devproje/headscale
1
0
Fork 0
mirror of https://github.com/juanfont/headscale.git synced 2024-11-26 08:53:05 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Docs/ACLs: Wording, add intermediary router example

Browse source
This commit is contained in:
Nico Rey 2022-03-17 19:23:37 -03:00
parent 1c9b1c0579
commit b9f0fabb5c
1 changed files with 6 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
docs/acls.md
View file

@ -5,12 +5,15 @@ ACL's are the most useful).
We have a small company with a boss, an admin, two developers and an intern.
The boss should have access to all servers but not to the users hosts. Admin
The boss should have access to all servers but not to the user's hosts. Admin
should also have access to all hosts except that their permissions should be
limited to maintaining the hosts (for example purposes). The developers can do
anything they want on dev hosts, but only watch on productions hosts. Intern
anything they want on dev hosts but only watch on productions hosts. Intern
can only interact with the development servers.
There's an additional server that acts as a router, connecting the VPN users
to an internal network 10.20.0.0/16
Each user have at least a device connected to the network and we have some
servers.
@ -19,6 +22,7 @@ servers.
- app-server1.prod
- app-server1.dev
- billing.internal
- router.internal
## Setup of the network