pre upgrade config
This commit is contained in:
stubbfel
@@ -12,5 +12,6 @@
|
|||||||
./resilio.nix
|
./resilio.nix
|
||||||
./sks.nix
|
./sks.nix
|
||||||
./gitea.nix
|
./gitea.nix
|
||||||
|
# ./wireguard.nix
|
||||||
];
|
];
|
||||||
}
|
}
|
||||||
|
|||||||
1
services/wg0.key
Normal file
1
services/wg0.key
Normal file
@@ -0,0 +1 @@
|
|||||||
|
qGHCeu53Sf6I8FUemPb36/nWbteef6H1Iz6BvE8/ek8=
|
||||||
27
services/wireguard.nix
Normal file
27
services/wireguard.nix
Normal file
@@ -0,0 +1,27 @@
|
|||||||
|
{ config, pkgs, ... }:
|
||||||
|
|
||||||
|
{
|
||||||
|
boot.extraModulePackages = [ config.boot.kernelPackages.wireguard ];
|
||||||
|
environment.systemPackages = [ pkgs.wireguard ];
|
||||||
|
networking.firewall.allowedTCPPorts = [ 51820 ];
|
||||||
|
networking.firewall.allowedUDPPorts = [ 51820 ];
|
||||||
|
networking.wireguard.interfaces.wg0 = {
|
||||||
|
listenPort = 51820;
|
||||||
|
privateKeyFile = "/etc/nixos/services/wg0.key";
|
||||||
|
ips = [ "192.168.43.1/24" ];
|
||||||
|
peers = [
|
||||||
|
{
|
||||||
|
allowedIPs = ["192.168.43.2"];
|
||||||
|
publicKey = "vGuxJHw7I1gSQd7SThDu758ynR3AKVXjgqtNIUnMBEg=";
|
||||||
|
persistentKeepalive = 25;
|
||||||
|
}
|
||||||
|
|
||||||
|
{
|
||||||
|
allowedIPs = ["192.168.43.3"];
|
||||||
|
publicKey = "YQ/SN8ZauuvWKJp+cT2JPP7sUUJai4ujubAZNZkZAAU=";
|
||||||
|
persistentKeepalive = 25;
|
||||||
|
}
|
||||||
|
|
||||||
|
];
|
||||||
|
};
|
||||||
|
}
|
||||||
Reference in New Issue
Block a user