add wireguard client

2024-05-06 14:56:13 +02:00
parent 76e4fa6098
commit 8ca92b0e11
6 changed files with 39 additions and 52 deletions
--- a/systems/laptop/configuration.nix
+++ b/systems/laptop/configuration.nix
@@ -10,6 +10,7 @@
 	#<home-manager/nixos>
    ];

+  age.identityPaths = [ /home/kopatz/.ssh/id_ed25519 ];
  mainUser.layout = "at";
  mainUser.variant = "";
  # Bootloader.
--- a/systems/laptop/modules/wireguard.nix
+++ b/systems/laptop/modules/wireguard.nix
@@ -1,52 +0,0 @@
-{ config, pkgs, lib, inputs, ... }:
-{
-
-  age.secrets.wireguard-private = {
-    file = ../secrets/wireguard-private.age;
-  };
-
-  systemd.network = {
-    enable = true;
-    netdevs."10-wg0" = {
-      enable = true;
-      netdevConfig = {
-        Kind = "wireguard";
-        Name = "wg0";
-        MTUBytes = "1300";
-      };
-      wireguardConfig = {
-        PrivateKeyFile = config.age.secrets.wireguard-private.path;
-      };
-      wireguardPeers = [
-        {
-          wireguardPeerConfig = {
-            AllowedIPs = [
-              "192.168.2.0/24"
-            ];
-            Endpoint = "kopatz.ddns.net:51820";
-            PersistentKeepalive = 25;
-            PublicKey = "vyHNUy97R1cvqEvElznPpFQtoqm7WUHnT96UP6Dquwc=";
-          };
-        }
-      ];
-    };
-    networks.wg0 = {
-      # See also man systemd.network
-      matchConfig.Name = "wg0";
-      # IP addresses the client interface will have
-      address = [
-        "192.168.2.22/24"
-      ];
-      #DHCP = "no";
-      #dns = [ "fc00::53" ];
-      #ntp = [ "fc00::123" ];
-      #gateway = [
-      #  "fc00::1"
-      #  "10.100.0.1"
-      #];
-      networkConfig = {
-        IPv6AcceptRA = false;
-      };
-    };
-  };
-}