nyanloutre/nixos-config
1
1
Fork 1
Code Issues Pull Requests Releases Wiki Activity

Compare commits

base: nyanloutre:ae8d6897271cd35fc2d8ae4ebdfc58e5acadce65
Branches Tags
nyanloutre:master
..
compare: nyanloutre:e8e4c4b3115c080b527c1c85e27b25ac2c615727
Branches Tags
nyanloutre:master

2 Commits
ae8d689727 ... e8e4c4b311

Author SHA1 Message Date
nyanloutre
e8e4c4b311 wireguard partial setup 2024-11-20 09:15:56 +01:00
nyanloutre
67d7b6669f setup wireguard interface 2024-11-13 14:44:13 +01:00
1 changed files with 47 additions and 7 deletions
Show Stats Expand all files Collapse all files

54
systems/LoutreOS/configuration.nix
View File

@ -142,16 +142,21 @@
netdevConfig = {
Kind = "wireguard";
Name = "wg0";
MTUBytes = "1450";
};
wireguardConfig = {
PrivateKeyFile = "/run/keys/wireguard-privkey";
ListenPort = 9918;
FirewallMark = 51820;
};
wireguardPeers = [
{
PublicKey = "OhApdFoOYnKesRVpnYRqwk3pdM247j8PPVH5K7aIKX0=";
AllowedIPs = ["fc00::1/64" "10.100.0.1"];
Endpoint = "{set this to the server ip}:51820";
wireguardPeerConfig = {
Endpoint = "89.234.141.83:8095";
PublicKey = "t3+JkBfXI1uw8fa9P6JfxXJfTPm9cOHcgIN215UHg2g=";
PresharedKeyFile = "/run/keys/wireguard-psk.key";
AllowedIPs = ["0.0.0.0/0" "::/0"];
PersistentKeepalive = 15;
};
}
];
};
@ -176,10 +181,45 @@
"10-wg0" = {
matchConfig.Name = "wg0";
address = [
"fe80::3/64"
"fc00::3/120"
"10.100.0.2/24"
"89.234.141.196/32"
"2a00:5881:8119:400::1/128"
];
# routingPolicyRules = [
# {
# routingPolicyRuleConfig = {
# FirewallMark = "51820";
# InvertRule = true;
# Table = "51820";
# Priority = "10";
# };
# }
# {
# routingPolicyRuleConfig = {
# To = "10.0.0.0/8";
# Priority = "9";
# };
# }
# {
# routingPolicyRuleConfig = {
# To = "192.168.0.0/16";
# Priority = "9";
# };
# }
# {
# routingPolicyRuleConfig = {
# To = "89.234.141.83/32";
# Priority = "5";
# };
# }
# ];
# routes = [
# {
# routeConfig = {
# Destination = "0.0.0.0/0";
# Table = 51820;
# };
# }
# ];
};
"40-eno2" = {
networkConfig = {