summary refs log tree commit diff stats
path: root/system/linde.nix
diff options
context:
space:
mode:
Diffstat (limited to 'system/linde.nix')
-rw-r--r--system/linde.nix6
1 files changed, 2 insertions, 4 deletions
diff --git a/system/linde.nix b/system/linde.nix
index 8e6635b6..bffa2645 100644
--- a/system/linde.nix
+++ b/system/linde.nix
@@ -13,7 +13,6 @@ let
   net-gw = "172.31.1.1";
   net-ip6 = "2a01:4f8:c012:23a4::1";
   net-rdnsip = "2a01:4f8:c012:23a4::53";
-  net-acmeip = "2a01:4f8:c012:23a4::715";
   net-mask6 = "64";
   net-gw6 = "fe80::1";
   domain = "alanpearce.eu";
@@ -39,6 +38,7 @@ in
         mode = "400";
         symlink = false;
       };
+    acme.file = ../secrets/acme.age;
     binarycache.file = ../secrets/binarycache.age;
     dex.file = ../secrets/dex.age;
     powerdns.file = ../secrets/powerdns.age;
@@ -162,7 +162,6 @@ in
       ${net-ip4} = [ "${hostname}.alanpearce.eu" hostname ];
       ${net-ip6} = [ "${hostname}.alanpearce.eu" hostname ];
       ${net-rdnsip} = [ "dns" ];
-      ${net-acmeip} = [ "acme" ];
     };
     firewall = {
       enable = true;
@@ -220,7 +219,6 @@ in
         address = [
           "${net-ip6}/${net-mask6}"
           "${net-rdnsip}/${net-mask6}"
-          "${net-acmeip}/${net-mask6}"
         ];
         addresses = [{
           Address = "${net-ip4}/${net-mask4}";
@@ -614,7 +612,7 @@ in
       email = "alan@alanpearce.eu";
       dnsProvider = "pdns";
       dnsResolver = "1.1.1.1:53";
-      credentialsFile = config.age.secrets.powerdns.path;
+      credentialsFile = config.age.secrets.acme.path;
       reloadServices = [ "caddy" ];
       validMinDays = 32;
     };
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-11-27 18:47:16 +0000