From 36f3ebfcb380ee78e49c3fee3d3c181e24b20bd3 Mon Sep 17 00:00:00 2001
From: Harald Hoyer <harald@subzero.xyz>
Date: Fri, 21 Nov 2025 14:54:07 +0100
Subject: [PATCH] chore(nix): enable Tailscale on SGX, MX, and X1 systems

- Added `services.tailscale.enable = true` to the configurations of SGX, MX, and X1 systems for VPN support.
- Improves secure connectivity and simplifies network management across these systems.
---
 systems/x86_64-linux/mx/default.nix  | 2 ++
 systems/x86_64-linux/sgx/default.nix | 2 ++
 systems/x86_64-linux/x1/default.nix  | 2 ++
 3 files changed, 6 insertions(+)

diff --git a/systems/x86_64-linux/mx/default.nix b/systems/x86_64-linux/mx/default.nix
index b3a428b..4201096 100644
--- a/systems/x86_64-linux/mx/default.nix
+++ b/systems/x86_64-linux/mx/default.nix
@@ -18,6 +18,8 @@
     ./users.nix
   ];
 
+  services.tailscale.enable = true;
+
   metacfg = {
     emailOnFailure.enable = true;
     base.enable = true;
diff --git a/systems/x86_64-linux/sgx/default.nix b/systems/x86_64-linux/sgx/default.nix
index b1f94ee..cb61649 100644
--- a/systems/x86_64-linux/sgx/default.nix
+++ b/systems/x86_64-linux/sgx/default.nix
@@ -11,6 +11,8 @@
     ./mail.nix
   ];
 
+  services.tailscale.enable = true;
+
   boot.tmp.useTmpfs = false;
 
   sops.secrets.pccs.sopsFile = ../../../.secrets/sgx/pccs.yaml;
diff --git a/systems/x86_64-linux/x1/default.nix b/systems/x86_64-linux/x1/default.nix
index db59b9a..3ccc6d5 100644
--- a/systems/x86_64-linux/x1/default.nix
+++ b/systems/x86_64-linux/x1/default.nix
@@ -11,6 +11,8 @@ with lib.metacfg;
     ./hardware-configuration.nix
   ];
 
+  services.tailscale.enable = true;
+
   services.cratedocs-mcp.enable = true;
 
   sops.age.sshKeyPaths = [ "/var/lib/secrets/ssh_host_ed25519_key" ];