moved cloud_flare_tunnel to a service

2026-04-17 04:58:19 -04:00 · 2025-02-03 12:31:38 -05:00
parent d3aa49f9e4
commit 60c3e3db20
4 changed files with 20 additions and 19 deletions
--- a/.vscode/settings.json
+++ b/.vscode/settings.json
@@ -22,6 +22,7 @@
    "automations",
    "autopull",
    "autotrim",
+    "autoupdate",
    "azuretools",
    "bantime",
    "bazarr",
--- a/systems/jeeves/docker/cloud_flare_tunnel.nix
+++ b/systems/jeeves/docker/cloud_flare_tunnel.nix
@@ -1,18 +0,0 @@
-let
-  vars = import ../vars.nix;
-in
-{
-  virtualisation.oci-containers.containers = {
-    cloud_flare_tunnel = {
-      image = "cloudflare/cloudflared:2025.1.1";
-      user = "600:600";
-      cmd = [
-        "tunnel"
-        "run"
-      ];
-      environmentFiles = ["${vars.storage_secrets}/docker/cloud_flare_tunnel"];
-      extraOptions = [ "--network=web" ];
-      autoStart = true;
-    };
-  };
-}
--- a/systems/jeeves/services/cloud_flare_tunnel.nix
+++ b/systems/jeeves/services/cloud_flare_tunnel.nix
@@ -0,0 +1,18 @@
+{ pkgs, ... }:
+let
+  vars = import ../vars.nix;
+in
+{
+  systemd.services.cloud_flare_tunnel = {
+    description = "cloud_flare_tunnel proxy's traffic through cloudflare";
+    after = [ "network.target" ];
+    wantedBy = [ "multi-user.target" ];
+    serviceConfig = {
+      Type = "simple";
+      EnvironmentFile = "${vars.storage_secrets}/docker/cloud_flare_tunnel";
+      ExecStart = "${pkgs.cloudflared}/bin/cloudflared --no-autoupdate tunnel run";
+      Restart = "on-failure";
+    };
+  };
+}
+
--- a/systems/jeeves/services/validate_system.toml
+++ b/systems/jeeves/services/validate_system.toml
@@ -1,7 +1,7 @@
 zpool = ["root_pool", "storage", "torrenting", "media"]
 services = [
    "audiobookshelf",
-    "docker-cloud_flare_tunnel",
+    "cloud_flare_tunnel",
    "haproxy",
    "docker-qbit",
    "docker-qbitvpn",