oceanbox/platform
6
0
Fork 0
Code Issues 10 Pull Requests 1 Actions Packages Projects Releases Wiki Activity

feat: allow tailnet access

Browse Source
This commit is contained in:
Jonas Juselius
2025-09-25 12:16:42 +02:00
parent 2e919182d4
commit 46cf9da93f
1 changed files with 4 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
rossby/default.nix
View File

@@ -106,6 +106,7 @@ let
firewall.extraCommands = ''
iptables -I INPUT -s 172.16.239.0/24 -j ACCEPT
iptables -I INPUT -s 10.1.6.0/24 -j ACCEPT
iptables -I INPUT -s 10.64.0.0/24 -j ACCEPT
'';
};
@@ -142,13 +143,15 @@ let
enable = true;
client = true;
mungeKey = ./munge.key;
jwtKey = ./jwt_hs256.key;
mungeUid = mkDefault 994; # hack
# slurmUid = mkDefault 307; # hack
# pkey = "0x7666";
controlMachine = "rossby-manage";
mailDomain = "oceanbox.io";
nodeName = [
"c0-[1-20] Sockets=2 CoresPerSocket=64 ThreadsPerCore=2 RealMemory=382000 TmpDisk=400000 State=UNKNOWN"
"rossby-login Sockets=1 CoresPerSocket=64 ThreadsPerCore=2 RealMemory=60000 TmpDisk=400000 State=UNKNOWN"
"rossby-login Sockets=1 CoresPerSocket=64 ThreadsPerCore=2 RealMemory=40000 TmpDisk=400000 State=UNKNOWN"
"rossby-manage Sockets=1 CoresPerSocket=64 ThreadsPerCore=2 RealMemory=60000 TmpDisk=400000 State=UNKNOWN"
];
partitionName = [