Merge pull request #195945 from ncfavier/wg-quick-nftables

author: Naïm Favier <n@monade.li> 2023-01-01 14:13:01 +0100
committer: GitHub <noreply@github.com> 2023-01-01 14:13:01 +0100
commit: 1596c87bdb2ad55ca816e96441df8deae4a6c0f4 (patch)
tree: 9be9fa245898d4cfe1dd11fcb1c483e10e81a93b /nixos/modules/services
parent: 94747ae8369bbc86984166d6ef7542b6371a015e (diff)
parent: 138d4389cc1e2e22637ced70cf3a45c3eaa4f8f7 (diff)
1 files changed, 6 insertions, 2 deletions
diff --git a/nixos/modules/services/networking/wg-quick.nix b/nixos/modules/services/networking/wg-quick.nix
index a678d743bb77b..34210580f538a 100644
--- a/nixos/modules/services/networking/wg-quick.nix
+++ b/nixos/modules/services/networking/wg-quick.nix
@@ -273,7 +273,11 @@ let
         after = [ "network.target" "network-online.target" ];
         wantedBy = optional values.autostart "multi-user.target";
         environment.DEVICE = name;
-        path = [ pkgs.kmod pkgs.wireguard-tools config.networking.resolvconf.package ];
+        path = [
+          pkgs.wireguard-tools
+          config.networking.firewall.package   # iptables or nftables
+          config.networking.resolvconf.package # openresolv or systemd
+        ];
 
         serviceConfig = {
           Type = "oneshot";
@@ -281,7 +285,7 @@ let
         };
 
         script = ''
-          ${optionalString (!config.boot.isContainer) "modprobe wireguard"}
+          ${optionalString (!config.boot.isContainer) "${pkgs.kmod}/bin/modprobe wireguard"}
           ${optionalString (values.configFile != null) ''
             cp ${values.configFile} ${configPath}
           ''}
author	Naïm Favier <n@monade.li>	2023-01-01 14:13:01 +0100
committer	GitHub <noreply@github.com>	2023-01-01 14:13:01 +0100
commit	1596c87bdb2ad55ca816e96441df8deae4a6c0f4 (patch)
tree	9be9fa245898d4cfe1dd11fcb1c483e10e81a93b /nixos/modules/services
parent	94747ae8369bbc86984166d6ef7542b6371a015e (diff)
parent	138d4389cc1e2e22637ced70cf3a45c3eaa4f8f7 (diff)