add wireguard

2023-11-18 17:59:45 +02:00 · 2023-11-18 17:59:45 +02:00 · e2867cc335
commit e2867cc335
parent bde9eba5ce
3 changed files with 21 additions and 1 deletions
--- a/modules/default.nix
+++ b/modules/default.nix
@ -2,6 +2,7 @@
 {
  gaming = import ./gaming { inherit nixpkgs; };
  dnscrypt = import ./dnscrypt;
+  wireguard = import ./wireguard;
  packages = import ./packages { inherit pkgs; };
  programs = import ./programs { inherit system pkgs ide; };
 }
--- a/modules/wireguard/default.nix
+++ b/modules/wireguard/default.nix
@ -0,0 +1,18 @@
+{
+  networking.wg-quick.interfaces = {
+    wg0 = {
+      address = [ "10.0.0.2/24" "fdc9:281f:04d7:9ee9::2/64" ];
+      dns = [ "1.1.1.1" "fdc9:281f:04d7:9ee9::1" ];
+      privateKeyFile = "/etc/wireguard/privatekey";
+
+      peers = [
+        {
+          publicKey = "5FiTLnzbgcbgQLlyVyYeESEd+2DtwM1JHCGz/32UcEU=";
+          allowedIPs = [ "0.0.0.0/0" "::/0" ];
+          endpoint = "37.205.13.29:51820";
+          persistentKeepalive = 25;
+        }
+      ];
+    };
+  };
+}
--- a/nixos/default.nix
+++ b/nixos/default.nix
@ -4,7 +4,8 @@
    modules = [
      ../hardware-configuration.nix
      ./laptop
-      modules.dnscrypt
+      # modules.dnscrypt
+      modules.wireguard
      modules.gaming
      hosts.nixosModule
    ];