machines/sternseemann/wolfgang: add njal.la VPN config

author: sternenseemann <0rpkxez4ksa01gb3typccl0i@systemli.org> 2021-03-15 23:44:57 +0100
committer: sternenseemann <0rpkxez4ksa01gb3typccl0i@systemli.org> 2021-03-15 23:45:23 +0100
commit: 7e64a1ee0e1bb4ac8ca859abf696339f0eb9290d (patch)
tree: 8ea8aab5d8f1138853944612c852dab079823c47 /machines/sternenseemann/wireguard.nix
parent: e73fcff03faed773df2500965cb9c4a4fcfbc04d (diff)
1 files changed, 37 insertions, 0 deletions
diff --git a/machines/sternenseemann/wireguard.nix b/machines/sternenseemann/wireguard.nix
new file mode 100644
index 00000000..73755d8f
--- /dev/null
+++ b/machines/sternenseemann/wireguard.nix
@@ -0,0 +1,37 @@
+{ config, pkgs, ... }:
+
+let
+  keyDir = "/home/lukas/files/crypto/wireguard";
+in
+
+{
+  config = {
+    networking.wg-quick = {
+      interfaces = {
+        wg1 = {
+          address = [
+            "fd03:1337::158/64"
+            "10.13.37.158/24"
+          ];
+          dns = [
+            "95.215.19.53"
+            "2001:67c:2354:2::53"
+          ];
+          privateKeyFile = "${keyDir}/njalla-private";
+
+          peers = [
+            {
+              endpoint = "wg006.njalla.no:51820";
+              publicKey = "y0zGwVuzZwKqkNkxP1P9A2Zw9H79cRjTZZlXL8+PrVM=";
+              allowedIPs = [
+                "0.0.0.0/0"
+                "::/0"
+              ];
+              persistentKeepalive = 60;
+            }
+          ];
+        };
+      };
+    };
+  };
+}
author	sternenseemann <0rpkxez4ksa01gb3typccl0i@systemli.org>	2021-03-15 23:44:57 +0100
committer	sternenseemann <0rpkxez4ksa01gb3typccl0i@systemli.org>	2021-03-15 23:45:23 +0100
commit	7e64a1ee0e1bb4ac8ca859abf696339f0eb9290d (patch)
tree	8ea8aab5d8f1138853944612c852dab079823c47 /machines/sternenseemann/wireguard.nix
parent	e73fcff03faed773df2500965cb9c4a4fcfbc04d (diff)