add c2 keys

2025-05-26 22:29:04 +02:00 · 2025-05-26 22:29:04 +02:00 · 7268b56265
commit 7268b56265
parent 16f491a6ca
3 changed files with 11 additions and 0 deletions
--- a/mod/pc-common/network.nix
+++ b/mod/pc-common/network.nix
@ -27,6 +27,10 @@
                "10.68.140.249/32"
                "fc00:bbbb:bbbb:bb01::5:8cf8/128"
              ];
+              "c2".ips = [
+                "10.64.179.105/32"
+                "fc00:bbbb:bbbb:bb01::1:b368/128"
+              ];
            };
          in
          {
--- a/var/ssh-keys.nix
+++ b/var/ssh-keys.nix
@ -2,6 +2,7 @@ _: rec {
  # this is only used for forcing password entry on colmena apply
  priviliged-by-host = {
    "solo" = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFsl8pLaGeCL3kacGWf8pzoLQr501ga/2OzvI2wWbTZJ";
+    "c2" = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJAZaswaiA+oQ9NviADYFf7BJQHNlmdxQuocIdoJmv3o";
  };
  priviliged = builtins.attrValues priviliged-by-host;

--- a/var/wg.nix
+++ b/var/wg.nix
@ -3,6 +3,7 @@ rec {
  publicKey = {
    "roam" = "yUbdRfRFFVe4FPUaD7pVByLRhpF9Yl1kethxRUHpVgs=";
    "solo" = "SRDguh0aN/RH8q/uB09w/OZTbP9JZZy0ABowbWIfkTk=";
+    "c2" = "yJ1vrI9+qzUHuQJxeRDLCDCMRCIhF+0UNPwz3agyxTk=";
  };
  wireguard-network = {
    "roam" = {
@ -17,6 +18,11 @@ rec {
      ips = [ "10.10.11.2/24" ];
      allowedIPs = [ "10.10.11.2/32" ];
    };
+    "c2" = {
+      publicKey = publicKey."c2";
+      ips = [ "10.10.11.2/24" ];
+      allowedIPs = [ "10.10.11.2/32" ];
+    };
  };
  keyFile = "/var/secrets/wg.key";