aciceri/nixfleet
1
0
Fork 0
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity Actions
nixfleet/modules/wireguard-common/default.nix
Andrea Ciceri cba0555c38
Some checks failed
EVAL aarch64-linux.sisko
Details
BUILD aarch64-linux.sisko
Details
UPLOAD aarch64-linux.sisko
Details
DOWNLOAD aarch64-linux.sisko
Details
CACHIX aarch64-linux.sisko
Details
ATTIC aarch64-linux.sisko
Details
/ test (push) Successful in 1m17s
Details
{host}.fleet -> {host}.wg.aciceri.dev
2025-03-14 16:07:32 +01:00

32 lines
578 B
Nix
Raw Blame History

{
lib,
config,
vpn,
...
}:
{
networking.firewall.interfaces.wg0 = {
allowedUDPPortRanges = [
{
from = 0;
to = 65535;
}
];
allowedTCPPortRanges = [
{
from = 0;
to = 65535;
}
];
};
networking.wireguard.interfaces.wg0 = {
privateKeyFile = config.age.secrets."${config.networking.hostName}-wireguard-private-key".path;
listenPort = 51820;
};
networking.hosts = lib.mapAttrs' (hostname: vpnConfig: {
name = vpnConfig.ip;
value = [ "${hostname}.wg.aciceri.dev" ];
}) vpn;
}
Reference in a new issue View git blame Copy permalink