feat[server]: add firezone

2026-04-14 21:29:12 +02:00 · 2026-01-01 02:30:10 +01:00 · 2026-01-01 02:30:10 +01:00 · 4da9291223
commit 4da9291223
parent c8f7739326
69 changed files with 2415 additions and 1132 deletions
--- a/modules/nixos/client/firezone-client.nix
+++ b/modules/nixos/client/firezone-client.nix
@ -0,0 +1,15 @@
+{ lib, config, ... }:
+let
+  moduleName = "firezone-client";
+  inherit (config.swarselsystems) mainUser;
+in
+{
+  options.swarselmodules.${moduleName} = lib.mkEnableOption "${moduleName} settings";
+  config = lib.mkIf config.swarselmodules.${moduleName} {
+    services.firezone.gui-client = {
+      enable = true;
+      inherit (config.node) name;
+      allowedUsers = [ mainUser ];
+    };
+  };
+}
--- a/modules/nixos/client/network.nix
+++ b/modules/nixos/client/network.nix
@ -47,8 +47,10 @@ in
      };
    };

+    services.resolved.enable = true;
+
    networking = {
-      inherit (config.swarselsystems) hostName;
+      hostName = config.node.name;
      hosts = {
        "${globals.networks.home-lan.hosts.winters.ipv4}" = [ globals.services.transmission.domain ];
      };
@ -80,9 +82,11 @@ in
        ];
      };

+
      networkmanager = {
        enable = true;
        wifi.backend = "iwd";
+        dns = "systemd-resolved";
        plugins = [
          # list of plugins: https://search.nixos.org/packages?query=networkmanager-
          # docs https://networkmanager.dev/docs/vpn/