reconfigure

author: Freya Murphy <freya@freyacat.org> 2025-01-23 09:26:51 -0500
committer: Freya Murphy <freya@freyacat.org> 2025-01-23 09:26:51 -0500
commit: 1a51f2f555b182673e3f9b3e38fb2ab0e57dd6c2 (patch)
tree: eecdad132615a4469c22ee6d4ccd1df087b6159d /nix/programs/wireguard/default.nix
parent: use base16 in neovim and starship (diff)
download: dotfiles-nix-1a51f2f555b182673e3f9b3e38fb2ab0e57dd6c2.tar.gz
dotfiles-nix-1a51f2f555b182673e3f9b3e38fb2ab0e57dd6c2.tar.bz2
dotfiles-nix-1a51f2f555b182673e3f9b3e38fb2ab0e57dd6c2.zip
1 files changed, 22 insertions, 0 deletions
diff --git a/nix/programs/wireguard/default.nix b/nix/programs/wireguard/default.nix
new file mode 100644
index 0000000..18c77e9
--- /dev/null
+++ b/nix/programs/wireguard/default.nix
@@ -0,0 +1,22 @@
+{ config, pkgs, ... }:
+
+{
+  environment.systemPackages = with pkgs; [
+    wireguard-tools
+  ];
+
+  networking.wireguard.enable = true;
+  networking.wireguard.interfaces = {
+    freyanet = {
+      ips = [ "10.2.0.2/32" "fd:cafe:dead:bee::2/128" "fe80::2/128" ];
+      privateKeyFile = "${config.dotfilesPath}/secrets/freyanet.key";
+
+      peers = [{
+        publicKey = "x0ykwakpYCvI/pG+nR83lNUyeOE9m54thnX3bvZ+FUk=";
+        allowedIPs = [ "10.0.0.0/12" "fd:cafe::/32" "fe80::/64" ];
+        endpoint = "freya.cat:41111";
+        persistentKeepalive = 25;
+      }];
+    };
+  };
+}
author	Freya Murphy <freya@freyacat.org>	2025-01-23 09:26:51 -0500
committer	Freya Murphy <freya@freyacat.org>	2025-01-23 09:26:51 -0500
commit	1a51f2f555b182673e3f9b3e38fb2ab0e57dd6c2 (patch)
tree	eecdad132615a4469c22ee6d4ccd1df087b6159d /nix/programs/wireguard/default.nix
parent	use base16 in neovim and starship (diff)
download	dotfiles-nix-1a51f2f555b182673e3f9b3e38fb2ab0e57dd6c2.tar.gz dotfiles-nix-1a51f2f555b182673e3f9b3e38fb2ab0e57dd6c2.tar.bz2 dotfiles-nix-1a51f2f555b182673e3f9b3e38fb2ab0e57dd6c2.zip