From 2447ae560b1ffc75d44fa2c2ac045ea9a62206d6 Mon Sep 17 00:00:00 2001
From: arcnmx <git@git.arcn.mx>
Date: Fri, 13 Sep 2024 16:47:53 -0700
Subject: [PATCH] feat(mediabox): tailscale

---
 ci/systems.json              | 6 +++++-
 systems/mediabox/default.nix | 7 +++++++
 systems/mediabox/lxc.json    | 1 +
 systems/mediabox/nixos.nix   | 1 +
 systems/reisen/systems.json  | 6 +++++-
 tf/proxmox_vms.tf            | 2 +-
 6 files changed, 20 insertions(+), 3 deletions(-)

diff --git a/ci/systems.json b/ci/systems.json
index 6d444662..5a968740 100644
--- a/ci/systems.json
+++ b/ci/systems.json
@@ -237,7 +237,11 @@
           "address6": "fd0a::be24:11ff:fe34:f4a8",
           "macAddress": "BC:24:11:34:F4:A8"
         },
-        "tail": null
+        "tail": {
+          "address4": "100.104.170.16",
+          "address6": "fd7a:115c:a1e0::ee01:aa11",
+          "macAddress": null
+        }
       }
     }
   },
diff --git a/systems/mediabox/default.nix b/systems/mediabox/default.nix
index 2662748d..cf11ae90 100644
--- a/systems/mediabox/default.nix
+++ b/systems/mediabox/default.nix
@@ -7,8 +7,15 @@ _: {
   modules = [
     ./nixos.nix
   ];
+  network.networks = {
+    tail = {
+      address4 = "100.104.170.16";
+      address6 = "fd7a:115c:a1e0::ee01:aa11";
+    };
+  };
   exports = {
     services = {
+      tailscale.enable = true;
       nginx = {
         enable = true;
         ports.proxied.enable = true;
diff --git a/systems/mediabox/lxc.json b/systems/mediabox/lxc.json
index 1f47dfbb..8dee9c77 100644
--- a/systems/mediabox/lxc.json
+++ b/systems/mediabox/lxc.json
@@ -5,6 +5,7 @@
 			"/mnt/kyuuto-media/downloads/deluge mnt/kyuuto-media/downloads/deluge none bind,optional,create=dir",
 			"/rpool/caches/plex mnt/caches/plex none bind,optional,create=dir",
 			"/rpool/shared/plex mnt/shared/plex none bind,optional,create=dir",
+			"/dev/net/tun dev/net/tun none bind,optional,create=file",
 			"/dev/kfd dev/kfd none bind,optional,create=file",
 			"/dev/dri/renderD128 dev/dri/renderD128 none bind,optional,create=file"
 		],
diff --git a/systems/mediabox/nixos.nix b/systems/mediabox/nixos.nix
index cbdee5d8..e79e4e29 100644
--- a/systems/mediabox/nixos.nix
+++ b/systems/mediabox/nixos.nix
@@ -22,6 +22,7 @@ in {
   in [
     nixos.reisen-ct
     nixos.sops
+    nixos.tailscale
     nixos.nginx
     nixos.access.plex
     nixos.access.deluge
diff --git a/systems/reisen/systems.json b/systems/reisen/systems.json
index eefc81cb..26603b66 100644
--- a/systems/reisen/systems.json
+++ b/systems/reisen/systems.json
@@ -143,7 +143,11 @@
           "address6": "fd0a::be24:11ff:fe34:f4a8",
           "macAddress": "BC:24:11:34:F4:A8"
         },
-        "tail": null
+        "tail": {
+          "address4": "100.104.170.16",
+          "address6": "fd7a:115c:a1e0::ee01:aa11",
+          "macAddress": null
+        }
       }
     }
   },
diff --git a/tf/proxmox_vms.tf b/tf/proxmox_vms.tf
index b1e5ff0e..a9be8c6a 100644
--- a/tf/proxmox_vms.tf
+++ b/tf/proxmox_vms.tf
@@ -142,7 +142,7 @@ EOT
 
   disk {
     datastore_id = "local-zfs"
-    size         = 30
+    size         = 35
   }
 
   initialization {