update: new urls, and 1 master 1 agent

2026-03-21 19:17:23 +00:00 · 2026-02-24 09:27:08 -05:00
parent b68b96e5c7
commit cf49edab5c
10 changed files with 99 additions and 68 deletions
--- a/modules/k3s.nix
+++ b/modules/k3s.nix
@@ -13,13 +13,20 @@ in {
      default = false;
      description = "Initialize cluster when set to true";
    };
+    role = mkOption {
+      type = types.str;
+      default = "server";
+    };
  };

  config = {
    services = {
      k3s = {
        enable = true;
-        role = "server";
+        role =
+          if cfg.init
+          then "server"
+          else cfg.role;
        clusterInit = cfg.init;
        serverAddr =
          if cfg.init
@@ -29,11 +36,17 @@ in {
          if cfg.init
          then ""
          else meta.k3sToken;
-        disable = ["traefik" "servicelb" "local-storage"];
-        extraFlags = [
-          "--kubelet-arg=allowed-unsafe-sysctls=net.ipv4.*"
-          "--write-kubeconfig-mode \"0644\""
-        ];
+        disable =
+          if cfg.init
+          then ["traefik" "servicelb" "local-storage"]
+          else [];
+        extraFlags =
+          if cfg.init
+          then [
+            "--kubelet-arg=allowed-unsafe-sysctls=net.ipv4.*"
+            "--write-kubeconfig-mode \"0644\""
+          ]
+          else [];
      };
    };
  };
--- a/modules/tailscale.nix
+++ b/modules/tailscale.nix
@@ -0,0 +1,12 @@
+{
+  config,
+  pkgs,
+  ...
+}: {
+  services.tailscale = {
+    enable = true;
+    useRoutingFeatures = "server";
+    extraSetFlags = [ "--advertise-exit-node" "--advertise-routes=10.0.0.0/8,192.168.18.0/24" ];
+    extraUpFlags = [ "--advertise-exit-node" "--advertise-routes=10.0.0.0/8,192.168.18.0/24" ];
+  };
+}