2021-12-05 21:56:22 +00:00
|
|
|
{ config, lib, options, pkgs, ... }:
|
2015-03-27 10:48:50 +00:00
|
|
|
|
|
|
|
with lib;
|
|
|
|
|
|
|
|
let
|
|
|
|
|
|
|
|
gid = config.ids.gids.mediatomb;
|
|
|
|
cfg = config.services.mediatomb;
|
2021-12-05 21:56:22 +00:00
|
|
|
opt = options.services.mediatomb;
|
2020-03-12 17:57:40 +00:00
|
|
|
name = cfg.package.pname;
|
|
|
|
pkg = cfg.package;
|
|
|
|
optionYesNo = option: if option then "yes" else "no";
|
2020-07-18 08:07:42 +00:00
|
|
|
# configuration on media directory
|
|
|
|
mediaDirectory = {
|
|
|
|
options = {
|
|
|
|
path = mkOption {
|
|
|
|
type = types.str;
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
Absolute directory path to the media directory to index.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
recursive = mkOption {
|
|
|
|
type = types.bool;
|
|
|
|
default = false;
|
|
|
|
description = lib.mdDoc "Whether the indexation must take place recursively or not.";
|
|
|
|
};
|
|
|
|
hidden-files = mkOption {
|
|
|
|
type = types.bool;
|
|
|
|
default = true;
|
|
|
|
description = lib.mdDoc "Whether to index the hidden files or not.";
|
|
|
|
};
|
|
|
|
};
|
|
|
|
};
|
|
|
|
toMediaDirectory = d: "<directory location=\"${d.path}\" mode=\"inotify\" recursive=\"${optionYesNo d.recursive}\" hidden-files=\"${optionYesNo d.hidden-files}\" />\n";
|
|
|
|
|
2020-07-18 08:05:15 +00:00
|
|
|
transcodingConfig = if cfg.transcoding then with pkgs; ''
|
|
|
|
<transcoding enabled="yes">
|
|
|
|
<mimetype-profile-mappings>
|
|
|
|
<transcode mimetype="video/x-flv" using="vlcmpeg" />
|
|
|
|
<transcode mimetype="application/ogg" using="vlcmpeg" />
|
|
|
|
<transcode mimetype="audio/ogg" using="ogg2mp3" />
|
|
|
|
<transcode mimetype="audio/x-flac" using="oggflac2raw"/>
|
|
|
|
</mimetype-profile-mappings>
|
|
|
|
<profiles>
|
|
|
|
<profile name="ogg2mp3" enabled="no" type="external">
|
|
|
|
<mimetype>audio/mpeg</mimetype>
|
|
|
|
<accept-url>no</accept-url>
|
|
|
|
<first-resource>yes</first-resource>
|
|
|
|
<accept-ogg-theora>no</accept-ogg-theora>
|
|
|
|
<agent command="${ffmpeg}/bin/ffmpeg" arguments="-y -i %in -f mp3 %out" />
|
|
|
|
<buffer size="1048576" chunk-size="131072" fill-size="262144" />
|
|
|
|
</profile>
|
|
|
|
<profile name="vlcmpeg" enabled="no" type="external">
|
|
|
|
<mimetype>video/mpeg</mimetype>
|
|
|
|
<accept-url>yes</accept-url>
|
|
|
|
<first-resource>yes</first-resource>
|
|
|
|
<accept-ogg-theora>yes</accept-ogg-theora>
|
|
|
|
<agent command="${libsForQt5.vlc}/bin/vlc"
|
|
|
|
arguments="-I dummy %in --sout #transcode{venc=ffmpeg,vcodec=mp2v,vb=4096,fps=25,aenc=ffmpeg,acodec=mpga,ab=192,samplerate=44100,channels=2}:standard{access=file,mux=ps,dst=%out} vlc:quit" />
|
|
|
|
