summaryrefslogtreecommitdiffstats
path: root/makefu/2configs/wireguard/thierry.nix
diff options
context:
space:
mode:
authorlassulus <lassulus@lassul.us>2022-09-26 15:36:25 +0200
committerlassulus <lassulus@lassul.us>2022-09-26 15:36:25 +0200
commit059a5b48af9f6c21c3c442bb0fc35d2105d3b682 (patch)
tree15de5c35d213d677bc2b294fc411d0f43dc536b2 /makefu/2configs/wireguard/thierry.nix
parent4d7aacdd1c2a8cc9f6d826cb7e3bb2bc10e36a5e (diff)
parent5b9d7e47c3f1877bcffdf2aafac712451db43d61 (diff)
Merge remote-tracking branch 'gum/master'
Diffstat (limited to 'makefu/2configs/wireguard/thierry.nix')
-rw-r--r--makefu/2configs/wireguard/thierry.nix21
1 files changed, 21 insertions, 0 deletions
diff --git a/makefu/2configs/wireguard/thierry.nix b/makefu/2configs/wireguard/thierry.nix
new file mode 100644
index 000000000..f1dfef192
--- /dev/null
+++ b/makefu/2configs/wireguard/thierry.nix
@@ -0,0 +1,21 @@
+{ lib, ... }:
+{
+ networking.wireguard.interfaces.thierry-wg = {
+ ips = [ "172.27.66.10/24" ]; # TODO: not dnyamic
+ privateKeyFile = (toString <secrets>) + "/wg-thierry.key";
+ allowedIPsAsRoutes = true;
+ # explicit route via eth0 to gum
+ peers = [
+ {
+ endpoint = "thierryhome.duckdns.org:51820";
+ allowedIPs = [ "172.27.66.0/24" ];
+ publicKey = "filYuG/xbb2YW8WT0xT26rzeZ/ZiM6NLnbxbsCR9rS0=";
+ persistentKeepalive = 25;
+ }
+ #{
+ # allowedIPs = [ "172.27.66.3/32" ];
+ # publicKey = "cDIf14LH4qleXNo889lS2ATIqDx9r//JNCkhHlHgc1Q=";
+ #}
+ ];
+ };
+}