fix

author: Kjetil Orbekk <kj@orbekk.com> 2023-10-07 10:59:06 -0400
committer: Kjetil Orbekk <kj@orbekk.com> 2023-10-07 10:59:06 -0400
commit: 6367387a3775931360fecd5929b58a0acdc94d09 (patch)
tree: 4f74166fa0ad961e6296d94d202cdcacd48a3665
parent: f56b5cd7c1b405c01988924a192f4f2b2bd6e64e (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/modules/router.nix b/modules/router.nix
index d2711e9..f784de8 100644
--- a/modules/router.nix
+++ b/modules/router.nix
@@ -333,7 +333,7 @@ in {
         + "/../secrets/dragon-wireguard-key.age";
     networking.wireguard.interfaces.wg-vpn = {
       fwMark = "${toString vpnMark}";
-      table = "vpn";
+      table = "${toString vpnMark}";  # The "vpn" name only works on the router container.
       socketNamespace = "router";
       interfaceNamespace = "router";
       ips = [ "${vpnPrefix}::1/128" ];
@@ -352,6 +352,7 @@ in {
         (mkPeer "trygve" "2004")
       ];
     };
+    systemd.services.wg-vpn.after = ["container@router.target"];
 
     services.ddclient = {
       enable = true;
author	Kjetil Orbekk <kj@orbekk.com>	2023-10-07 10:59:06 -0400
committer	Kjetil Orbekk <kj@orbekk.com>	2023-10-07 10:59:06 -0400
commit	6367387a3775931360fecd5929b58a0acdc94d09 (patch)
tree	4f74166fa0ad961e6296d94d202cdcacd48a3665
parent	f56b5cd7c1b405c01988924a192f4f2b2bd6e64e (diff)