<buffer size="14400000" chunk-size="512000" fill-size="120000" />
|
|
|
|
</profile>
|
|
|
|
</profiles>
|
|
|
|
</transcoding>
|
|
|
|
'' else ''
|
|
|
|
<transcoding enabled="no">
|
|
|
|
</transcoding>
|
|
|
|
'';
|
2015-03-27 10:48:50 +00:00
|
|
|
|
2020-07-18 18:58:30 +00:00
|
|
|
configText = optionalString (! cfg.customCfg) ''
|
2020-07-18 18:58:11 +00:00
|
|
|
<?xml version="1.0" encoding="UTF-8"?>
|
|
|
|
<config version="2" xmlns="http://mediatomb.cc/config/2" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://mediatomb.cc/config/2 http://mediatomb.cc/config/2.xsd">
|
2015-03-27 10:48:50 +00:00
|
|
|
<server>
|
|
|
|
<ui enabled="yes" show-tooltips="yes">
|
|
|
|
<accounts enabled="no" session-timeout="30">
|
2020-03-12 17:57:40 +00:00
|
|
|
<account user="${name}" password="${name}"/>
|
2015-03-27 10:48:50 +00:00
|
|
|
</accounts>
|
|
|
|
</ui>
|
|
|
|
<name>${cfg.serverName}</name>
|
|
|
|
<udn>uuid:${cfg.uuid}</udn>
|
|
|
|
<home>${cfg.dataDir}</home>
|
2020-03-12 17:57:40 +00:00
|
|
|
<interface>${cfg.interface}</interface>
|
|
|
|
<webroot>${pkg}/share/${name}/web</webroot>
|
2020-07-18 08:06:59 +00:00
|
|
|
<pc-directory upnp-hide="${optionYesNo cfg.pcDirectoryHide}"/>
|
2015-03-27 10:48:50 +00:00
|
|
|
<storage>
|
|
|
|
<sqlite3 enabled="yes">
|
2020-03-12 17:57:40 +00:00
|
|
|
<database-file>${name}.db</database-file>
|
2015-03-27 10:48:50 +00:00
|
|
|
</sqlite3>
|
|
|
|
</storage>
|
2020-03-12 17:57:40 +00:00
|
|
|
<protocolInfo extend="${optionYesNo cfg.ps3Support}"/>
|
2020-07-18 08:06:59 +00:00
|
|
|
${optionalString cfg.dsmSupport ''
|
2015-03-27 10:48:50 +00:00
|
|
|
<custom-http-headers>
|
|
|
|
<add header="X-User-Agent: redsonic"/>
|
|
|
|
</custom-http-headers>
|
|
|
|
|
|
|
|
<manufacturerURL>redsonic.com</manufacturerURL>
|
|
|
|
<modelNumber>105</modelNumber>
|
2020-03-12 17:57:40 +00:00
|
|
|
''}
|
|
|
|
${optionalString cfg.tg100Support ''
|
2015-03-27 10:48:50 +00:00
|
|
|
<upnp-string-limit>101</upnp-string-limit>
|
2020-03-12 17:57:40 +00:00
|
|
|
''}
|
2015-03-27 10:48:50 +00:00
|
|
|
<extended-runtime-options>
|
|
|
|
<mark-played-items enabled="yes" suppress-cds-updates="yes">
|
|
|
|
<string mode="prepend">*</string>
|
|
|
|
<mark>
|
|
|
|
<content>video</content>
|
|
|
|
</mark>
|
|
|
|
</mark-played-items>
|
|
|
|
</extended-runtime-options>
|
|
|
|
</server>
|
|
|
|
<import hidden-files="no">
|
2020-07-18 08:07:42 +00:00
|
|
|
<autoscan use-inotify="auto">
|
|
|
|
${concatMapStrings toMediaDirectory cfg.mediaDirectories}
|
|
|
|
</autoscan>
|
2015-03-27 10:48:50 +00:00
|
|
|
<scripting script-charset="UTF-8">
|
2020-03-12 17:57:40 +00:00
|
|
|
<common-script>${pkg}/share/${name}/js/common.js</common-script>
|
|
|
|
