isle/AppDir/etc/daemon.yml


#
# This file defines all configuration directives which can be modified for
# the cryptic-net daemon at runtime. All values specified here are the
# default values.
#
################################################################################

# A DNS service runs as part of every cryptic-net process.
dns:

  # list of IPs that the DNS service will use to resolve non-cryptic.io
  # hostnames.
  resolvers:
    - 1.1.1.1
    - 8.8.8.8

# A VPN service runs as part of every cryptic-net process.
vpn:

  # Enable this field if the vpn will be made to be publicly accessible at a
  # particular IP or hostname. At least one host must have a publicly accessible
  # VPN process at any given moment.
  #public_addr: "host:port"

  # Firewall directives, as described here:
  # https://github.com/slackhq/nebula/blob/v1.6.1/examples/config.yml#L260
  firewall:

    conntrack:
      tcp_timeout: 12m
      udp_timeout: 3m
      default_timeout: 10m
      max_connections: 100000

    outbound:

      # Allow all outbound traffic from this node.
      - port: any
        proto: any
        host: any

    inbound:

      # If any storage allocations are declared below, the ports used will be
      # allowed here automatically.

      # Allow ICMP between hosts.
      - port: any
        proto: icmp
        host: any

      # That's it.

storage:

  # Allocations defined here are used to store data in the distributed storage
  # network. If no allocations are defined then no data is replicated to this
  # node.
  #
  # The data directory of each allocation should be on a different drive, while
  # the meta directories can be anywhere (ideally on an SSD).
  #
  # Capacity declares how many gigabytes can be stored in each allocation, and
  # is required. It must be a multiple of 100.
  #
  # The various ports are all required and must all be unique within and across
  # allocations.
  allocations:

    #- data_path: /foo/bar/data
    #  meta_path: /foo/bar/meta
    #  capacity: 1200
    #  api_port: 3900
    #  rpc_port: 3901
    #  web_port: 3902
First public commit There has been over 1 year of commit history leading up to this point, but almost all of that has had some kind network configuration or secrets built into the code. As of today all of that has been removed, and the codebase can finally be published! I am keeping a private copy of the previous commit history, though it's unclear if it will ever be able to be published. 2021-04-20 21:31:37 +00:00
			`#`
			`# This file defines all configuration directives which can be modified for`
			`# the cryptic-net daemon at runtime. All values specified here are the`
			`# default values.`
			`#`
			`################################################################################`

			`# A DNS service runs as part of every cryptic-net process.`
			`dns:`

			`# list of IPs that the DNS service will use to resolve non-cryptic.io`
			`# hostnames.`
			`resolvers:`
			`- 1.1.1.1`
			`- 8.8.8.8`

			`# A VPN service runs as part of every cryptic-net process.`
			`vpn:`

			`# Enable this field if the vpn will be made to be publicly accessible at a`
			`# particular IP or hostname. At least one host must have a publicly accessible`
			`# VPN process at any given moment.`
			`#public_addr: "host:port"`

			`# Firewall directives, as described here:`
Update nebula to v1.6.1 in go-workspace 2022-10-11 17:53:42 +00:00			`# https://github.com/slackhq/nebula/blob/v1.6.1/examples/config.yml#L260`
First public commit There has been over 1 year of commit history leading up to this point, but almost all of that has had some kind network configuration or secrets built into the code. As of today all of that has been removed, and the codebase can finally be published! I am keeping a private copy of the previous commit history, though it's unclear if it will ever be able to be published. 2021-04-20 21:31:37 +00:00			`firewall:`

			`conntrack:`
			`tcp_timeout: 12m`
			`udp_timeout: 3m`
			`default_timeout: 10m`
			`max_connections: 100000`

			`outbound:`

			`# Allow all outbound traffic from this node.`
			`- port: any`
			`proto: any`
			`host: any`

			`inbound:`

			`# If any storage allocations are declared below, the ports used will be`
			`# allowed here automatically.`

			`# Allow ICMP between hosts.`
			`- port: any`
			`proto: icmp`
			`host: any`

			`# That's it.`

			`storage:`

			`# Allocations defined here are used to store data in the distributed storage`
			`# network. If no allocations are defined then no data is replicated to this`
			`# node.`
			`#`
			`# The data directory of each allocation should be on a different drive, while`
			`# the meta directories can be anywhere (ideally on an SSD).`
			`#`
			`# Capacity declares how many gigabytes can be stored in each allocation, and`
			`# is required. It must be a multiple of 100.`
			`#`
			`# The various ports are all required and must all be unique within and across`
			`# allocations.`
			`allocations:`

			`#- data_path: /foo/bar/data`
			`# meta_path: /foo/bar/meta`
			`# capacity: 1200`
			`# api_port: 3900`
			`# rpc_port: 3901`
			`# web_port: 3902`