Add fail2ban socket
This commit is contained in:
parent
34b9e9d24b
commit
58a2fc48b1
1 changed files with 3 additions and 0 deletions
|
|
@ -1,12 +1,14 @@
|
||||||
{ config, pkgs, hostname, ... }: {
|
{ config, pkgs, hostname, ... }: {
|
||||||
# Telegraf Monitoring
|
# Telegraf Monitoring
|
||||||
|
|
||||||
|
# Set up the secrets file for the token:
|
||||||
sops.secrets.telegraf-token = {
|
sops.secrets.telegraf-token = {
|
||||||
owner = "telegraf";
|
owner = "telegraf";
|
||||||
sopsFile = ../secrets/secrets.yaml;
|
sopsFile = ../secrets/secrets.yaml;
|
||||||
restartUnits = [ "telegraf.service" ];
|
restartUnits = [ "telegraf.service" ];
|
||||||
};
|
};
|
||||||
|
|
||||||
|
# Add telegraf to "wheel" to allow the use of sudo:
|
||||||
users.users.telegraf = {
|
users.users.telegraf = {
|
||||||
extraGroups = [ "wheel" ];
|
extraGroups = [ "wheel" ];
|
||||||
isSystemUser = true;
|
isSystemUser = true;
|
||||||
|
|
@ -69,6 +71,7 @@
|
||||||
system = {};
|
system = {};
|
||||||
fail2ban = {
|
fail2ban = {
|
||||||
use_sudo = true;
|
use_sudo = true;
|
||||||
|
socket = "/var/run/fail2ban/fail2ban.sock"
|
||||||
};
|
};
|
||||||
intel_powerstat = {};
|
intel_powerstat = {};
|
||||||
net = {};
|
net = {};
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue