Oh, does host/localAddress work?

2024-06-04 10:01:15 -07:00 · 2024-06-04 10:01:15 -07:00 · 3d78628d2f
parent 2a983b0c19
commit 3d78628d2f
1 changed files with 4 additions and 14 deletions
--- a/paris-container.nix
+++ b/paris-container.nix
@ -161,27 +161,17 @@ in {
        target-file = "/run/paris/openssh/${keypairFilename keypair}";
      }) parisKeypairs));

-    networking = {
-      interfaces = {
-        auth0 = {
-          virtual = true;
-          ipv4.addresses = [{
-            address = "172.16.128.1";
-            prefixLength = 24;
-          }];
-        };
-      };
-    };
-
    virtualisation.oci-containers.containers.paris-ldap-proxy = {
      image = cfg.ldap.image;
      autoStart = true;
-      ports = [ "172.16.128.1:${toString cfg.ldap.port}:389" ];
+      ports = [ "172.16.31.1:${toString cfg.ldap.port}:389" ];
      environmentFiles = [ hostSecrets.parisLdapEnv.target-file ];
    };

    containers.paris = {
      macvlans = [ cfg.networking.interface "auth0" ];
+      hostAddress = "172.16.31.1";
+      localAddress = "172.16.31.2";
      bindMounts = {
        "/home" = {
          hostPath = "${cfg.state-directory}/home";
@ -244,7 +234,7 @@ in {
                auth_provider = "ldap";
                access_provider = "ldap";

-                ldap_uri = "ldap://172.16.128.1:${toString cfg.ldap.port}";
+                ldap_uri = "ldap://172.16.31.1:${toString cfg.ldap.port}";
                ldap_schema = "rfc2307bis";

                ldap_search_base = cfg.ldap.base;