synchronous/nix-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix

Browse Source
This commit is contained in:
JakeGinesin
2025-09-01 01:19:12 -04:00
parent 7ded1d8176
commit 052e5bcdc2
2 changed files with 10 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
extras/k3s-node.nix
View File

@@ -17,14 +17,15 @@
"net.bridge.bridge-nf-call-ip6tables" = 1; "net.bridge.bridge-nf-call-ip6tables" = 1;
}; };
}; };
networking.firewall.allowedTCPPorts = [ networking.firewall.enable = false;
6443 # k3s: required so that pods can reach the API server (running on port 6443 by default) # networking.firewall.allowedTCPPorts = [
# 2379 # k3s, etcd clients: required if using a "High Availability Embedded etcd" configuration # 6443 # k3s: required so that pods can reach the API server (running on port 6443 by default)
# 2380 # k3s, etcd peers: required if using a "High Availability Embedded etcd" configuration # # 2379 # k3s, etcd clients: required if using a "High Availability Embedded etcd" configuration
]; # # 2380 # k3s, etcd peers: required if using a "High Availability Embedded etcd" configuration
networking.firewall.allowedUDPPorts = [ # ];
# 8472 # k3s, flannel: required if using multi-node for inter-node networking # networking.firewall.allowedUDPPorts = [
]; # # 8472 # k3s, flannel: required if using multi-node for inter-node networking
# ];
services.k3s = { services.k3s = {
enable = true; enable = true;
role = "agent"; role = "agent";

2
hosts/server3/configuration.nix
View File

@@ -6,7 +6,7 @@
}: { }: {
imports = [ imports = [
./hardware-configuration.nix ./hardware-configuration.nix
../../system/system.nix ../../system/system-server.nix
../meta.nix ../meta.nix
../../extras/ssh.nix ../../extras/ssh.nix
../../extras/gpu.nix ../../extras/gpu.nix