update

flake.nix

@@ -30,10 +30,6 @@
       inputs.hyprland.follows = "hyprland";
     };
     nixos-hardware.url = "github:NixOS/nixos-hardware/master";
-    vpnconfinement = {
-      url = "github:Maroka-chan/VPN-Confinement";
-      follows = "nixpkgs";
-    };
   };
 
   outputs = inputs@{ nixpkgs, ... }: {
@@ -55,7 +51,6 @@
           { _module.args = { inherit inputs; }; }
           inputs.sops-nix.nixosModules.sops
           inputs.home-manager.nixosModules.home-manager
-          inputs.vpnconfinement.nixosModules.default
           ./hosts/server/configuration.nix
         ];
       };

hosts/server/modules/jackflix/default.nix

@@ -71,30 +71,9 @@ in {
       user = "nixarr";
       group = "nixarr";
       openFirewall = true;
-      settings = {
-        "rpc-bind-address" = "192.168.15.1"; # Bind RPC/WebUI to bridge address
-      };
     };
   };
 
-  # Define VPN network namespace
+  # Transmission port
-  vpnnamespaces.wg = {
+  networking.firewall.allowedTCPPorts = [ 9091 ];
-    enable = true;
-    wireguardConfigFile = "/data/.secret/wg.conf";
-    accessibleFrom = [ "192.168.1.0/24" ];
-    portMappings = [{
-      from = 9091;
-      to = 9091;
-    }];
-    openVPNPorts = [{
-      port = 60729;
-      protocol = "both";
-    }];
-  };
-
-  # Add systemd service to VPN network namespace.
-  systemd.services.transmission.vpnconfinement = {
-    enable = true;
-    vpnnamespace = "wg";
-  };
 }

hosts/server/modules/jackflix/transmission.nix

@@ -18,5 +18,4 @@
   #   '';
   # };
 
-  networking.firewall.allowedTCPPorts = [ 9091 ];
 }

hosts/server/secrets/default.nix

@@ -27,7 +27,7 @@
       };
       transmission-script = {
         mode = "0755";
-        path = "/home/jackflix/transmission-script.sh";
+        path = "/data/transmission-script.sh";
       };
       pia-wg = {
         mode = "0755";