nixos/sslh: refactor for RFC42

author: rnhmjoj <rnhmjoj@inventati.org> 2023-07-25 08:19:43 +0200
committer: rnhmjoj <rnhmjoj@inventati.org> 2023-10-29 18:13:37 +0100
commit: 3728338d4039a925c1c131a4f305d32c04cc3657 (patch)
tree: 431822c0863696e235cb45c7859fd3062fdaf464 /nixos/tests/sslh.nix
parent: edb4422d730b57bdab3a1a886b8ec6b84b581020 (diff)
1 files changed, 5 insertions, 13 deletions
diff --git a/nixos/tests/sslh.nix b/nixos/tests/sslh.nix
index 17094606e8e6b..30ffd389d4422 100644
--- a/nixos/tests/sslh.nix
+++ b/nixos/tests/sslh.nix
@@ -10,21 +10,13 @@ import ./make-test-python.nix {
           prefixLength = 64;
         }
       ];
-      # sslh is really slow when reverse dns does not work
-      networking.hosts = {
-        "fe00:aa:bb:cc::2" = [ "server" ];
-        "fe00:aa:bb:cc::1" = [ "client" ];
-      };
       services.sslh = {
         enable = true;
-        transparent = true;
-        appendConfig = ''
-          protocols:
-          (
-            { name: "ssh"; service: "ssh"; host: "localhost"; port: "22"; probe: "builtin"; },
-            { name: "http"; host: "localhost"; port: "80"; probe: "builtin"; },
-          );
-        '';
+        settings.transparent = true;
+        settings.protocols = [
+          { name = "ssh"; service = "ssh"; host = "localhost"; port = "22"; probe = "builtin"; }
+          { name = "http"; host = "localhost"; port = "80"; probe = "builtin"; }
+        ];
       };
       services.openssh.enable = true;
       users.users.root.openssh.authorizedKeys.keyFiles = [ ./initrd-network-ssh/id_ed25519.pub ];
author	rnhmjoj <rnhmjoj@inventati.org>	2023-07-25 08:19:43 +0200
committer	rnhmjoj <rnhmjoj@inventati.org>	2023-10-29 18:13:37 +0100
commit	3728338d4039a925c1c131a4f305d32c04cc3657 (patch)
tree	431822c0863696e235cb45c7859fd3062fdaf464 /nixos/tests/sslh.nix
parent	edb4422d730b57bdab3a1a886b8ec6b84b581020 (diff)