +
       CxFxOrp0wxOgOVgRwatIGMPzb7vtztO2nurBFWzC2CqQ9TBtML7xLWmLY0IEMX6w

     

       11
       11
       +
       6e5j4xoFZhAXnFjHlG32uas4L3p1/r9o33U/l1F+QLmquYnGjtY3DAFwQi4EEme/

     

       12
       12
       +
       SB8pPU1V8kVpLVocvIVQjsVvIw2WaGvByukGDdjvGM6FpYP2qbCvdU7YEH1HjbU7

     

       13
       13
       +
       qri5oQRNqE0SMYgDuOSbrQM39YTbxw7441YMVHwO3wc

     

       14
       14
       +
       -> ssh-ed25519 KjIL7g Y106z8/ny0bweAkbMDQaEfOnfahPvtBVnA5BZsGyhU8

     

       15
       15
       +
       8OlNVmEB89YtEr8jwb9hQFer1hLhN2hgR0mfaxFJdgM

     

       16
       16
       +
       --- PxhoqXn3lFUpWN2/VPNItbNRXhXMIBrTSVVehGPEGrA

     

       17
       17
       +
       ��:��ZX�2r�}�)瘴�냩sT�Q��,��k��f�Q�q��dM`��J\�;ow*�R^��`V�>��mN&�v� �W�_����?臰sG�xK�������l"y*C$��O�

secrets/secrets.nix

···

       41
       41
        
           yusdacra

     

       42
       42
        
           wolumonde

     

       43
       43
        
         ];

     

       44
       44
       +
         "ratholeCreds.age".publicKeys = [

     

       45
       45
       +
           yusdacra wolumonde

     

       46
       46
       +
         ];

     

       44
       47
        
       }