diff options
author | lassulus <lassulus@lassul.us> | 2022-09-26 15:36:25 +0200 |
---|---|---|
committer | lassulus <lassulus@lassul.us> | 2022-09-26 15:36:25 +0200 |
commit | 059a5b48af9f6c21c3c442bb0fc35d2105d3b682 (patch) | |
tree | 15de5c35d213d677bc2b294fc411d0f43dc536b2 /makefu/2configs/wireguard/thierry.nix | |
parent | 4d7aacdd1c2a8cc9f6d826cb7e3bb2bc10e36a5e (diff) | |
parent | 5b9d7e47c3f1877bcffdf2aafac712451db43d61 (diff) |
Merge remote-tracking branch 'gum/master'
Diffstat (limited to 'makefu/2configs/wireguard/thierry.nix')
-rw-r--r-- | makefu/2configs/wireguard/thierry.nix | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/makefu/2configs/wireguard/thierry.nix b/makefu/2configs/wireguard/thierry.nix new file mode 100644 index 000000000..f1dfef192 --- /dev/null +++ b/makefu/2configs/wireguard/thierry.nix @@ -0,0 +1,21 @@ +{ lib, ... }: +{ + networking.wireguard.interfaces.thierry-wg = { + ips = [ "172.27.66.10/24" ]; # TODO: not dnyamic + privateKeyFile = (toString <secrets>) + "/wg-thierry.key"; + allowedIPsAsRoutes = true; + # explicit route via eth0 to gum + peers = [ + { + endpoint = "thierryhome.duckdns.org:51820"; + allowedIPs = [ "172.27.66.0/24" ]; + publicKey = "filYuG/xbb2YW8WT0xT26rzeZ/ZiM6NLnbxbsCR9rS0="; + persistentKeepalive = 25; + } + #{ + # allowedIPs = [ "172.27.66.3/32" ]; + # publicKey = "cDIf14LH4qleXNo889lS2ATIqDx9r//JNCkhHlHgc1Q="; + #} + ]; + }; +} |