<playlist-script>${pkg}/share/${name}/js/playlists.js</playlist-script>
|
2015-03-27 10:48:50 +00:00
|
|
|
<virtual-layout type="builtin">
|
2020-03-12 17:57:40 +00:00
|
|
|
<import-script>${pkg}/share/${name}/js/import.js</import-script>
|
2015-03-27 10:48:50 +00:00
|
|
|
</virtual-layout>
|
|
|
|
</scripting>
|
|
|
|
<mappings>
|
|
|
|
<extension-mimetype ignore-unknown="no">
|
|
|
|
<map from="mp3" to="audio/mpeg"/>
|
|
|
|
<map from="ogx" to="application/ogg"/>
|
|
|
|
<map from="ogv" to="video/ogg"/>
|
|
|
|
<map from="oga" to="audio/ogg"/>
|
|
|
|
<map from="ogg" to="audio/ogg"/>
|
|
|
|
<map from="ogm" to="video/ogg"/>
|
|
|
|
<map from="asf" to="video/x-ms-asf"/>
|
|
|
|
<map from="asx" to="video/x-ms-asf"/>
|
|
|
|
<map from="wma" to="audio/x-ms-wma"/>
|
|
|
|
<map from="wax" to="audio/x-ms-wax"/>
|
|
|
|
<map from="wmv" to="video/x-ms-wmv"/>
|
|
|
|
<map from="wvx" to="video/x-ms-wvx"/>
|
|
|
|
<map from="wm" to="video/x-ms-wm"/>
|
|
|
|
<map from="wmx" to="video/x-ms-wmx"/>
|
|
|
|
<map from="m3u" to="audio/x-mpegurl"/>
|
|
|
|
<map from="pls" to="audio/x-scpls"/>
|
|
|
|
<map from="flv" to="video/x-flv"/>
|
|
|
|
<map from="mkv" to="video/x-matroska"/>
|
|
|
|
<map from="mka" to="audio/x-matroska"/>
|
2020-03-12 17:57:40 +00:00
|
|
|
${optionalString cfg.ps3Support ''
|
2015-03-27 10:48:50 +00:00
|
|
|
<map from="avi" to="video/divx"/>
|
2020-03-12 17:57:40 +00:00
|
|
|
''}
|
|
|
|
${optionalString cfg.dsmSupport ''
|
2015-03-27 10:48:50 +00:00
|
|
|
<map from="avi" to="video/avi"/>
|
2020-03-12 17:57:40 +00:00
|
|
|
''}
|
2015-03-27 10:48:50 +00:00
|
|
|
</extension-mimetype>
|
|
|
|
<mimetype-upnpclass>
|
|
|
|
<map from="audio/*" to="object.item.audioItem.musicTrack"/>
|
|
|
|
<map from="video/*" to="object.item.videoItem"/>
|
|
|
|
<map from="image/*" to="object.item.imageItem"/>
|
|
|
|
</mimetype-upnpclass>
|
|
|
|
<mimetype-contenttype>
|
|
|
|
<treat mimetype="audio/mpeg" as="mp3"/>
|
|
|
|
<treat mimetype="application/ogg" as="ogg"/>
|
|
|
|
<treat mimetype="audio/ogg" as="ogg"/>
|
|
|
|
<treat mimetype="audio/x-flac" as="flac"/>
|
|
|
|
<treat mimetype="audio/x-ms-wma" as="wma"/>
|
|
|
|
<treat mimetype="audio/x-wavpack" as="wv"/>
|
|
|
|
<treat mimetype="image/jpeg" as="jpg"/>
|
|
|
|
<treat mimetype="audio/x-mpegurl" as="playlist"/>
|
|
|
|
<treat mimetype="audio/x-scpls" as="playlist"/>
|
|
|
|
<treat mimetype="audio/x-wav" as="pcm"/>
|
|
|
|
<treat mimetype="audio/L16" as="pcm"/>
|
|
|
|
<treat mimetype="video/x-msvideo" as="avi"/>
|
|
|
|
<treat mimetype="video/mp4" as="mp4"/>
|
|
|
|
<treat mimetype="audio/mp4" as="mp4"/>
|
|
|
|
<treat mimetype="application/x-iso9660" as="dvd"/>
|
|
|
|
<treat mimetype="application/x-iso9660-image" as="dvd"/>
|
|
|
|
</mimetype-contenttype>
|
|
|
|
