ma wireguard: add thierry wg setup

2022-09-23 23:45:15 +02:00 · 2022-09-23 23:45:15 +02:00 · 9c949ce581
commit 9c949ce581
parent bdcae6e274
1 changed files with 21 additions and 0 deletions
--- a/makefu/2configs/wireguard/thierry.nix
+++ b/makefu/2configs/wireguard/thierry.nix
@ -0,0 +1,21 @@
+{ lib, ... }:
+{
+  networking.wireguard.interfaces.thierry-wg = {
+    ips = [ "172.27.66.10/24" ]; # TODO: not dnyamic
+    privateKeyFile = (toString <secrets>) + "/wg-thierry.key";
+    allowedIPsAsRoutes = true;
+    # explicit route via eth0 to gum
+    peers = [
+    {
+      endpoint = "thierryhome.duckdns.org:51820";
+      allowedIPs = [ "172.27.66.0/24" ];
+      publicKey = "filYuG/xbb2YW8WT0xT26rzeZ/ZiM6NLnbxbsCR9rS0=";
+      persistentKeepalive = 25;
+    }
+    #{
+    #  allowedIPs = [ "172.27.66.3/32" ];
+    #  publicKey = "cDIf14LH4qleXNo889lS2ATIqDx9r//JNCkhHlHgc1Q=";
+    #}
+  ];
+  };
+}