diff --git a/mod/pc-common/network.nix b/mod/pc-common/network.nix
index 2ab3e4b..3b7bf12 100644
--- a/mod/pc-common/network.nix
+++ b/mod/pc-common/network.nix
@@ -27,6 +27,10 @@
                 "10.68.140.249/32"
                 "fc00:bbbb:bbbb:bb01::5:8cf8/128"
               ];
+              "c2".ips = [
+                "10.64.179.105/32"
+                "fc00:bbbb:bbbb:bb01::1:b368/128"
+              ];
             };
           in
           {
diff --git a/var/ssh-keys.nix b/var/ssh-keys.nix
index f6bfed7..36cd86f 100644
--- a/var/ssh-keys.nix
+++ b/var/ssh-keys.nix
@@ -2,6 +2,7 @@ _: rec {
   # this is only used for forcing password entry on colmena apply
   priviliged-by-host = {
     "solo" = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFsl8pLaGeCL3kacGWf8pzoLQr501ga/2OzvI2wWbTZJ";
+    "c2" = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJAZaswaiA+oQ9NviADYFf7BJQHNlmdxQuocIdoJmv3o";
   };
   priviliged = builtins.attrValues priviliged-by-host;
 
diff --git a/var/wg.nix b/var/wg.nix
index e685752..6a82b6e 100644
--- a/var/wg.nix
+++ b/var/wg.nix
@@ -3,6 +3,7 @@ rec {
   publicKey = {
     "roam" = "yUbdRfRFFVe4FPUaD7pVByLRhpF9Yl1kethxRUHpVgs=";
     "solo" = "SRDguh0aN/RH8q/uB09w/OZTbP9JZZy0ABowbWIfkTk=";
+    "c2" = "yJ1vrI9+qzUHuQJxeRDLCDCMRCIhF+0UNPwz3agyxTk=";
   };
   wireguard-network = {
     "roam" = {
@@ -17,6 +18,11 @@ rec {
       ips = [ "10.10.11.2/24" ];
       allowedIPs = [ "10.10.11.2/32" ];
     };
+    "c2" = {
+      publicKey = publicKey."c2";
+      ips = [ "10.10.11.2/24" ];
+      allowedIPs = [ "10.10.11.2/32" ];
+    };
   };
   keyFile = "/var/secrets/wg.key";