sourcehut: update patch

[sourcephile-nix.git] / hosts / losurdo / transmission.nix

diff --git a/hosts/losurdo/transmission.nix b/hosts/losurdo/transmission.nix
index 74e6861102d645e3354943a1d94333728f7396e7..5c38a39ff5a45466c5ce089e62d489eada9f04d8 100644 (file)
--- a/hosts/losurdo/transmission.nix
+++ b/hosts/losurdo/transmission.nix
@@ -1,9 +1,10 @@
-{ pkgs, lib, config, hostName, ... }:
+{ pkgs, lib, config, hostName, inputs, ... }:
 let
   inherit (config.services) transmission;
   inherit (config.users) users;
   inherit (config.security) gnupg;
   netns = "riseup";
+  wg-intra-hosts = import (inputs.julm-nix + "/networking/wireguard/wg-intra/hosts.nix");
 in
 {
 users.groups.transmission.members = [
@@ -38,7 +39,7 @@ systemd.services.transmission = {
 };
 systemd.sockets.proxy-to-transmission = {
   wantedBy = ["sockets.target"];
-  listenStreams = ["192.168.42.2:9091"];
+  listenStreams = ["${wg-intra-hosts.${hostName}.ipv4}:9091"];
   socketConfig.FreeBind = true;
 };
 systemd.services.proxy-to-transmission = {
@@ -104,7 +105,7 @@ services.transmission = {
     rpc-enabled = true;
     rpc-bind-address = "127.0.0.1";
     rpc-port = 9091;
-    rpc-whitelist = "127.0.0.1,192.168.42.0/24";
+    rpc-whitelist = "127.0.0.1,${wg-intra-hosts.${hostName}.ipv4}/24";
     rpc-whitelist-enabled = true;
     rpc-host-whitelist = "localhost,${hostName}.wg";
     rpc-host-whitelist-enabled = true;