Jaculabilis
/
nixos-configs
1
1
Fork 0
Code Releases Activity

tmp

This commit is contained in:
Tim Van Baak 2024-04-13 04:49:34 +00:00
parent db3df565d5
commit 2d87009561
1 changed files with 16 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
modules/syncthings.nix
View File

@ -4,6 +4,7 @@ with lib;
let let
cfg = config.services.syncthings; cfg = config.services.syncthings;
enabledInstances = filterAttrs (n: v: v.enable) cfg.instances;
opt = options.services.syncthings; opt = options.services.syncthings;
defaultUser = "syncthing"; defaultUser = "syncthing";
defaultGroup = defaultUser; defaultGroup = defaultUser;
@ -574,19 +575,23 @@ in {
''; '';
}; };
openDefaultPorts = mkOption { openPorts = mkOption {
type = types.bool; type = types.bool;
default = false; default = false;
example = true; example = true;
description = lib.mdDoc '' description = mdDoc "Whether to open the transfer port and discovery port in the firewall.";
Whether to open the default ports in the firewall: TCP/UDP 22000 for transfers };
and UDP 21027 for discovery.
If multiple users are running Syncthing on this machine, you will need transferPort = mkOption {
to manually open a set of ports for each instance and leave this disabled. type = types.port;
Alternatively, if you are running only a single instance on this machine example = 22000;
using the default ports, enable this. description = mdDoc "The TCP/UDP port for transfers.";
''; };
discoveryPort = mkOption {
type = types.port;
example = 21027;
description = mdDoc "The UDP port for discovery.";
}; };
package = mkOption { package = mkOption {
@ -605,9 +610,8 @@ in {
###### implementation ###### implementation
config = mkIf cfg.enable { config = mkIf (enabledInstances != {}) {
networking.firewall = {
networking.firewall = mkIf cfg.openDefaultPorts {
allowedTCPPorts = [ 22000 ]; allowedTCPPorts = [ 22000 ];
allowedUDPPorts = [ 21027 22000 ]; allowedUDPPorts = [ 21027 22000 ];
}; };