switch wireguard configuration

2024-04-07 17:58:36 +02:00 · 2024-04-07 17:58:36 +02:00 · 1a564f2369
commit 1a564f2369
parent d6b2d305b5
5 changed files with 3 additions and 5 deletions
--- a/nixos/components/network/wireguard.nix
+++ b/nixos/components/network/wireguard.nix
@ -4,7 +4,6 @@ with lib;

  options.wireguard = {
    wg0 = {
-      #ipv4 = mkOption { type = types.str; };
      subnet = mkOption {
        type = types.str;
        default = "10.100.0.1/24";
--- a/nixos/machines/chungus/network-wireguard.nix
+++ b/nixos/machines/chungus/network-wireguard.nix
@ -18,7 +18,7 @@
      # server
      peers = [
        {
-          # robi
+          # orbi
          publicKey = "uWR93xJe5oEbX3DsAYpOS9CuSg1VmXEQxJzdlJpe3DU=";
          allowedIPs = [ "10.100.0.1/24" ];
          endpoint = "ingolf-wagner.de:51820";
--- a/nixos/machines/orbi/configuration.nix
+++ b/nixos/machines/orbi/configuration.nix
@ -21,7 +21,7 @@
    #./nginx-wkd.nix

    ./network-tinc.nix
-    #./network-wireguard.nix
+    ./network-wireguard.nix

    ./media-share.nix
    #./media-jellyfin.nix
--- a/nixos/machines/orbi/network-wireguard.nix
+++ b/nixos/machines/orbi/network-wireguard.nix
@ -1,6 +1,5 @@
 { pkgs, config, ... }:
 {
-  # networking.firewall.trustedInterfaces = [ "wg0" ];
  networking.firewall.allowedUDPPorts = [ 51820 ];
  sops.secrets.wireguard_private = { };
  boot.kernel.sysctl."net.ipv4.ip_forward" = true;
--- a/nixos/machines/robi/configuration.nix
+++ b/nixos/machines/robi/configuration.nix
@ -20,7 +20,7 @@
    ./nginx-wkd.nix

    ./network-tinc.nix
-    ./network-wireguard.nix
+    #./network-wireguard.nix

    ./media-share.nix
    #./media-jellyfin.nix