foodogsquared/nixos-config
1
0
Fork 0
mirror of https://github.com/foo-dogsquared/nixos-config.git synced 2025-02-07 18:19:09 +00:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

hosts/ni: update Wireguard "client" config again

Browse Source
This commit is contained in:
Gabriel Arazas 2023-06-11 12:28:36 +08:00
parent 3ccdbf3b31
commit 9857cabb07
No known key found for this signature in database
GPG Key ID: ADE0C41DAB221FCC
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
hosts/ni/default.nix
View File

@ -241,7 +241,7 @@ in
{ {
privateKeyFile = config.sops.secrets."ni/wireguard/private-key".path; privateKeyFile = config.sops.secrets."ni/wireguard/private-key".path;
listenPort = wireguardPort; listenPort = wireguardPort;
dns = with interfaces.internal; [ IPv4.adress IPv6.address ]; dns = with wireguardPeers.server; [ IPv4 IPv6 ];
postUp = postUp =
let let
resolvectl = "${lib.getBin pkgs.systemd}/bin/resolvectl"; resolvectl = "${lib.getBin pkgs.systemd}/bin/resolvectl";
@ -262,6 +262,7 @@ in
presharedKeyFile = config.sops.secrets."ni/wireguard/preshared-keys/plover".path; presharedKeyFile = config.sops.secrets."ni/wireguard/preshared-keys/plover".path;
allowedIPs = wireguardAllowedIPs; allowedIPs = wireguardAllowedIPs;
endpoint = "${interfaces.main'.IPv4.address}:${toString wireguardPort}"; endpoint = "${interfaces.main'.IPv4.address}:${toString wireguardPort}";
persistentKeepalive = 25;
} }
# The "phone" peer. # The "phone" peer.