hd/cfg
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

wireguard & other stuff

Browse source
This commit is contained in:
Henri Dohmen 2025-05-26 22:13:03 +02:00
parent c45f9f7f46
commit 16f491a6ca
12 changed files with 174 additions and 103 deletions
Download patch file Download diff file Expand all files Collapse all files

42
mod/pc-common/network.nix
View file

@ -1,4 +1,4 @@
{ ... }:
{ host, var, ... }:
{
hardware.bluetooth.enable = true;
services.blueman.enable = true;
@ -11,6 +11,46 @@
networking = {
enableIPv6 = true;
wireguard.enable = true;
wg-quick = {
interfaces = {
"onet" = {
address = var.wg.wireguard-network.${host}.ips;
privateKeyFile = var.wg.keyFile;
peers = var.wg.peers-for host;
};
"mullvad" =
let
conf = {
"solo".ips = [
"10.68.140.249/32"
"fc00:bbbb:bbbb:bb01::5:8cf8/128"
];
};
in
{
address = conf.${host}.ips;
privateKeyFile = var.wg.keyFile;
peers = [
{
allowedIPs = [
"0.0.0.0/0"
"::0/0"
];
endpoint = "185.213.155.72:51820";
publicKey = "flq7zR8W5FxouHBuZoTRHY0A0qFEMQZF5uAgV4+sHVw=";
persistentKeepalive = 23;
}
];
};
};
};
firewall = {
allowedUDPPorts = [ 51820 ];
};
networkmanager = {
enable = true;
wifi.macAddress = "random";

1
mod/pc-common/services.nix
View file

@ -9,5 +9,6 @@
};
udisks2.enable = true;
emacs.enable = true;
protonmail-bridge.enable = true;
};
}

10
mod/pc-common/software/programs.nix
View file

@ -28,10 +28,12 @@
programs.thunderbird = {
enable = true;
package = pkgs.thunderbird-latest;
profiles.default.isDefault = true;
profiles.default.settings = {
"mail.openpgp.allow_external_gnupg" = true;
"mail.openpgp.fetch_pubkeys_from_gnupg" = true;
profiles.default = {
isDefault = true;
settings = {
"mail.openpgp.allow_external_gnupg" = true;
"mail.openpgp.fetch_pubkeys_from_gnupg" = true;
};
};
};
};