BeiNacht/nixos-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

added wireguard to desktop

Browse Source
This commit is contained in:
Alexander Szczepanski
2021-09-23 13:50:10 +02:00
parent 0ace2043f0
commit 89f9e98ec2
5 changed files with 38 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
machine/desktop.nix
View File

@ -1,7 +1,7 @@
{ config, pkgs, lib, ... }:
let
unstable = import <nixos-unstable> { config.allowUnfree = true; };
secrets = import ../configs/secrets.nix;
in
{
imports =
@ -36,6 +36,22 @@ in
boot.kernelModules = [ "it87" "v4l2loopback" ];
networking.hostName = "desktop"; # Define your hostname.
networking.wireguard.interfaces = {
wg0 = {
ips = [ "10.100.0.2/24" ];
privateKey = secrets.wireguard-desktop-private;
peers = [
{
publicKey = secrets.wireguard-vps-public;
presharedKey = secrets.wireguard-preshared;
allowedIPs = [ "10.100.0.0/24" ];
endpoint = "szczepan.ski:51820";
persistentKeepalive = 25;
}
];
};
};
# Set your time zone.
time.timeZone = "Europe/Berlin";

16
machine/mini.nix
View File

@ -24,6 +24,22 @@
# allowedTCPPorts = [ 6443 ];
};
networkmanager.enable = true;
wireguard.interfaces = {
wg0 = {
ips = [ "10.100.0.3/24" ];
privateKey = secrets.wireguard-mini-private;
peers = [
{
publicKey = secrets.wireguard-vps-public;
presharedKey = secrets.wireguard-preshared;
allowedIPs = [ "10.100.0.0/24" ];
endpoint = "szczepan.ski:51820";
persistentKeepalive = 25;
}
];
};
};
};
services.k3s.enable = true;

4
machine/vps.nix
View File

@ -38,6 +38,10 @@ in
publicKey = secrets.wireguard-desktop-public;
presharedKey = secrets.wireguard-preshared;
allowedIPs = [ "10.100.0.2/32" ];
}{
publicKey = secrets.wireguard-mini-public;
presharedKey = secrets.wireguard-preshared;
allowedIPs = [ "10.100.0.3/32" ];
}];
};
};