|
46 | 46 |
|
47 | 47 | If no keys are specified then ephemeral keys are generated |
48 | 48 | and the Yggdrasil interface will have a random IPv6 address |
49 | | - each time the service is started, this is the default. |
| 49 | + each time the service is started. This is the default. |
50 | 50 |
|
51 | 51 | If both {option}`configFile` and {option}`settings` |
52 | 52 | are supplied, they will be combined, with values from |
|
83 | 83 | type = bool; |
84 | 84 | default = false; |
85 | 85 | description = lib.mdDoc '' |
86 | | - Whether to open the UDP port used for multicast peer |
87 | | - discovery. The NixOS firewall blocks link-local |
88 | | - communication, so in order to make local peering work you |
89 | | - will also need to set `LinkLocalTCPPort` in your |
90 | | - yggdrasil configuration ({option}`settings` or |
91 | | - {option}`configFile`) to a port number other than 0, |
92 | | - and then add that port to |
93 | | - {option}`networking.firewall.allowedTCPPorts`. |
| 86 | + Whether to open the UDP port used for multicast peer discovery. The |
| 87 | + NixOS firewall blocks link-local communication, so in order to make |
| 88 | + incoming local peering work you will also need to configure |
| 89 | + `MulticastInterfaces` in your Yggdrasil configuration |
| 90 | + ({option}`settings` or {option}`configFile`). You will then have to |
| 91 | + add the ports that you configure there to your firewall configuration |
| 92 | + ({option}`networking.firewall.allowedTCPPorts` or |
| 93 | + {option}`networking.firewall.interfaces.<name>.allowedTCPPorts`). |
94 | 94 | ''; |
95 | 95 | }; |
96 | 96 |
|
|
0 commit comments