sercanto/mio-ops
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Activity

transmission: production config

Browse source
This commit is contained in:
Serĉanto de Scio 2021-06-01 08:35:51 +10:00
parent 18a5dca1c5
commit fa7090afba
Signed by: sercanto
GPG key ID: 7DBA9F5689EFB6AA
2 changed files with 14 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
hosts/paidh-dha.nix
View file

@ -5,6 +5,8 @@
{ {
imports = [ imports = [
../networks/pi3B_rack.nix ../networks/pi3B_rack.nix
../profiles/transmission.nix
../secrets/transmission.nix
]; ];
# Comment out deployment when building the SD Image. # Comment out deployment when building the SD Image.

14
profiles/transmission.nix
View file

@ -6,10 +6,17 @@
services = { services = {
transmission = { transmission = {
enable = true; # Enable Transmission enable = true; # Enable Transmission
credentialsFile = "/run/keys/transmission"; # Authentication secrets
settings = {
rpc-authentication-required = true; # Enforce authentication
rpc-bind-address = "0.0.0.0"; # Listen on all interfaces
rpc-whitelist = "127.0.0.1,10.42.0.*"; # Allow hosts on the LAN
};
}; };
cron = { cron = {
enable = true; enable = true;
# Run transmission while everyone's asleep
systemCronJobs = [ systemCronJobs = [
"55 0 * * * transmission systemctl enable transmission-daemon" "55 0 * * * transmission systemctl enable transmission-daemon"
"00 1 * * * transmission systemctl start transmission-daemon" "00 1 * * * transmission systemctl start transmission-daemon"
@ -19,6 +26,9 @@
}; };
}; };
networking.firewall.allowedTCPPorts = [ 9091 ]; # Open the required firewall ports networking.firewall.allowedTCPPorts = [ 9091 ]; # Open the rpc firewall port
# Allow transmission to read the secrets keys
users.groups.keys.members = [ "transmission" ];
} }