Moved all machines to defines, and styles
parent
f98417eded
commit
d40578487e
@ -0,0 +1 @@
|
|||||||
|
/home/nmetz/Code/metznet-channel/pki/dh.pem
|
@ -1,26 +0,0 @@
|
|||||||
(define-module (machines ldap.metznet.ca)
|
|
||||||
#:use-module (gnu system)
|
|
||||||
#:use-module (guix gexp)
|
|
||||||
#:use-module (system base-system)
|
|
||||||
#:use-module (gnu packages slapd)
|
|
||||||
#:use-module (gnu services)
|
|
||||||
#:use-module (gnu services certbot)
|
|
||||||
#:use-module (gnu services slapd))
|
|
||||||
|
|
||||||
(operating-system
|
|
||||||
(inherit %metznet-base-server-system)
|
|
||||||
(host-name "ldap.guix.metznet.ca")
|
|
||||||
(services
|
|
||||||
(append (list (service certbot-service-type
|
|
||||||
(certbot-configuration (email "admin@metznet.ca")
|
|
||||||
(certificates (list (certificate-configuration
|
|
||||||
(domains '
|
|
||||||
("ldap.guix.metznet.ca")))))))
|
|
||||||
(service slapd-service-type
|
|
||||||
(slapd-configuration (uris
|
|
||||||
"ldap:// ldapi:// ldaps:// ldapis://")
|
|
||||||
(backups (list (local-file
|
|
||||||
"0.ldif")
|
|
||||||
(local-file
|
|
||||||
"1.ldif"))))))
|
|
||||||
%metznet-server-services)))
|
|
@ -0,0 +1,29 @@
|
|||||||
|
(define-module (machines ldap)
|
||||||
|
#:use-module (gnu system)
|
||||||
|
#:use-module (guix gexp)
|
||||||
|
#:use-module (system base-system)
|
||||||
|
#:use-module (gnu packages slapd)
|
||||||
|
#:use-module (gnu services)
|
||||||
|
#:use-module (gnu services certbot)
|
||||||
|
#:use-module (gnu services slapd)
|
||||||
|
|
||||||
|
#:export (ldap.metznet.ca))
|
||||||
|
|
||||||
|
(define-public ldap.metznet.ca
|
||||||
|
(operating-system
|
||||||
|
(inherit %metznet-base-server-system)
|
||||||
|
(host-name "ldap.guix.metznet.ca")
|
||||||
|
(services
|
||||||
|
(append (list (service certbot-service-type
|
||||||
|
(certbot-configuration (email "admin@metznet.ca")
|
||||||
|
(certificates (list (certificate-configuration
|
||||||
|
(domains '
|
||||||
|
("ldap.guix.metznet.ca")))))))
|
||||||
|
(service slapd-service-type
|
||||||
|
(slapd-configuration (uris
|
||||||
|
"ldap:// ldapi:// ldaps:// ldapis://")
|
||||||
|
(backups (list (local-file
|
||||||
|
"0.ldif")
|
||||||
|
(local-file
|
||||||
|
"1.ldif"))))))
|
||||||
|
%metznet-server-services))))
|
@ -1,29 +1,32 @@
|
|||||||
(define-module (machines vpn)
|
(define-module (machines vpn)
|
||||||
#:use-module (guix gexp)
|
#:use-module (guix gexp)
|
||||||
#:use-module (gnu system)
|
#:use-module (gnu system)
|
||||||
#:use-module (gnu services)
|
#:use-module (gnu services)
|
||||||
#:use-module (gnu services certbot)
|
#:use-module (gnu services certbot)
|
||||||
#:use-module (gnu services vpn)
|
#:use-module (gnu services vpn)
|
||||||
#:use-module (system base-system)
|
#:use-module (system base-system)
|
||||||
|
|
||||||
#:export (vpn.metznet.ca))
|
#:export (vpn.metznet.ca))
|
||||||
|
|
||||||
(define-public vpn.metznet.ca
|
(define-public vpn.metznet.ca
|
||||||
(operating-system
|
(operating-system
|
||||||
(inherit %metznet-base-server-system)
|
(inherit %metznet-base-server-system)
|
||||||
(host-name "vpn.metznet.ca")
|
(host-name "vpn.metznet.ca")
|
||||||
(services
|
(services
|
||||||
(append (list (service openvpn-server-service-type
|
(append (list (service openvpn-server-service-type
|
||||||
(openvpn-server-configuration
|
(openvpn-server-configuration (tls-auth
|
||||||
(tls-auth "/etc/openvpn/ta.key")
|
"/etc/openvpn/ta.key")
|
||||||
(server "10.0.80.0 255.255.255.0")))
|
(server
|
||||||
|
"10.0.80.0 255.255.255.0")))
|
||||||
|
|
||||||
(simple-service 'vpn-server-etc etc-service-type
|
(simple-service 'vpn-server-etc etc-service-type
|
||||||
`(("openvpn/dh2048.pem" ,(local-file "dh2048.pem"))))
|
`(("openvpn/dh2048.pem" ,(local-file
|
||||||
(service certbot-service-type
|
"dh2048.pem"))))
|
||||||
(certbot-configuration (email "admin@metznet.ca")
|
(service certbot-service-type
|
||||||
(certificates (list (certificate-configuration
|
(certbot-configuration (email "admin@metznet.ca")
|
||||||
(domains '
|
(certificates (list (certificate-configuration
|
||||||
("vpn.metznet.ca"))))))))
|
(domains '
|
||||||
(modify-services %metznet-server-services (delete openvpn-client-service-type))))))
|
("vpn.metznet.ca"))))))))
|
||||||
|
(modify-services %metznet-server-services
|
||||||
|
(delete openvpn-client-service-type))))))
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue