infra/nix/modules/tailscale.nix

{config, ...}: {
  services.tailscale.enable = true;

  networking.firewall = {
    trustedInterfaces = [config.services.tailscale.interfaceName];
    allowedUDPPorts = [config.services.tailscale.port];
    # specifically for Tailscale.
    checkReversePath = "loose";
  };
}
nix: add loki system configuration 2023-10-15 22:16:06 +02:00			`{config, ...}: {`
			`services.tailscale.enable = true;`

			`networking.firewall = {`
			`trustedInterfaces = [config.services.tailscale.interfaceName];`
			`allowedUDPPorts = [config.services.tailscale.port];`
			`# specifically for Tailscale.`
			`checkReversePath = "loose";`
			`};`
			`}`