patrick/nix-config
1
1
Fork 0
Code Issues Pull requests Projects Wiki Activity

feat: wireguard config (closes #21)

Browse source
This commit is contained in:
Patrick Großmann 2023-02-12 17:50:44 +01:00
parent 31a5982643
commit b1d0ea5d62
Signed by: patrick
GPG key ID: 451F95EFB8BECD0F
8 changed files with 51 additions and 12 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
configuration.nix
View file

@ -16,6 +16,7 @@
./modules/pipewire.nix ./modules/pipewire.nix
./modules/rekey.nix ./modules/rekey.nix
./modules/nvidia.nix ./modules/nvidia.nix
./modules/wireguard.nix
]; ];
# Use the systemd-boot EFI boot loader. # Use the systemd-boot EFI boot loader.

43
modules/wireguard.nix Normal file
View file

@ -0,0 +1,43 @@
{config, ...}: let
address = [
"10.0.0.2/32"
];
peer = {
endpoint = "lel.lol:51820";
publicKey = "t/jR2/0hxBXG0Ytah2w5RQ1gn94k0/Ku9LYcbRR7pXo=";
presharedKeyFile = config.rekey.secrets.wireguard-pre.path;
};
privateKeyFile = config.rekey.secrets.wireguard-priv.path;
in {
rekey.secrets = {
wireguard-pre.file = ../secrets/wireguard/elisabeth-pre.wg.age;
wireguard-priv.file = ../secrets/wireguard/elisabeth-priv.wg.age;
};
networking.wg-quick.interfaces = {
wg-intern = {
inherit address privateKeyFile;
peers = [
(peer
// {
allowedIPs = [
"10.0.0.1/32"
];
})
];
};
wg-all = {
inherit address privateKeyFile;
peers = [
(peer
// {
allowedIPs = [
"0.0.0.0/0"
"::/0"
];
})
];
autostart = false;
};
};
}

12
secrets/test.age
View file

@ -1,12 +0,0 @@
age-encryption.org/v1
-> X25519 6PjX+qZyPYWTisaNUryJ12t/CEOrfLd+K1/wyKGFixM
S5IV+M+l5LleLoXM3SUDioBCJiaHcwZslERVj5L0ygE
-> piv-p256 XTQkUA A1py15wjDt5uwgw2/s2/ueM2JMcT4RFMa+5fx+d2UhG8
xIdD5DNoxvu3T0873Qv2hl9rHatWi4GhAGcWT/cxNE8
-> piv-p256 ZFgiIw AsSMYe/35S/b3kTqriw9Ur2eg2iB8dDSt4qtFzbMqTMz
WnBSoehEmLtX9SEawmQIxsV8dReZPJRNq5oSLH6UWSU
-> bHCG/L-grease -|u
77tuo6s/XdK97pc73YTUh/OShs4jX/01ODcQT/80LaoCI0bt+yVBIOwNPrLwHVIV
iiqROaIIp+mRDQj6JUB7hlaPoiNJcfO6ozA
--- 7W4CK2idSDKwMlYi/FmPZVLPZZKv+5nyp0mpysWXork
ÅH\”úŽÅúbwõŒÑžug+uU+Ñ‚?<3F>\)) Wï6æ}¥ÿ'öÌQH¹/'§ÅÐ><3E>

BIN
secrets/wireguard/elisabeth-pre.wg.age Normal file
View file

Binary file not shown.

BIN
secrets/wireguard/elisabeth-priv.wg.age Normal file
View file

Binary file not shown.

5
users/common/programs/thunderbird.nix Normal file
View file

@ -0,0 +1,5 @@
{pkgs, ...}: {
programs.thunderbird = {
enable = true;
};
}

1
users/common/touchscreen.nix
View file

@ -4,6 +4,7 @@
# with udev and X11 we truly do not live in an ideal world # with udev and X11 we truly do not live in an ideal world
fix = pkgs.writeShellScriptBin "fix-shit" '' fix = pkgs.writeShellScriptBin "fix-shit" ''
xinput --map-to-output "ELAN2514:00 04F3:2817" eDP-1 xinput --map-to-output "ELAN2514:00 04F3:2817" eDP-1
xinput --map-to-output "ELAN2514:00 04F3:2817 Stylus Pen (0)" eDP-1
''; '';
in { in {
home.packages = [fix]; home.packages = [fix];

1
users/patrick.nix
View file

@ -10,6 +10,7 @@
common/programs/polybar.nix common/programs/polybar.nix
common/programs/rofi.nix common/programs/rofi.nix
common/touchscreen.nix common/touchscreen.nix
#common/programs/thunderbird.nix
#common/touchegg.nix #common/touchegg.nix
]; ];