</mappings>
|
|
|
|
<online-content>
|
|
|
|
<YouTube enabled="no" refresh="28800" update-at-start="no" purge-after="604800" racy-content="exclude" format="mp4" hd="no">
|
2020-03-12 17:57:40 +00:00
|
|
|
<favorites user="${name}"/>
|
2015-03-27 10:48:50 +00:00
|
|
|
<standardfeed feed="most_viewed" time-range="today"/>
|
2020-03-12 17:57:40 +00:00
|
|
|
<playlists user="${name}"/>
|
|
|
|
<uploads user="${name}"/>
|
2015-03-27 10:48:50 +00:00
|
|
|
<standardfeed feed="recently_featured" time-range="today"/>
|
|
|
|
</YouTube>
|
|
|
|
</online-content>
|
|
|
|
</import>
|
2020-07-18 08:05:15 +00:00
|
|
|
${transcodingConfig}
|
2015-03-27 10:48:50 +00:00
|
|
|
</config>
|
2020-07-18 08:05:15 +00:00
|
|
|
'';
|
2020-07-20 06:47:16 +00:00
|
|
|
defaultFirewallRules = {
|
|
|
|
# udp 1900 port needs to be opened for SSDP (not configurable within
|
|
|
|
# mediatomb/gerbera) cf.
|
|
|
|
# http://docs.gerbera.io/en/latest/run.html?highlight=udp%20port#network-setup
|
|
|
|
allowedUDPPorts = [ 1900 cfg.port ];
|
|
|
|
allowedTCPPorts = [ cfg.port ];
|
|
|
|
};
|
2015-03-27 10:48:50 +00:00
|
|
|
|
|
|
|
in {
|
|
|
|
|
|
|
|
###### interface
|
|
|
|
|
|
|
|
options = {
|
|
|
|
|
|
|
|
services.mediatomb = {
|
|
|
|
|
|
|
|
enable = mkOption {
|
|
|
|
type = types.bool;
|
|
|
|
default = false;
|
|
|
|
description = lib.mdDoc ''
|
2020-03-12 17:57:40 +00:00
|
|
|
Whether to enable the Gerbera/Mediatomb DLNA server.
|
2015-03-27 10:48:50 +00:00
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
serverName = mkOption {
|
2019-08-08 20:48:27 +00:00
|
|
|
type = types.str;
|
2020-03-12 17:57:40 +00:00
|
|
|
default = "Gerbera (Mediatomb)";
|
2015-03-27 10:48:50 +00:00
|
|
|
description = lib.mdDoc ''
|
|
|
|
How to identify the server on the network.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
2020-03-12 17:57:40 +00:00
|
|
|
package = mkOption {
|
|
|
|
type = types.package;
|
|
|
|
default = pkgs.gerbera;
|
2021-10-03 16:06:03 +00:00
|
|
|
defaultText = literalExpression "pkgs.gerbera";
|
2020-03-12 17:57:40 +00:00
|
|
|
description = lib.mdDoc ''
|
2021-10-03 16:06:03 +00:00
|
|
|
Underlying package to be used with the module.
|
2020-03-12 17:57:40 +00:00
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
2015-03-27 10:48:50 +00:00
|
|
|
ps3Support = mkOption {
|
|
|
|
type = types.bool;
|
|
|
|
default = false;
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
Whether to enable ps3 specific tweaks.
|
|
|
|
WARNING: incompatible with DSM 320 support.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
dsmSupport = mkOption {
|
|
|
|
type = types.bool;
|
|
|
|
default = false;
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
Whether to enable D-Link DSM 320 specific tweaks.
