From dd00a946434ec72233619e6ca04f3acc2a574e46 Mon Sep 17 00:00:00 2001
From: Kjetil Orbekk <kj@orbekk.com>
Date: Sun, 28 Aug 2022 17:08:09 -0400
Subject: vpn config

---
 modules/steamdeck-wireguard-key.pub | 1 +
 modules/vpn.nix                     | 3 ++-
 2 files changed, 3 insertions(+), 1 deletion(-)
 create mode 100644 modules/steamdeck-wireguard-key.pub

diff --git a/modules/steamdeck-wireguard-key.pub b/modules/steamdeck-wireguard-key.pub
new file mode 100644
index 0000000..3b33b7c
--- /dev/null
+++ b/modules/steamdeck-wireguard-key.pub
@@ -0,0 +1 @@
+SPCrouXWKgqWK0omXz+T4mynLhpT6pNSlWGr/9EuJWI=
diff --git a/modules/vpn.nix b/modules/vpn.nix
index 47c269c..92f6a8e 100644
--- a/modules/vpn.nix
+++ b/modules/vpn.nix
@@ -22,11 +22,12 @@ let
     };
     firelink = mkConfig "firelink" "2001";
     pincer = mkConfig "pincer" "2002";
+    steamdeck = mkConfig "steamdeck" "2003";
   };
 
   mkPeer = hostConfig: {
     inherit (hostConfig) publicKey endpoint;
-    allowedIPs = if hostConfig.router && !cfg.is_server then [ "::/0" ] else hostConfig.ips;
+    allowedIPs = if hostConfig.router && !cfg.is_server then [ "${vpn-prefix}::/64" ] else hostConfig.ips;
   };
 
   getPeers = host:
-- 
cgit v1.2.3