From 28c73eaba5a83561808979e48070ec572b8e4eee Mon Sep 17 00:00:00 2001 From: xqtc161 Date: Sat, 15 Jun 2024 23:08:20 +0200 Subject: [PATCH] nix fmt; specify allowedIPs for wg peer --- hosts/x86_64-linux/beleth/default.nix | 6 +++--- hosts/x86_64-linux/beleth/networking.nix | 2 +- hosts/x86_64-linux/beleth/systemd-mount.nix | 7 +++++-- hosts/x86_64-linux/beleth/wireguard.nix | 15 ++++++++++++--- 4 files changed, 21 insertions(+), 9 deletions(-) diff --git a/hosts/x86_64-linux/beleth/default.nix b/hosts/x86_64-linux/beleth/default.nix index 2740a31..5e0f1c0 100644 --- a/hosts/x86_64-linux/beleth/default.nix +++ b/hosts/x86_64-linux/beleth/default.nix @@ -126,11 +126,11 @@ with lib; { # Enable the OpenSSH daemon. services.openssh.enable = true; - # programs.ssh.extraConfig = '' - # Host frotting + # programs.ssh.extraConfig = '' + # Host frotting # HostName 2a0f:be01:0:100::a3 # User communism - # ''; + # ''; services.mullvad-vpn.enable = true; diff --git a/hosts/x86_64-linux/beleth/networking.nix b/hosts/x86_64-linux/beleth/networking.nix index 0d50399..63ff5f4 100644 --- a/hosts/x86_64-linux/beleth/networking.nix +++ b/hosts/x86_64-linux/beleth/networking.nix @@ -41,6 +41,6 @@ services.resolved.enable = true; services.resolved.extraConfig = '' - DNS=185.12.64.1 185.12.64.2 2a01:4ff:ff00::add:1 2a01:4ff:ff00::add:2 + DNS=185.12.64.1 185.12.64.2 2a01:4ff:ff00::add:1 2a01:4ff:ff00::add:2 ''; } diff --git a/hosts/x86_64-linux/beleth/systemd-mount.nix b/hosts/x86_64-linux/beleth/systemd-mount.nix index 5b481c5..4824735 100644 --- a/hosts/x86_64-linux/beleth/systemd-mount.nix +++ b/hosts/x86_64-linux/beleth/systemd-mount.nix @@ -1,6 +1,9 @@ -{config, lib, inputs, ...}: { + config, + lib, + inputs, + ... +}: { systemd.mounts."frotting" = { - }; } diff --git a/hosts/x86_64-linux/beleth/wireguard.nix b/hosts/x86_64-linux/beleth/wireguard.nix index 3fcdfef..7be41ce 100644 --- a/hosts/x86_64-linux/beleth/wireguard.nix +++ b/hosts/x86_64-linux/beleth/wireguard.nix @@ -10,7 +10,12 @@ networking.wireguard.interfaces = { wg0 = { - ips = [/* "2a0f:be01:fe:fa1::1/64" */ "2a01:4f8:10a:1aab:f000::1/80"]; + ips = [ + /* + "2a0f:be01:fe:fa1::1/64" + */ + "2a01:4f8:10a:1aab:f000::1/80" + ]; listenPort = 51820; @@ -20,9 +25,13 @@ { #anner publicKey = "5ar4lh3Ra4TRmUJeeBtPgDvZnAkGssJDUN53y9oa3So="; - allowedIPs = ["2a0f:be01::/40"]; + allowedIPs = [ + "2a0f:be01:0:100::/64" + "2a0f:be01:0:200::/64" + "2a0f:be01:fe:f00::/56" + ]; endpoint = "[2a0f:be01::1]:51822"; - persistentKeepalive = 15; + persistentKeepalive = 15; } ]; };