hd/cfg
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

wireguard

Browse source
This commit is contained in:
Henri Dohmen 2025-05-26 23:15:15 +02:00
parent 7268b56265
commit bdccb2f265
2 changed files with 10 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

9
mod/pc-common/network.nix
View file

@ -1,4 +1,9 @@
{ host, var, ... }: {
host,
var,
lib,
...
}:
{ {
hardware.bluetooth.enable = true; hardware.bluetooth.enable = true;
services.blueman.enable = true; services.blueman.enable = true;
@ -18,7 +23,7 @@
"onet" = { "onet" = {
address = var.wg.wireguard-network.${host}.ips; address = var.wg.wireguard-network.${host}.ips;
privateKeyFile = var.wg.keyFile; privateKeyFile = var.wg.keyFile;
peers = var.wg.peers-for host; peers = [ (lib.removeAttrs var.wg.wireguard-network."roam" [ "ips" ]) ];
}; };
"mullvad" = "mullvad" =
let let

6
var/wg.nix
View file

@ -8,7 +8,7 @@ rec {
wireguard-network = { wireguard-network = {
"roam" = { "roam" = {
publicKey = publicKey."roam"; publicKey = publicKey."roam";
ips = [ "10.10.11.1/24" ]; ips = [ "10.10.11.1/32" ];
allowedIPs = [ "10.10.11.0/24" ]; allowedIPs = [ "10.10.11.0/24" ];
endpoint = "185.163.117.158:51820"; endpoint = "185.163.117.158:51820";
persistentKeepalive = 17; persistentKeepalive = 17;
@ -20,8 +20,8 @@ rec {
}; };
"c2" = { "c2" = {
publicKey = publicKey."c2"; publicKey = publicKey."c2";
ips = [ "10.10.11.2/24" ]; ips = [ "10.10.11.3/24" ];
allowedIPs = [ "10.10.11.2/32" ]; allowedIPs = [ "10.10.11.3/32" ];
}; };
}; };
keyFile = "/var/secrets/wg.key"; keyFile = "/var/secrets/wg.key";