diff options
| author | makefu <github@syntax-fehler.de> | 2017-12-28 16:03:38 +0100 |
|---|---|---|
| committer | makefu <github@syntax-fehler.de> | 2017-12-28 16:03:38 +0100 |
| commit | c88168507fcbce2a4070a0268870d8826258c44f (patch) | |
| tree | e4925aa4b6f3577e71b19b2eb9d314dfad5876fc /1systems | |
| parent | c40392b89ef621e25330c062e07ded26b62b6869 (diff) | |
ma gum.r: use wireguard, vpnws
Diffstat (limited to '1systems')
| -rw-r--r-- | 1systems/gum/config.nix | 26 |
1 files changed, 16 insertions, 10 deletions
diff --git a/1systems/gum/config.nix b/1systems/gum/config.nix index b66ef1ab8..4981872c0 100644 --- a/1systems/gum/config.nix +++ b/1systems/gum/config.nix @@ -48,9 +48,14 @@ in { <stockholm/makefu/2configs/share/gum.nix> # <stockholm/makefu/2configs/sabnzbd.nix> <stockholm/makefu/2configs/torrent.nix> - <stockholm/makefu/2configs/iodined.nix> + + # network <stockholm/makefu/2configs/vpn/openvpn-server.nix> + <stockholm/makefu/2configs/vpn/vpnws/server.nix> <stockholm/makefu/2configs/dnscrypt/server.nix> + <stockholm/makefu/2configs/iodined.nix> + + # buildbot <stockholm/makefu/2configs/remote-build/slave.nix> ## Web @@ -103,15 +108,16 @@ in { #} { # wireguard server networking.firewall.allowedUDPPorts = [ 51820 ]; - #networking.wireguard.interfaces.wg0 = { - # ips = [ "10.244.0.1/24" ]; - # privateKeyFile = (toString <secrets>) + "/wireguard.key"; - # allowedIPsAsRoutes = true; - # peers = [{ - # allowedIPs = [ "0.0.0.0/0" "::/0" ]; - # publicKey = "fe5smvKVy5GAn7EV4w4tav6mqIAKhGWQotm7dRuRt1g="; - # }]; - #}; + networking.wireguard.interfaces.wg0 = { + ips = [ "10.244.0.1/24" ]; + privateKeyFile = (toString <secrets>) + "/wireguard.key"; + allowedIPsAsRoutes = true; + peers = [{ + # allowedIPs = [ "0.0.0.0/0" "::/0" ]; + allowedIPs = [ "10.244.0.2/32" ]; + publicKey = "fe5smvKVy5GAn7EV4w4tav6mqIAKhGWQotm7dRuRt1g="; + }]; + }; } ]; |