From 778f52923f66c0ee31b8a9455b72855c0516761e Mon Sep 17 00:00:00 2001
From: Filippo Berto <berto.f@protonmail.com>
Date: Thu, 30 Jun 2022 21:23:19 +0200
Subject: [PATCH] K3s example config

---
 flake.nix             |  1 +
 nixos_modules/k3s.nix | 12 ++++++++++++
 2 files changed, 13 insertions(+)

diff --git a/flake.nix b/flake.nix
index 96a5eee..91851f0 100644
--- a/flake.nix
+++ b/flake.nix
@@ -154,6 +154,7 @@
 
         loki = loki-stable;
         loki-stable = lokiStable [ ];
+        loki-k3s = lokiStable [ ./nixos_modules/k3s.nix ];
         loki-unstable = lokiUnstable [ ];
 
       };
diff --git a/nixos_modules/k3s.nix b/nixos_modules/k3s.nix
index 7583288..43320e6 100644
--- a/nixos_modules/k3s.nix
+++ b/nixos_modules/k3s.nix
@@ -2,4 +2,16 @@
   services.k3s = {
     enable = true;
   };
+
+  networking.firewall = {
+    allowedTCPPorts = [
+      6443 # Kubernetes API
+    ];
+    allowedTCPPortRanges = [
+      {
+        from = 9000;
+        to = 15000;
+      }
+    ];
+  };
 }