|
|
|
|
WARNING: incompatible with ps3 support.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
tg100Support = mkOption {
|
|
|
|
type = types.bool;
|
|
|
|
default = false;
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
Whether to enable Telegent TG100 specific tweaks.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
transcoding = mkOption {
|
|
|
|
type = types.bool;
|
|
|
|
default = false;
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
Whether to enable transcoding.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
dataDir = mkOption {
|
|
|
|
type = types.path;
|
2020-03-12 17:57:40 +00:00
|
|
|
default = "/var/lib/${name}";
|
2021-12-05 21:56:22 +00:00
|
|
|
defaultText = literalExpression ''"/var/lib/''${config.${opt.package}.pname}"'';
|
2015-03-27 10:48:50 +00:00
|
|
|
description = lib.mdDoc ''
|
2020-10-08 13:59:41 +00:00
|
|
|
The directory where Gerbera/Mediatomb stores its state, data, etc.
|
2015-03-27 10:48:50 +00:00
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
2020-07-18 08:06:59 +00:00
|
|
|
pcDirectoryHide = mkOption {
|
|
|
|
type = types.bool;
|
|
|
|
default = true;
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
Whether to list the top-level directory or not (from upnp client standpoint).
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
2015-03-27 10:48:50 +00:00
|
|
|
user = mkOption {
|
2020-07-18 18:58:11 +00:00
|
|
|
type = types.str;
|
2015-03-27 10:48:50 +00:00
|
|
|
default = "mediatomb";
|
2021-12-05 20:58:27 +00:00
|
|
|
description = lib.mdDoc "User account under which the service runs.";
|
2015-03-27 10:48:50 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
group = mkOption {
|
2020-07-18 18:58:11 +00:00
|
|
|
type = types.str;
|
2015-03-27 10:48:50 +00:00
|
|
|
default = "mediatomb";
|
2021-12-05 20:58:27 +00:00
|
|
|
description = lib.mdDoc "Group account under which the service runs.";
|
2015-03-27 10:48:50 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
port = mkOption {
|
2022-11-30 16:15:00 +00:00
|
|
|
type = types.port;
|
2015-03-27 10:48:50 +00:00
|
|
|
default = 49152;
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
The network port to listen on.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
2015-06-13 15:14:47 +00:00
|
|
|
interface = mkOption {
|
2020-07-18 18:58:11 +00:00
|
|
|
type = types.str;
|
2015-06-13 15:14:47 +00:00
|
|
|
default = "";
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
A specific interface to bind to.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
2020-07-20 06:47:16 +00:00
|
|
|
openFirewall = mkOption {
|
|
|
|
type = types.bool;
|
|
|
|
default = false;
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
If false (the default), this is up to the user to declare the firewall rules.
|
2020-10-08 13:59:41 +00:00
|
|
|
If true, this opens port 1900 (tcp and udp) and the port specified by
|
|
|
|
{option}`sercvices.mediatomb.port`.
|
|
|
|
|
|
|
|
If the option {option}`services.mediatomb.interface` is set,
|
|
|
|
the firewall rules opened are dedicated to that interface. Otherwise,
|
|
|
|
those rules are opened globally.
|
2020-07-20 06:47:16 +00:00
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
2015-03-27 10:48:50 +00:00
|
|
|
uuid = mkOption {
|
2020-07-18 18:58:11 +00:00
|
|
|
type = types.str;
|
2015-03-27 10:48:50 +00:00
|
|
|
default = "fdfc8a4e-a3ad-4c1d-b43d-a2eedb03a687";
|
|
|
|
description = lib.mdDoc ''
|
|
|
|
A unique (on your network) to identify the server by.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
2020-07-18 08:07:42 +00:00
|
|
|
mediaDirectories = mkOption {
|
|
|
|
type = with types; listOf (submodule mediaDirectory);
|
2021-10-03 16:06:03 +00:00
|
|
|
default = [];
|
2020-07-18 08:07:42 +00:00
|
|
|
description = lib.mdDoc ''
|
|
|
|
Declare media directories to index.
|
|
|
|
'';
|
|
|
|
example = [
|
|
|
|
{ path = "/data/pictures"; recursive = false; hidden-files = false; }
|
|
|
|
{ path = "/data/audio"; recursive = true; hidden-files = false; }
|
|
|
|
];
|
|
|
|
};
|
|
|
|
|
2015-03-27 10:48:50 +00:00
|
|
|
customCfg = mkOption {
|
|
|
|
type = types.bool;
|
|
|
|
default = false;
|
|
|
|
description = lib.mdDoc ''
|
2021-12-05 20:58:27 +00:00
|
|
|
Allow the service to create and use its own config file inside the `dataDir` as
|
2020-10-08 13:59:41 +00:00
|
|
|
configured by {option}`services.mediatomb.dataDir`.
