Luj/snowfield
1
0
Fork 0
mirror of https://github.com/JulienMalka/snowfield.git synced 2025-03-29 07:10:51 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Added macintosh to vpn

Browse source
This commit is contained in:
Julien Malka 2022-02-26 23:50:06 +01:00
parent 48be1d78ea
commit 3ea05e0d89
No known key found for this signature in database
GPG key ID: 3C68E13964FEA07F
1 changed files with 30 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

30
machines/macintosh/default.nix
View file

@ -15,6 +15,7 @@
networking.hostName = "macintosh";
networking.networkmanager.enable = true;
sound.enable = true;
hardware.pulseaudio.enable = true;
hardware.pulseaudio.support32Bit = true;
@ -47,6 +48,35 @@
programs.dconf.enable = true;
system.stateVersion = "21.11";
networking.firewall.allowedUDPPorts = [ 51820 ];
networking.nameservers = lib.mkForce [ "10.100.0.2" ];
networking.networkmanager.insertNameservers = [ "10.100.0.2" ];
networking.resolvconf.dnsExtensionMechanism = false;
environment.etc."resolv.conf" = with lib; with pkgs; {
source = writeText "resolv.conf" ''
${concatStringsSep "\n" (map (ns: "nameserver ${ns}") config.networking.nameservers)}
options edns0
'';
};
networking.wireguard.interfaces = {
wg0 = {
ips = [ "10.100.0.9/24" ];
listenPort = 51820;
privateKeyFile = "/root/wireguard-keys/private";
peers = [
{
allowedIPs = [ "10.100.0.0/24" ];
publicKey = "hz+h9Oque5h+Y/WzOUnai3e9UfIfDsvtqmQH0xycIzs=";
endpoint = "212.129.40.11:51820";
persistentKeepalive = 25;
}
];
};
};
}