diff options
author | Kjetil Ørbekk <kj@orbekk.com> | 2018-02-04 15:18:58 -0500 |
---|---|---|
committer | Kjetil Ørbekk <kj@orbekk.com> | 2018-02-04 15:18:58 -0500 |
commit | d768573a1da40ba1669e187189fdcbadd4196c16 (patch) | |
tree | 6090de6bd9b52666fb864c86816087f8f7f3e361 /config/vpn-client.nix | |
parent | 14aae103610b41cf52ed939a3147ecb6a90d1ccd (diff) | |
parent | cb758d6ac3428a13e236aa7b4f76904c30000df5 (diff) |
Merge branch 'master' of /storage/projects/nixos-config
Diffstat (limited to 'config/vpn-client.nix')
-rw-r--r-- | config/vpn-client.nix | 24 |
1 files changed, 24 insertions, 0 deletions
diff --git a/config/vpn-client.nix b/config/vpn-client.nix new file mode 100644 index 0000000..5c10239 --- /dev/null +++ b/config/vpn-client.nix @@ -0,0 +1,24 @@ +{ config, lib, pkgs, ... }: +let + port = (import ../data/aliases.nix).services.wireguard.port; +in +{ + networking.wireguard = { + interfaces = { + wg0 = { + ips = [ "10.35.190.2/23" ]; + privateKeyFile = "/opt/secret/wireguard/wg0.key"; + listenPort = port; + allowedIPsAsRoutes = false; + peers = [ + { + publicKey = "KT4sWKnlvPebJh0pYhGpiZksn4cCwKreB6fQCJV49F8="; + endpoint = "dragon.orbekk.com:${toString port}"; + allowedIPs = ["0.0.0.0/0" "::/0"]; + } + ]; + }; + }; + }; +} + |