|
2020-03-12 17:57:40 +00:00
|
|
|
Deactivated by default, the service then runs with the configuration generated from this module.
|
|
|
|
Otherwise, when enabled, no service configuration is generated. Gerbera/Mediatomb then starts using
|
2020-10-08 13:59:41 +00:00
|
|
|
config.xml within the configured `dataDir`. It's up to the user to make a correct
|
|
|
|
configuration file.
|
2015-03-27 10:48:50 +00:00
|
|
|
'';
|
|
|
|
};
|
2020-07-20 06:47:16 +00:00
|
|
|
|
2015-03-27 10:48:50 +00:00
|
|
|
};
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
###### implementation
|
|
|
|
|
2020-07-18 18:58:30 +00:00
|
|
|
config = let binaryCommand = "${pkg}/bin/${name}";
|
|
|
|
interfaceFlag = optionalString ( cfg.interface != "") "--interface ${cfg.interface}";
|
|
|
|
configFlag = optionalString (! cfg.customCfg) "--config ${pkgs.writeText "config.xml" configText}";
|
|
|
|
in mkIf cfg.enable {
|
|
|
|
systemd.services.mediatomb = {
|
2020-03-12 17:57:40 +00:00
|
|
|
description = "${cfg.serverName} media Server";
|
2022-01-22 23:36:02 +00:00
|
|
|
# Gerbera might fail if the network interface is not available on startup
|
|
|
|
# https://github.com/gerbera/gerbera/issues/1324
|
|
|
|
after = [ "network.target" "network-online.target" ];
|
2015-03-27 10:48:50 +00:00
|
|
|
wantedBy = [ "multi-user.target" ];
|
2020-07-18 18:58:30 +00:00
|
|
|
serviceConfig.ExecStart = "${binaryCommand} --port ${toString cfg.port} ${interfaceFlag} ${configFlag} --home ${cfg.dataDir}";
|
2020-07-18 18:58:11 +00:00
|
|
|
serviceConfig.User = cfg.user;
|
2022-02-18 12:13:05 +00:00
|
|
|
serviceConfig.Group = cfg.group;
|
2015-03-27 10:48:50 +00:00
|
|
|
};
|
|
|
|
|
2019-09-14 17:51:29 +00:00
|
|
|
users.groups = optionalAttrs (cfg.group == "mediatomb") {
|
|
|
|
mediatomb.gid = gid;
|
|
|
|
};
|
2015-03-27 10:48:50 +00:00
|
|
|
|
2019-09-14 17:51:29 +00:00
|
|
|
users.users = optionalAttrs (cfg.user == "mediatomb") {
|
|
|
|
mediatomb = {
|
|
|
|
isSystemUser = true;
|
|
|
|
group = cfg.group;
|
2020-07-18 18:58:11 +00:00
|
|
|
home = cfg.dataDir;
|
2019-09-14 17:51:29 +00:00
|
|
|
createHome = true;
|
2020-03-12 17:57:40 +00:00
|
|
|
description = "${name} DLNA Server User";
|
2019-09-14 17:51:29 +00:00
|
|
|
};
|
|
|
|
};
|
2015-03-27 10:48:50 +00:00
|
|
|
|
2020-07-20 06:47:16 +00:00
|
|
|
# Open firewall only if users enable it
|
|
|
|
networking.firewall = mkMerge [
|
|
|
|
(mkIf (cfg.openFirewall && cfg.interface != "") {
|
|
|
|
interfaces."${cfg.interface}" = defaultFirewallRules;
|
|
|
|
})
|
|
|
|
(mkIf (cfg.openFirewall && cfg.interface == "") defaultFirewallRules)
|
|
|
|
];
|
2015-03-27 10:48:50 +00:00
|
|
|
};
|
|
|
|
}
|