penal-colony/nixos-vps
2
0
Fork 1
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity Actions
nixos-vps/modules
History
Franz Kafka 1c28db5f8e feat(headscale): add self-hosted Tailscale control server 
New module: modules/headscale.nix
- Headscale service listening on localhost with Nginx reverse proxy
- SQLite database (appropriate for personal use)
- Tailscale public DERP relays for NAT traversal fallback
- MagicDNS enabled with Mullvad/Quad9 upstream resolvers
- Optional OIDC authentication (Google, GitHub, etc.)
- Default auth: pre-shared API keys (headscale apikeys create)
- Added to backup paths (SQLite DB)
- headscale CLI tool added to system packages

Configuration:
- Domain: vpn.ashisgreat.xyz
- OIDC disabled by default (documented how to enable in configuration.nix)

To register a device after deploying:
  sudo headscale apikeys create
  tailscale up --login-server=https://vpn.ashisgreat.xyz --authkey=<key>

DNS record needed: vpn.ashisgreat.xyz → VPS IP
2026-03-19 15:39:56 +00:00
..
adguard.nix Allow AdGuard Home to read ACME certificates via ReadOnlyPaths 2026-03-18 22:12:28 +01:00
backup.nix feat: add backup module with Restic + Backblaze B2 2026-03-18 14:11:11 +01:00
crowdsec.nix Fix CrowdSec GeoIP filter syntax 2026-03-18 21:54:34 +01:00
default.nix feat(headscale): add self-hosted Tailscale control server 2026-03-19 15:39:56 +00:00
forgejo.nix feat(nginx): add security headers with per-domain CSP 2026-03-19 13:42:41 +00:00
headscale.nix feat(headscale): add self-hosted Tailscale control server 2026-03-19 15:39:56 +00:00
nginx.nix feat(nginx): add security headers with per-domain CSP 2026-03-19 13:42:41 +00:00
openclaw-config.json Add Brave Search web search to OpenClaw 2026-03-18 02:50:09 +01:00
openclaw-podman.nix Fix OpenClaw config volume path to /home/node 2026-03-18 01:47:37 +01:00
podman.nix Add modular service configuration with SearXNG and Nginx 2026-03-17 19:47:43 +01:00
searxng.nix Simplify SearXNG module to use root-based podman 2026-03-17 20:17:20 +01:00
system.nix Add auto-update and maintenance options to system module 2026-03-19 00:03:58 +01:00
vaultwarden.nix feat(nginx): add security headers with per-domain CSP 2026-03-19 13:42:41 +00:00