summaryrefslogtreecommitdiff
path: root/programs/wireguard
diff options
context:
space:
mode:
authorFreya Murphy <freya@freyacat.org>2025-06-17 21:57:53 -0400
committerFreya Murphy <freya@freyacat.org>2025-06-17 21:57:53 -0400
commite0f2eb724245e02cb247b644f0947261d8665318 (patch)
tree13f929df40059d37165cbe46be95a6404a1bbecb /programs/wireguard
parentrefactor styles to new color scheme basis (diff)
downloaddotfiles-nix-e0f2eb724245e02cb247b644f0947261d8665318.tar.gz
dotfiles-nix-e0f2eb724245e02cb247b644f0947261d8665318.tar.bz2
dotfiles-nix-e0f2eb724245e02cb247b644f0947261d8665318.zip
remove nix dir and move out all sub modules
Diffstat (limited to 'programs/wireguard')
-rw-r--r--programs/wireguard/default.nix35
1 files changed, 35 insertions, 0 deletions
diff --git a/programs/wireguard/default.nix b/programs/wireguard/default.nix
new file mode 100644
index 0000000..ff9c954
--- /dev/null
+++ b/programs/wireguard/default.nix
@@ -0,0 +1,35 @@
+{ config, pkgs, ... }:
+
+{
+ environment.systemPackages = with pkgs; [
+ wireguard-tools
+ ];
+
+ networking.wg-quick.interfaces = {
+ freyanet = {
+ address = [ "10.2.0.2/32" "fd:cafe:dead:bee::2/128" "fe80::2/128" ];
+ dns = [ "10.3.0.138" ];
+ privateKeyFile = config.sops.secrets.freyanetWg.path;
+
+ peers = [{
+ publicKey = "x0ykwakpYCvI/pG+nR83lNUyeOE9m54thnX3bvZ+FUk=";
+ allowedIPs = [ "10.0.0.0/14" "fd:cafe::/32" ];
+ endpoint = "cid.freya.cat:3000";
+ persistentKeepalive = 25;
+ }];
+ };
+
+ #tinternet = {
+ # address = [ "69.0.0.2/32" "cafe::2/128" "fe80::2/128" ];
+ # dns = [ "1.1.1.1" ];
+ # privateKeyFile = config.sops.secrets.tinternetWg.path;
+
+ # peers = [{
+ # publicKey = "8Ice49Yc7N75OYJW59ohDbfUjgrkwIuGWKWocJQGgzI=";
+ # allowedIPs = [ "0.0.0.0/0" "::/0" ];
+ # endpoint = "freya.cat:51282";
+ # persistentKeepalive = 25;
+ # }];
+ #};
+ };
+}
generated by cgit v1.2.3-freya (git 2.51.0) at 2025-09-23 12:51:17 +0000