switch to wg-quick (adds dns)

author: Freya Murphy <freya@freyacat.org> 2025-01-24 10:07:23 -0500
committer: Freya Murphy <freya@freyacat.org> 2025-01-24 10:07:23 -0500
commit: 01ce8e9e74d5ccc5f1977879b90989eb8aada7cf (patch)
tree: 536e80bd0fcb554dd6c636c0ca565823db0f811a /nix/programs/wireguard/default.nix
parent: convert assets to JXL (diff)
download: dotfiles-nix-01ce8e9e74d5ccc5f1977879b90989eb8aada7cf.tar.gz
dotfiles-nix-01ce8e9e74d5ccc5f1977879b90989eb8aada7cf.tar.bz2
dotfiles-nix-01ce8e9e74d5ccc5f1977879b90989eb8aada7cf.zip
1 files changed, 4 insertions, 4 deletions
diff --git a/nix/programs/wireguard/default.nix b/nix/programs/wireguard/default.nix
index 18c77e9..83c2585 100644
--- a/nix/programs/wireguard/default.nix
+++ b/nix/programs/wireguard/default.nix
@@ -5,15 +5,15 @@
     wireguard-tools
   ];
 
-  networking.wireguard.enable = true;
-  networking.wireguard.interfaces = {
+  networking.wg-quick.interfaces = {
     freyanet = {
-      ips = [ "10.2.0.2/32" "fd:cafe:dead:bee::2/128" "fe80::2/128" ];
+      address = [ "10.2.0.2/32" "fd:cafe:dead:bee::2/128" "fe80::2/128" ];
+      dns = [ "10.2.2.2" ];
       privateKeyFile = "${config.dotfilesPath}/secrets/freyanet.key";
 
       peers = [{
         publicKey = "x0ykwakpYCvI/pG+nR83lNUyeOE9m54thnX3bvZ+FUk=";
-        allowedIPs = [ "10.0.0.0/12" "fd:cafe::/32" "fe80::/64" ];
+        allowedIPs = [ "10.0.0.0/12" "fd:cafe::/32" ];
         endpoint = "freya.cat:41111";
         persistentKeepalive = 25;
       }];
author	Freya Murphy <freya@freyacat.org>	2025-01-24 10:07:23 -0500
committer	Freya Murphy <freya@freyacat.org>	2025-01-24 10:07:23 -0500
commit	01ce8e9e74d5ccc5f1977879b90989eb8aada7cf (patch)
tree	536e80bd0fcb554dd6c636c0ca565823db0f811a /nix/programs/wireguard/default.nix
parent	convert assets to JXL (diff)
download	dotfiles-nix-01ce8e9e74d5ccc5f1977879b90989eb8aada7cf.tar.gz dotfiles-nix-01ce8e9e74d5ccc5f1977879b90989eb8aada7cf.tar.bz2 dotfiles-nix-01ce8e9e74d5ccc5f1977879b90989eb8aada7cf.zip