diff --git a/nixos/hosts/nixos-vm-01/default.nix b/nixos/hosts/nixos-vm-01/default.nix index 1fa1d510..694506a5 100644 --- a/nixos/hosts/nixos-vm-01/default.nix +++ b/nixos/hosts/nixos-vm-01/default.nix @@ -24,5 +24,16 @@ useOSProber = true; }; + # Generic Tailscale configs are in /nixos/common/services/tailscale.nix + # Set up the secrets file: + sops.secrets.nixos-vm-01_tailscale_key = { + owner = "root"; + sopsFile = ../../../secrets/tailscale.yaml; + restartUnits = [ + "tailscaled.service" + "tailscaled-autoconnect.service" + ]; + }; + services.tailscale.authKeyFile = "/run/secrets/nixos-vm-01_tailscale_key"; networking.firewall.allowedTCPPorts = [ 22 ]; }