I use tailscale myself, and had good results. Seems there are few nixers over at tailscale as well, which is always nice.
Nix/OS really really likes source code, patching binaries is not the way.
Can you get the source code , is it something that is closed source running on an opensource operating system, something i could never understand myself.
I’ve got the same problem with parsec…it’s super top secret compression for some reason, no source allowed…again, are these companies living in 1822?
I’m on the same boat, recently forced to use Perimeter81 to access some DBs, my workaround for now was spinning a VM with ubuntu, and having the connection open there, then creating a ssh tunnel to access the resources.
Erm. Is that a bunch of binaries redistributed without their licenses? Pretty sure at least openvpn is gplv2. Guess they have a commercial license? Still makes me double take…
Really looks like they’re just internally launching wireguard. Wonder if you can get the config out and just run wireguard yourself. Presumably it’s passed via the command line, maybe a ps can give you the args?
Yes, it’s just a fancy wrapper for wireguard. The main argument to use p81 in my project was to integrate with the single-sign on tool (onelogin) so managing access is done in a single place, but good shout, I’ll try to see if I can get to export the authentication keys and use it directly on wireguard as a workaround.
I started with @portothree’s work as inspiration and ended up at something that generally works including a NixOS module – it’s not perfect and definitely still has some rough edges in places (especially around the FHS), but it’s enough to be able to use p81 for work on NixOS reliably.
Do you have any details on using your flake? I am trying to use it now, and running into some issues.
I added the flake to my inputs, and am using the overlay and I was able to install your perimeter81 derivation with that. But, when I try to run it I get these errors:
bwrap: Can't find source path /var/lib/perimeter81: No such file or directory
I tried creating that directory, assuming it is just a location it wants to store configuration of some sort, and then I got:
bwrap: Can't find source path /etc/Perimeter81: No such file or directory
So, I created that as well and now I get:
bwrap: Can't create file at /etc/resolv.conf: No such file or directory
That file does exist, and I don’t understand bwrap or the FHS bits enough to understand how to proceed any further.
Also, it looks like there is an exposed option to enable the service, and I tried to turn that on with
services.perimeter81.enable = true;
but it tells me that option doesn’t exist. From what I can see it should… But I’m still fairly new to flakes and haven’t ever tried to expose options like this from one.
It’s probably a little rough around the edges – you can see where I use it here but I also probably created some directories out of band (/etc/Perimeter81 and /var/lib/perimeter81 like you did). I probably should have added some bits to the module to create those if they didn’t exist.
Recommend using the module as it will run the daemon as root – permissions might be your issue with resolv.conf.
Hey!
I was able to use the flake and also a new flake someone forked, but i was unable to actual login
It open normally, but when i click “log in” or “sign up” it doesn’t do anything, it should open a browser… any info/help?
I see this error when open from command line:
➜ perimeter81
/usr/lib/libc.so.6: version `GLIBC_2.38' not found (required by /nix/store/21kx0hp82mrjx3cva189p417kcqnbwxq-gvfs-1.54.2/lib/gio/modules/libgvfsdbus.so)
Failed to load module: /nix/store/21kx0hp82mrjx3cva189p417kcqnbwxq-gvfs-1.54.2/lib/gio/modules/libgvfsdbus.so