mirrors_public/oddlama_nix-config
1
1
Fork 1
mirror of https://github.com/oddlama/nix-config.git synced 2025-10-11 07:10:39 +02:00
Code Activity

feat: preferably bind to 0.0.0.0 in vms to remove issues with wireguard

Browse source 
coming up late; also increase default vm memory to 2G
This commit is contained in:
oddlama 2023-08-17 17:10:14 +02:00
parent af066925b4
commit f29318a5ac
No known key found for this signature in database
GPG key ID: 14EFE510775FE39A
9 changed files with 30 additions and 52 deletions
Download patch file Download diff file Expand all files Collapse all files

8
hosts/ward/microvms/influxdb.nix
View file

@ -2,7 +2,6 @@
config,
lib,
nodes,
utils,
pkgs,
...
}: let
@ -18,7 +17,7 @@ in {
services.nginx = {
upstreams.influxdb = {
servers."${config.services.influxdb2.settings.http-bind-address}" = {};
servers."${config.meta.wireguard.proxy-sentinel.ipv4}:${toString influxdbPort}" = {};
extraConfig = ''
zone influxdb 64k;
keepalive 2;
@ -74,7 +73,7 @@ in {
enable = true;
settings = {
reporting-disabled = true;
http-bind-address = "${config.meta.wireguard.proxy-sentinel.ipv4}:${toString influxdbPort}";
http-bind-address = "0.0.0.0:${toString influxdbPort}";
};
provision = {
enable = true;
@ -100,6 +99,5 @@ in {
environment.systemPackages = [pkgs.influxdb2-cli];
# Do NOT configure RestartSec here, this must be left short to allow token manipulation
systemd.services.influxdb2.after = ["sys-subsystem-net-devices-${utils.escapeSystemdPath "proxy-sentinel"}.device"];
systemd.services.grafana.serviceConfig.RestartSec = "600"; # Retry every 10 minutes
}